Comcast Cybersecurity: Manager -Vulnerability Management

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)

Job Summary

We are seeking a Vulnerability Manager to lead and mature our vulnerability management program within a fast-paced, enterprise-scale environment. This role is responsible for managing the orchestration of the end-to-end vulnerability scanning process, analyzing scan data, and driving remediation across a complex technical landscape. The ideal candidate will have extensive experience with industry-standard scanning tools and a relentless focus on improving processes, fostering collaboration, and minimizing risk across large enterprises.

Job Description

Key Responsibilities: 

• Manage and lead the vulnerability scan operations team, providing strategic direction, daily oversight, and technical guidance to ensure full and effective scan coverage across the enterprise. 
• Own the end-to-end vulnerability scanning process, from tool deployment and configuration to scan scheduling, execution, validation, and reporting. 
• Ensure the team effectively operates and maintains industry-standard scanning tools.
• Prioritize and assign scan tasks, track execution, and ensure timely delivery of scan outputs and reports. 
• Collaborate with infrastructure, application, and cloud teams to interpret findings, ensure risk-based remediation, and reduce organizational exposure as well as troubleshooting reachability issues and scan impact analysis.
• Oversee the tuning and optimization of scanning tools and processes to improve performance, accuracy, and efficiency. 
• Define and maintain metrics, dashboards, and KPIs for scan coverage, vulnerability trends, and understanding of fluctuations and root causes.
• Drive continuous improvement across the vulnerability program by identifying gaps, automating manual processes, and introducing new ways of working. 
• Deliver presentations to the wider business, showcasing successes and outlining roadmap plans
• Demonstrate strong people leadership.
• Provide mentoring and professional development for team members, fostering a high-performance, collaborative environment. 
• Regular, consistent and punctual attendance. Must be able to work nights, weekends, variable schedule(s) and overtime, when required (as expected when working in Operations).
• Stay current on evolving threats, zero-day vulnerabilities, and industry best practices to help guide strategic direction. 

Qualifications & Experience: 

• 5+ years of experience in vulnerability management or security operations within large, complex, and fast-moving environments. 
• Deep hands-on experience with vulnerability scanning tools such as Qualys, Tenable, Rapid7 or equivalent platforms. 
• Strong knowledge of CVEs, CVSS scoring, threat prioritization, and vulnerability lifecycle management. 
• Ability to analyze, interpret, and visualize large data sets to identify actionable insights. 
• Proven multitasker with strong organizational and project management skills. 
• Proactive mindset with a passion for process improvement and automation. 
• Team player with excellent communication skills and the ability to collaborate across technical and non-technical groups. 
• Relevant certifications (e.g., CISM, CISSP, Security+, or vendor-specific scanning tool certs) are preferred. 

Skills

People Management, Teamwork, Vulnerability Management

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.

Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relevant Work Experience

5-7 Years

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.