Desired Skills and Experience

  • Contribute to and/or lead various security architecture review efforts to ensure products include security into design, development and operations.
  • Contribute to and/or lead threat modeling efforts against products, tools and enterprise applications that Comcast designs, builds and operates.
  • Identify and document security issues.
  • Risk rank security issues with product and enterprise teams.
  • Stay current with security technologies, trends, vulnerabilities and threats.
  • Inform management including business sponsors on security risks and should be able to translate security risks to business impact.
  • Work with many teams to support security technology through the product and enterprise lifecycle.
  • Define the use cases for solutions, design the solution to help with prototyping and development, and take solution through to launch and market.
  • Author requirements and user stories to include development, integration and operational detail necessary for security.
  • Interfaces with many teams across the organization to ensure an efficient and effective security solution meets the business needs.
  • Ensures solutions are well engineered, operable, maintainable, and delivered on schedule.
  • Guide threat analysis, technology assurance and technical auditing
  • Works to and is an advocate to ensure compliance for security best practices including but not limited to the following coding standards, design, platform, cloud and network specific design concerns.
  • Monitors current and future security trends, technology and information that will positively affect products and services as well as applies and integrates emerging technological trends to new and existing systems architecture.
  • Applies new and innovative ideas to old or new problems. Fosters environments that encourages innovation. Contributes to and supports effort to further build intellectual property via patents.
  • Review third party security technology across multiple platforms and products.
  • Support test, troubleshooting and operational issues alignment with security designs and architectures.
  • Provide security advice on data security issues, compliance, and privacy requirements such as PCI, CPNI, HIPAA, FCC Regulations, SOX, Subscriber PII, etc.
  • Security and technical expertise in cloud technologies such as OpenStack, AWS And Azure.
  • Possibly work with big data, metrics and data analytics tools to help manage large volumes of security reporting systems.
  • Support building a culture of security by educating others and advocating an open security posture.
  • Consistent exercise of independent judgment and discretion in matters of significance.
  • Other duties and responsibilities as assigned.
  • Architected security for products, enterprise, information and other initiatives
  • Proficient at protocols and APIs
  • Proficient at the secure software development lifecycle and devops
  • Proficient at identity, authentication and authorization systems
  • Proficient at understanding cryptographic trust based systems
  • Cloud security knowledge preferred
  • Data and database security
  • Federation, SSO, IDS, IPS, Host Based Firewall, VPN, Wi-Fi, Video, Internet, Voice, DNS, DHCP, HTTPS/TLS, SSH, Key Management, PKI, Tokens, SAML, OAUTH, Fido
  • Knowledgeable in PCI, CPNI, HIPAA, ISO 27001, FCC Regulations, SOX, Subscriber PII, etc
  • Coding experience preferred but not required
  • Excellent written and verbal communication skills, interpersonal and collaborative skills
  • Poise and ability to act calmly and competently in high-pressure, high-stress situations
  • Enjoys working in a demanding, and a very dynamic environment
  • Good natured and positive with people
  • Security expertise in one or more relevant areas
  • Must have strong problem-solving skills
  • Ability to manage multiple projects with strict timelines
  • High level of personal integrity
  • Ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity
  • High degree of initiative and be well organized
  • 8+ years experience in security and technology based industry
  • 5+ years experience working with various security architectures

Apply