Comcast Cybersecurity: Security Engineer, Managed Services
Virtual
Full Time USD 67K - 157K
Comcast
Comcast NBCUniversal creates incredible technology and entertainment that connects millions of people to the moments and experiences that matter most.Job Summary
This role supports the Comcast Business Enterprise Solutions teams and thePCI-as-a-Service delivery to customers. Responsible for incorporating
operational and compliance monitoring of security controls and policies, review
of security logs, reconciling security events, escalation of security violations or
lack of timely remediation, risk assessment and risk management principles.
Implements strategies and maintains subject matter expertise on industry best
practices, particularly PCI. Ensures continuous measurement and communication of required metrics. Integrates knowledge of business and functional priorities.
Job Description
Must Have Skills:
- Hands-on experience with the remediation of security vulnerabilities
- Excellent written and verbal communication skills
- High level of attention to detail when working with various data formats, ensuring data integrity throughout the process.
- Ability to consume large amounts of data in various forms and have proficiency in data collection, processing, and analysis using tools such as Excel, custom tools, and other data analytics platforms.
- Ability to analyze large data sets for trends, inconsistencies and insights, and translating them into actionable recommendations.
- Excellent problem-solving and troubleshooting skills, including experience diagnosing, troubleshooting, and resolving issues efficiently (e.g. performing/tracking RCAs and identifying/ resolving bottlenecks.
- Expertise in advanced Excel functionalities (e.g., VLOOKUPs, Pivots, complex formulas) and the ability to write scripts (e.g., Python, VB) to automate repetitive tasks is a plus
- Organizational skills to manage status, documentation and updates across various stakeholders
- Must take PCI DSS certification within first 6 months of employment. Familiarity with other security/industry standards (e.g., NIST, CVSSv3, OWASP etc.)
Core Responsibilities
- Manage day to day operations and service level agreements from the 3rd party security vendor to meet customer obligations.
- Coordinate the deployment of agents within client environment and work with client and 3rd party security vendor to configure the agent for monitoring of sensitive files and folders and ensure centralized reporting.
- Ensure continuous compliance of controls (e.g. agents continue to report-in, device log health, etc.)
- Review daily log file reports from 3rd party security vendor and highlight potential errors or anomalies. Investigate and escalate issues to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope.
- Review or conduct internal vulnerability scans for new rogue devices or failed scans. Escalate to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope. Launch or work with 3rd party security vendor to launch maintenance scans to ensure passing scans. Summarize status, findings and trends to internal and external leadership.
- Review monthly external monthly vulnerability scans. Escalate to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope. Launch or work with 3rd party security vendor to launch maintenance scans to ensure passing scans. Summarize status, findings and trends to internal and external leadership.
- Coordinate annual internal and external penetration tests with client and 3rd party security vendor. Escalate to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope. Launch or work with 3rd party security vendor to launch maintenance scans to ensure passing scans. Summarize status, findings and trends to internal and external leadership.
- Work directly with customers to understand and resolve issues, building strong client relationships; Translate complex technical issues into simple terms for customers.; Communicate confidently with customers or internal team members (e.g., sales, product, engineering, project, and development teams) to ensure customer satisfaction.
- Coordinate annual Self-Assessment Questionnaire (SAQ) PCI-DSS requirement with clients and 3rd party security vendor. Provide on-demand SAQ portal support to clients in coordination with 3rd party security vendor. Report status, findings and trends to internal and external leadership.
- Coordinate system accessibility for Comcast and Client, and ensure access is appropriate and managed.
- Create or contribute to the development of policies and procedures related to assigned information security processes. Develops consistent and repeatable processes to support day to day operations and meet service levels. Develops, publishes, and communicates operating procedures and guidelines along, with any relevant policies and standard to support the assigned information security processes.
- Compile metrics for key processes to allow for accurate status reporting and trending to assist in review of current processes and identify areas for performance/continuous improvement.
- Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
- Other duties and responsibilities as assigned.
- Ability to travel up to approximately 15% (Domestic USA)
About Our Perks & Benefits:
We are determined to create an environment where our employees feel valued, understand our business goals, and are motivated.
Here's a look at just some of the perks and benefits we make available to our US-based employees:
- Medical & Dental
- 401(k) Savings Plan
- Generous paid time off
- Life Milestones - from adoption assistance, childcare resources, pet insurance, and more, Comcast supports you at all life stages.
- Courtesy Services - We offer all of our full-time employees in serviceable areas free digital TV and internet.
- Discount tickets for Universal Resorts, including theme park tickets and onsite hotel rooms.
Learn more at jobs.comcast.com/life-at-comcast/benefits
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request an accommodation.
Disclaimer:
*This position is unable to provide work authorization sponsorship or immigration support now or in the future.*
- This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.
Comcast is an EOE/Veterans/Disabled/LGBT employer.
Skills
Data Analysis, Detail-Oriented, IT Security Operations, Microsoft Excel, PCI DSS Compliance, Trend Reporting, Vulnerability ScanningCompensation
National Pay Range: $67,344.96 USD-$157,839.75 USDComcast intends to offer the selected candidate base pay dependent on job-related, non-discriminatory factors such as experience. Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits to eligible employees. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.
The application window is 30 days from the date job is posted, unless the number of applicants requires it to close sooner or later.
Education
Bachelor's DegreeWhile possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.Certifications (if applicable)
CISA - Certified Information Systems Auditor - The Information Systems Audit and Control Association, Inc., CISM - Certified Information Security Manager - The Information Systems Audit and Control Association, Inc., CISSP - Certified Information Systems Security Professional - (ISC)², Internal Security Assessor (ISA) or PCIP - PCI Security Standards CouncilRelative Work Experience
5-7 YearsComcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law. Comcast will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law, including the Los Angeles Fair Chance Initiative for Hiring Ordinance and the San Francisco Fair Chance Ordinance.Tags: Analytics CISA CISM CISSP Compliance Data Analytics Ethernet Monitoring NIST OWASP PCI DSS Python Risk assessment Risk management Travel Vulnerabilities Vulnerability scans
Perks/benefits: Flex vacation Health care Insurance Salary bonus Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.