Comcast Cybersecurity: Architect (Level 5) - IoT & Embedded Linux Systems Security Design
PA - Philadelphia, 1800 Arch St
Comcast
Comcast NBCUniversal creates incredible technology and entertainment that connects millions of people to the moments and experiences that matter most.Job Summary
Responsible for promoting the use of industry and secure Company technology standards within the realm of Internet of Things (IoT) & Embedded Linux Systems using security design principles. Monitors emerging technologies/technology practices in the IoT space for potential use within the Company. Designs and develops updated Embedded System security infrastructure in support of one or more business processes. Helps to ensure a balance between tactical and strategic technology solutions. Considers business problems "end-to-end": including people, process and technology, both within and outside the enterprise, as part of any design solution. Mentors, reviews codes and verifies that the object oriented design best practices and that coding and architectural guidelines are adhered to. Identifies and drives issues through closure. Bonus points for knowledge of Real Time Operating Systems (RTOS), System-on-a-Chip (SoC) concepts, familiarity with the C/C++ programming language, the Linux command line (CLI), and/or some practical experience with Raspberry Pi, Arduino, or other similar Linux developer-style boards.Job Description
Must Have Skills
- Must Have knowledge of modern Linux security concepts such as Security-Enhanced Linux (SELinux), AppAmor, Grsecurity, or other hardening techniques. Professional certifications are welcomed, but not required (SANS GIAC GSEC, Red Hat RHCE, Red Hat RHCSA, ISC2 CISSP, ISACA CISA, ISACA CISM, EC-Council CEH, CompTIA Linux Plus, etc.)
- Must have experience with industry and secure Company technology standards within the realm of Internet of Things (IoT) & Embedded Linux Systems using security design principles.
- Must have experience with monitoring emerging technologies/technology practices in the IoT space for potential use within the Company. Designs and develops updated Embedded System security infrastructure in support of one or more business processes.
- Must have experience with balance between tactical and strategic technology solutions. Considers business problems "end-to-end": including people, process and technology, both within and outside the enterprise, as part of any design solution. Mentors, reviews pseudo code (when applicable) and verifies that coding concepts and architecture guidelines adhere to secure design best practices.
- Must have familiarity with CVEs, CVSS scores, and prioritizing security vulnerability fixes. Identifies and drives issues through closure.
- Effective communication skills while coordinating with many global engineering teams across many time zones, cultures, and geographies.
Nice To Have:
- Knowledge of Real Time Operating Systems (RTOS), System-on-a-Chip (SoC) concepts, some familiarity with the C/C++ programming language, Yocto/Jenkins Build Systems, secure networking concepts, cryptography and chain-of-trust (high level) concepts, the Linux command line (CLI), awareness of common Open Source libraries, and/or some practical experience with Raspberry Pi, Arduino, or other similar Linux developer-style boards.
- Knowledge of modern Linux security concepts such as Security-Enhanced Linux (SELinux), AppAmor, Grsecurity, or other hardening techniques. Professional certifications are welcomed, but not necessary (SANS GIAC GSEC, Red Hat RHCE, Red Hat RHCSA, ISC2 CISSP, ISACA CISA, EC-Council CEH, CompTIA Linux Plus, etc.) Role is four days per week in-person (on average, with some limited flexibility week-to-week) at Philadelphia’s Comcast Technology Center.
- Responsible for promoting the use of industry and secure Company technology standards within the realm of Internet of Things (IoT) & Embedded Linux Systems using security design principles. Monitors emerging technologies/technology practices in the IoT space for potential use within the Company. Designs and develops updated Embedded System security infrastructure in support of one or more business processes.
- Helps to ensure a balance between tactical and strategic technology solutions. Considers business problems "end-to-end": including people, process and technology, both within and outside the enterprise, as part of any design solution. Mentors, reviews pseudo code (when applicable) and verifies that coding concepts and architecture guidelines adhere to secure design best practices.
- Familiarity with CVEs, CVSS scores, and prioritizing security vulnerability fixes. Identifies and drives issues through closure. Bonus points for knowledge of Real Time Operating Systems (RTOS), System-on-a-Chip (SoC) concepts, some familiarity with the C/C++ programming language, Yocto/Jenkins Build Systems, secure networking concepts, cryptography and chain-of-trust (high level) concepts, the Linux command line (CLI), awareness of common Open Source libraries, and/or some practical experience with Raspberry Pi, Arduino, or other similar Linux developer-style boards.
Skills
Embedded Systems, Linux, Programming Languages, Real-Time Operating Systems (RTOS)We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.
Please visit the benefits summary on our careers site for more details.
Education
Bachelor's DegreeWhile possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.Certifications (if applicable)
CISSP - Certified Information Systems Security Professional - (ISC)²Relative Work Experience
10 Years +Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: C CEH CISA CISM CISSP CompTIA Cryptography CVSS GIAC GSEC Internet of Things IoT ISACA Jenkins Linux Monitoring Open Source Red Hat RTOS SANS SOC
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.