Comcast Cybersecurity: Senior Security Engineering - Identity and Access Management

NJ - Mount Laurel, 1800 Bishops Gate

Comcast

Comcast NBCUniversal creates incredible technology and entertainment that connects millions of people to the moments and experiences that matter most.

View all jobs at Comcast

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)

Job Summary

Responsible for how users within the company are given an identity - and how it is protected, including saving critical applications, data and systems from unauthorized access while managing the identities and access rights of people both inside and outside the organization. Responsible for contributing towards the Define, Build, Implement and Maintain processes to secure the organizations resources. These resources includes user identities, physical assets as well as the wide range of business applications that users use every day to access intellectual property or confidential information. Exercises solid knowledge of engineering skills and methodology with a working knowledge of applicable cyber security compliance standards. Integrates knowledge of business and functional priorities. Acts as a key contributor in a complex and crucial environment. May lead teams or projects and shares expertise.

Job Description

Identity and Access Management engineer with at least 7-10 years of experience in IAM platforms like AzureAD, PingFederate, ADFS or OKTA. The Engineer must have experience in developing and supporting SSO solutions using the above-mentioned products with in-depth knowledge of enforcing various advanced security requirements.

Must Have Skills

  • 7 years of experience managing and supporting identity systems like Azure AD or PingFederate or ADFS or Okta
  • 3-5 years’ experience managing infrastructure (patching, vulnerability management).
  • 3-5 years’ experience in troubleshooting, managing, and solving complex technical issues.
  • Hands on experience (at least 5 years) integrating applications using standards like SAML/OpenID Connect
  • Hands on experience integrating APIs using standards like OAuth 2
  • Ability to execute project individually and collaborate with relevant stakeholders to complete the assigned project/task.
  • Good understanding and application knowledge of advanced Azure AD features like conditional access policies and Risk based policies is a great plus.
  • Experience with scripting (Bash, PowerShell) and developing code.
  • Knowledge about Zero Trust principals and application security.
  • Excellent communication skills

Core Responsibilities

  • Work with various teams to implement SSO solutions for their applications using technologies like OpenID Connect, OAuth and SAML.
  • Provide SME level guidance to Application teams, to comply with various Comcast Security principles and requirements.
  • Assist application teams with SSO and IAM related troubleshooting.
  • Monitor and support users’ requests received through mailbox/slack/Jira etc.
  • Work with cross domain IAM teams to collaborate on various IAM solutions and provide SSO related guidance.
  • Track and prioritize multiple projects and provide periodic status reports/metrics to senior leadership.
  • Mentor other members of the team on Web Access Management / API Security best practices.
  • Provide clear communication of Engineering strategy, management and mentoring of senior enterprise security engineers, deep knowledge of Web Access Management platforms and excellent business acumen.
  • Develop industry standard documentation for various day to day and other complex implementations.

  • ​​About Our Perks & Benefits:

    We are determined to create an environment where our employees feel valued, understand our business goals, and are motivated.

Here's a look at just some of the perks and benefits we make available to our US-based employees:

  • Medical & Dental
  • 401(k) Savings Plan
  • Generous paid time off
  • Life Milestones - from adoption assistance, childcare resources, pet insurance, and more, Comcast supports you at all life stages.
  • Courtesy Services - We offer all of our full-time employees in serviceable areas free digital TV and internet.
  • Learn more at jobs.comcast.com/life-at-comcast/benefits

    We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request an accommodation.

  • This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.
  • Comcast is an EOE/Veterans/Disabled/LGBT employer.

  • Discount tickets for Universal Resorts, including theme park tickets and onsite hotel rooms.

Skills

Azure Active Directory (AD), Microsoft Entra ID (Azure Active Directory), OpenID Connect, Security Assertion Markup Language (SAML), Security Engineering, Single Sign-On (SSO)

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.


Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relative Work Experience

7-10 Years

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  4  1  0

Tags: Active Directory APIs Application security Azure Bash Compliance IAM Jira Okta OpenID PowerShell SAML Scripting SSO Strategy Vulnerability management Zero Trust

Perks/benefits: Insurance

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.