Comcast Cybersecurity: Penetration Tester 4

PA - Philadelphia, 1800 Arch St

Comcast

Comcast NBCUniversal creates incredible technology and entertainment that connects millions of people to the moments and experiences that matter most.

View all jobs at Comcast

Apply now Apply later

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)

Job Summary

We are looking for an experienced Penetration Tester (Engineering Level 3) to join our Security Assessment Team. In this role, you will be responsible for conducting a variety of security assessments, including web application, network, mobile, and cloud penetration testing, as well as participating in red team exercises. You’ll also contribute to ongoing efforts to strengthen our security infrastructure and offensive capabilities. As a mid-level team member, you’ll have the opportunity to take ownership of projects, mentor junior team members, and collaborate with cross-functional teams to assess and remediate vulnerabilities. We foster a collaborative environment where continuous learning and growth are encouraged

Job Description

Must Have Skills

  • 7- 10 years of experience in penetration testing with hands-on experience using tools like Burp Suite, Metasploit, Nessus, Nmap, and other security testing tools.

  • Solid understanding of the OWASP Top 10, CVSS, and CVE databases. 

  • Practical experience with web application, network, mobile, and cloud penetration testing.

  • Strong network and application penetration testing skills, with experience in Linux and Windows environments. 

  • Strong analytical, problem-solving, and communication skills, with attention to detail and a proactive mindset. 

Key Responsibilities: 

  • Perform vulnerability scanning and penetration testing across diverse systems, applications, and environments. 

  • Analyze and prioritize findings based on the Common Vulnerabilities and Exposures (CVE) database and the Common Vulnerability Scoring System (CVSS). 

  • Execute application penetration tests for APIs, mobile SDKs, cloud environments and web applications from both open and closed-box perspectives. 

  • Contribute to and maintain the team’s tools, labs, and attack infrastructure; actively share knowledge through internal wikis and repositories. 

  • Effectively communicate findings and recommendations to both technical and non-technical stakeholders, preparing comprehensive reports and presentations. 

  • Stay informed on the latest cybersecurity trends, techniques, and vulnerabilities by following industry publications and threat feeds. 

 

Other Qualifications: 

  • Proficiency in at least one cloud platform (AWS, GCP, or Azure); experience with mobile app security testing is preferred. ​

  • Scripting experience with Python, Bash, Ruby, C/C++, C#, or Java to automate testing processes and streamline remediation. 

  • Demonstrated ability to work independently on complex assessments while collaborating with cross-functional teams. 

  • Certifications such as: OSCP, OSWA, OSWE or similar. 

  • Hands-on experience with Kubernetes and a solid understanding of hardware communication protocols (e.g., I2C, SPI, UART) are a plus. 

  • Research publications, CVEs, CTF participation and conference presentations are an added bonus. 

 

About Our Perks & Benefits:
We are determined to create an environment where our employees feel valued, understand our business goals, and are motivated.
Here's a look at just some of the perks and benefits we make available to our US-based employees:

  • Medical & Dental
  • 401(k) Savings Plan
  • Generous paid time off
  • Life Milestones - from adoption assistance, childcare resources, pet insurance, and more, Comcast supports you at all life stages.
  • Courtesy Services - We offer all of our full-time employees in serviceable areas discounted digital TV and internet.
  • Discounted tickets for Universal Resorts, and free tickets to our Universal theme parks!

Learn more at https://jobs.comcast.com/life-at-comcast/benefits

Reasonable Accommodation
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation.

Comcast is an EOE/Veterans/Disabled/LGBT employer.

Disclaimer:
This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications.

Skills

Software Development, Teamwork, Vulnerability Management, Vulnerability Scanning

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.


Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relative Work Experience

7-10 Years

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.
Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  5  0  0
Category: PenTesting Jobs

Tags: APIs AWS Azure Bash Burp Suite C Cloud CTF CVSS GCP Java Kubernetes Linux Metasploit Nessus Nmap OSCP OSWE OWASP Pentesting Python Red team Ruby Scripting Security assessment Vulnerabilities Vulnerability management Windows

Perks/benefits: Career development Equity / stock options Insurance

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.