Job was saved successfully.
Job was removed from Saved Jobs.

Job Details

Comcast Corporation

Comcast Corporation

Comcast Cybersecurity: Engineer3 , Compliance

Telecommunications

All

Full Time

On Site

No

Virtual, Pennsylvania, United States

Comcast Business offers technology solutions ranging from Ethernet, internet, and WiFi connectivity to voice, television, and managed Enterprise solutions to power businesses of all sizes to perform better. From small businesses to mid-market and large Enterprise organizations, Comcast Business serves business customers across the country. Powered by an advanced, Gig-speed network and backed by 24/7 technical support, Comcast Business is one of the largest contributors to the growth of Comcast Cable. The organization is the nation’s largest cable provider to small and mid-size businesses and has emerged as a force in the Enterprise market, recognized by leading industry associations as one of the fastest growing provider of Ethernet services.

Job Summary

This role supports the business solutions teams and the PCI-as-a-Service/Security-as-a-Service areas. Responsible for incorporating operational and compliance monitoring of security controls and policies, review of security logs, reconciling security events, escalation of security violations or lack of timely remediation, risk assessment and risk management principles. Implements strategies and maintains subject matter expertise on industry best practices, particularly PCI. Ensures continuous measurement and communication of required metrics. Integrates knowledge of business and functional priorities.

Job Description

Core Responsibilities:

  • Manage day to day operations and service level agreements from the 3rd party security vendor to meet customer obligations.

  • Coordinate the deployment of agents within client environment and work with client and 3rd party security vendor to configure the agent for monitoring of sensitive files and folders and ensure centralized reporting.

  • Ensure continuous compliance of controls (e.g. agents continue to report-in, device log health, etc.)

  • Review daily log file reports from 3rd party security vendor and highlight potential errors or anomalies. Investigate and escalate issues to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope.

  • Review or conduct internal vulnerability scans for new rogue devices or failed scans. Escalate to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope. Launch or work with 3rd party security vendor to launch maintenance scans to ensure passing scans. Summarize status, findings and trends to internal and external leadership.

  • Review monthly external monthly vulnerability scans. Escalate to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope. Launch or work with 3rd party security vendor to launch maintenance scans to ensure passing scans. Summarize status, findings and trends to internal and external leadership.

  • Coordinate annual internal and external penetration tests with client and 3rd party security vendor. Escalate to relevant information security, technology, operations team within Comcast for Comcast managed devices, or escalate to client for devices outside of Comcast managed services scope. Launch or work with 3rd party security vendor to launch maintenance scans to ensure passing scans. Summarize status, findings and trends to internal and external leadership.

  • Coordinate annual Self Assessment Questionnaire (SAQ) PCI-DSS requirement with clients and 3rd party security vendor. Provide on-demand SAQ portal support to clients in coordination with 3rd party security vendor. Report status, findings and trends to internal and external leadership.

  • Coordinate system accessibility for Comcast and Client, and ensure access is appropriate and managed.

  • Create or contribute to the development of policies and procedures related to assigned information security processes. Develops consistent and repeatable processes to support day to day operations and meet service levels. Develops, publishes, and communicates operating procedures and guidelines along, with any relevant policies and standard to support the assigned information security processes.
  • Compile metrics for key processes to allow for accurate status reporting and trending to assist in review of current processes, and identify areas for performance/continuous improvement.

  • Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.

  • Other duties and responsibilities as assigned.

  • Ability to travel up to approximately 15% (Domestic USA)

Education Level: Bachelor’s Degree or Equivalent in technology or security field

Field of Study: Information Sciences, Technology

Certifications: PCI ISA, CISSP, CRISC or CISM

Years of Experience: Generally requires 7-10 years of information security experience

Skills:

  • Working knowledge of PCI DSS. Familiarity with other security/industry standards (e.g. NIST, CVSSv3, OWASP etc.)
  • Hands-on experience with the remediation of security vulnerabilities
  • Excellent written and verbal communication skills

Disclaimer:

  • This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Comcast is an EOE/Veterans/Disabled/LGBT employer.

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other basis protected by applicable law.

Certifications

Certified Information Systems Auditor (CISA) - The Information Systems Audit and Control Association, Inc. - The Information Systems Audit and Control Association, Inc.,CISSP,PCI Internal Security Assessor (ISA) or PCIP

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Relevant Work Experience

5-7 Years

Salary:

National Pay Range: $59,379.10 USD-$139,169.77 USD

Comcast intends to offer the selected candidate base pay within this range, dependent on job-related, non-discriminatory factors such as experience.

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the [Register to View] on our careers site for more details.

Save Job

By applying you agree to our Terms of Service

Share