Security Engineer 3

Comcast brings together the best in media and technology. We drive innovation to create the worlds best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines. We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day. If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast.

Job Summary

"Responsible for contributing towards the build and maintenance of the organizations cyber security systems and infrastructure. Exercises solid knowledge of engineering skills and methodology with a working knowledge of applicable cyber security compliance standards. Conducts security assessments and audits to identify cybersecurity risks within the companys networks, applications and operating systems. Helps secure and protect the Network Infrastructure: Routers, Switches, Optical Devices, L2 Datacenter and cabling, Strand Mounted devices, Secure Routing protocols, DOCSIS plant (CMTS/vCMTS/PON), SDN, best practice device configuration, network automation, monitoring and troubleshooting. Tests companys internal systems to validate security and detect any computer and information security weaknesses. Performs a technical analysis of vulnerabilities and determines the impacts to the organization Reports, tracks and records findings in a comprehensive vulnerability assessment report. Identifies and recommends appropriate action to mitigate vulnerabilities and reduce potential impacts on cybersecurity resources. Applies long-term objectives and plans related to the companys technical vision to daily activity. Applies innovative solutions for cyber engineering developmental problems that are competitive with industry and company standards. Has in-depth experience, knowledge and skills in own discipline. Usually determines own work priorities. Acts as a resource for colleagues with less experience. Employees at all levels are expect to: - Understand our Operating Principles; make them the guidelines for how you do your job - Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services - Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences - Win as a team - make big things happen by working together and being open to new ideas - Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers - Drive results and growth - Respect and promote inclusion and diversity - Do whats right for each other, our customers, investors and our communities"

Job Description

What you will do

• Review and triage new vulnerability tickets to validate the impact.
• Assist users by providing security guidance for remediation of Vulnerabilities.
• Validate remediation efforts from internal customers.
• Investigate possible security exceptions.
• Update, maintain and document security controls.
• Ensure application teams are implementing remediations within SLA
• Maintain documentation of work performed and remediation actions using ServiceNow ticketing system
  
  

What You Should Possess

• Strong customer focus with the ability to advise and work closely with application teams and vendors on mitigation.
• Exposure to commercial and open-source tools such as Burpsuite, WebInspect, , Qualys, nmap, etc.
• Experience cataloguing and risk-scoring vulnerabilities discovered through assessments.
• Knowledge about public cloud environments
• Knowledge about basic computer networking and HTTP
• Good understanding and experience with:
• Web application security assessment, including hands-on techniques.
• Hands-on experience in identifying, mitigating, and remediating vulnerabilities based on OWASP Top10 (API, Web)
• Basic Scripting knowledge with the capability to automate analysis of technical engineering tasks using python, bash, or the use of PowerAutomate
• CVSS3 scoring and its use in risk rating.
• Basic experience with Linux
• Preferable certifications like CEH / ECSA / CompTIA or other equivalent security certifications
  
  

What Success Looks Like

• Prompt, effective review and collaboration on remediation of security vulnerabilities.
• Responsiveness to internal customer requests.
• Validation of remediated tickets within published service level agreements (SLAs).
  
  

What You Can Expect

• A fun, cutting-edge, and collaborative environment
• A culture of innovation and continuous learning.
• Training, support, and mentoring to expand and evolve your expertise.
• Opportunities to impact the security of Comcast products in millions of homes and businesses
  
  

What We Require

Bachelors Degree in Computer Science, Information Systems, or other related field or equivalent work experience.

Disclaimer

This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Comcast is an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits to eligible employees. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.

Education

Bachelors Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Relevant Work Experience

5-7 Years

---