Comcast Cybersecurity: Principal IAM Engineer

Comcast Business offers a suite of Connectivity, Communications, Networking, Cybersecurity, Wireless, and Managed Solutions to help global organizations of all sizes prepare for what’s next. Powered by the nation’s largest Gig-speed broadband network and backed by 24/7 customer support, Comcast Business is the nation’s largest technology provider to small businesses and one of the leading service providers to the Enterprise market. Comcast Business has been consistently recognized by industry analysts and associations as a leader and innovator, and one of the fastest growing providers of Ethernet services.

Job Summary

IAM Principal Engineer (Engineer 5) is responsible for developing, maintaining, and improving the information security identity and access management program by providing identity and access control solutions for all myComcastAccess service internal and external customers. This role works actively on all day-to-day engineering, maintenance, and support efforts for all identity and access management technology. The role serves as a subject matter expert in the areas of identity and access management, privileged access management, and general information security best practices across all technology domains.

Job Description

This position is ineligible for visa sponsorship.  To be considered for this role, you must be legally authorized to work in the United States and not require sponsorship for employment now or in the future.

What You’ll Do:

• Bring your SailPoint IdentityIQ expertise to work on a team and customer base for growing the capabilities of the IAM platform.
• Work within and across Agile teams to design, develop, test, implement, and support technical IAM solutions that are foundational to enterprise capabilities on a massive scale
• Directly contribute to the IAM platform by developing creative and efficient configuration and coding solutions that differentiate us from the competition.
• Develop cost effective technical engineering solutions that solve business challenges and improve processes; including developing tactical and strategic technical solutions that will address business requirements for Identity and Access.
• Work closely with key stakeholders to understand requirements and ensure the solutions developed meet these requirements.
• Work as part of a project team to design new system solutions which include implementing proof-of-concepts and presenting with a marketing mindset.
• Contribute to the design, development, and execution of system changes through the end-to-end testing lifecycle.
• Develop capacity forecasts for managed environments that are proactive and prevent problems prior to outages.
• Develop processes and procedures to ensure managed environments maintain the highest levels of availability, security, and quality.

Desired qualifications:

• Overall 8+ years of experience in implementing SailPoint IdentityIQ
• Knowledge of LDAP and Active Directory services, MFA, Risk based authentication and privileged access management.
• Holistic view of IAM (Authentication and Authorization Data, Endpoint Security, Network Security, Policy Engine.)
• Technical expertise and experience with Microsoft MFA, SailPoint, CyberArk, ForgeRock, Okta, Ping, Active Directory, Azure Active Directory, AWS, Google Cloud Platform, Microsoft Azure, and IDM integration across domains.
• Solid understanding of Cloud concepts and hands on knowledge on Azure/AD or other cloud identity environments.
• 3-5+ years of experience with development of workflow, forms, connector configuration, provisioning policies, rules and plugins within SailPoint IdentityIQ.
• Ability to learn and apply new technologies while working in partnership with other areas to capture and collaborate on business system requirements.
• Experience and command of source management and developer tools – GitHub / Eclipse / VS Code.
• Strong problem solver with ability to describe solutions and progress.
• Experimental mindset to drive innovation.
• Innovative thinking with a passion for problem-solving.
• Programming experience with BeanShell, JavaScript or Java - including JSP programming.
• Programming web-based applications, knowledge of how web services work and how to use them (Ex: REST APIs, JSON, etc.)
• Strong experience with Linux operating system and shell scripting.
• Experience with RDBMS databases and writing SQL code.
• Strong oral and written communication skills.
• Excellent communication and drive for customer experience.
• Good customer liaison skills across all organization levels.
• Works well under pressure and delivers quality solutions in a fast and compliant manner.

EDUCATION:

• Required 8+ Years’ Experience with Bachelor’s degree Computer Science, Computer Engineering, or a related technical discipline.
• Preferred certifications: CISSP, CISM/CISA, SailPoint IdentityIQ Architect.

Skills

Java, SailPoint IdentityIQ, Structured Query Language (SQL)

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.

Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relative Work Experience

10 Years +

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.