Firewall Engineer

With Comcast in Philadelphia PA US

More jobs from Comcast

Posted on June 06, 2019

About this job

Job type: Full-time
Role: System Administrator
Industry: Telecommunications
Company size: 10k+ people
Company type: Public


security, sysadmin, networking

Job description

Comcast brings together the best in media and technology. We drive innovation to create the world's best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines. We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day. If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast.

As a Firewall Engineer 2, you will join a dedicated, professional Firewall Operations team responsible for network reliability engineering group in the Comcast network. This position is responsible for monitoring, managing, operating, deploying, and continuously improving Comcast's firewall network devices as well as associated infrastructure in a24/7 environment.

Firewall Engineers work with cross-functional teams that may include IT teams, operational staff, external vendors, third parties, and business partners to address issues across the Comcast ecosystem, peering arrangements, and inter-operability issues.As part of the Firewall Operations team, you will work with limited supervision and direction while executing associated functions and responsibilities.

Core Responsibilities:

-Implement new security technologies and systems in accordance with security industry standards and Comcast Change Management procedures.

-Follows SOPs and SMOPs and independently determines/develops/documents approaches for non-routine solutions.

-Perform configuration updates, such as proactive maintenances, upgrades, patching, and enhancements to network devices.

-Provide engineering support and operational focus for multiple network and security tools and appliances as well as associated alerting tools.

-Work collaboratively with multidisciplinary and multinational teams to support and operate newly implemented technologies and support existing environments.

-Provide advanced application support for the resolution of firewall system faults, including system patches, policy design, and policy pushes.

-Leverage network monitoring and management tools for the identification, prevention, and response to security incidents, faults, and network outages.

  • Participate in the root cause analysis (RCA) investigation of critical network firewall incidents and prepare incident reports documenting the findings. Identify root problem cause, and provide recommendations to improve reliability and availability, or reduce recovery time.

-Proactive identification and reporting of security gaps and vulnerabilities to the critical business information, systems and network infrastructure.

-Provides clear and concise technical communication and coordination during outage scenarios.

-Directly executes changes, in the network and across systems, focused on deploying new services, implementing changes, and stabilizing products following established change management processes. Accountable for configuration management techniques, post maintenance validation, and excellent communication.

-Ability to work well under pressure.

Knowledge and Experience:

-Minimum 2 to 4 years of experience within information security, network security, or firewalls

-Working knowledge of complex networking technologies, including: IPv4, IPv6, routing, switching, load balancing, DNS, DHCP, NAT/PAT rules, and ACLs

-Experience with the following: SSL, TLS, HTTPS, PGP, DES, SSH, SCP, Kerberos, IPSEC, PKI

-Knowledge of complex network operating environments in a large-scale high-availability environment, including remotely-hosted or cloud-based service offerings

-Experience with information security methodologies

-In-depth troubleshooting and strong analytic skills

  • Experience with firewall policy creation and rule updates, configuration and troubleshooting; firewall administration experience required

-Experience with security policy orchestration/rule automation technology

-Knowledge of industry standards like SOX, ISO 27001, and PCI

-Experience with automations and programming languages a plus

-Comfortable with interfacing with other internal or external organizations regarding service failure and incident response situations


-Bachelor's Degree in Networking, Cybersecurity, Computer Science, or related fields.

-Network and/or security certifications such as SANS GIAC, Security+, CCNA

-Desired: CISSP

Comcast is an EOE/Veterans/Disabled/LGBT employer and all qualified applicants will receive consideration for employment without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex or any other legally protected category.

Apply here