Comcast Sr. Principal Security Technologist in Philadelphia, Pennsylvania

Comcast's Technology & Product organization works at the intersection of media and technology. Our innovative teams are continually developing and delivering products that transform the customer experience. From creating apps like TVGo to new features such as the Talking Guide on the X1 platform, we work every day to make a positive impact through innovation in the pursuit of building amazing products that are enjoyable, easy to use and accessible across all platforms. The team also develops and supports our evolving network architecture, including next-generation consumer systems and technologies, infrastructure and engineering, network integration and management tools, and technical standards.

Job Summary:

Responsible for providing senior technical leadership and expertise as an individual contributor in collaboration with various cross-functional project teams. Works as an internal consultant in one or more areas of engineering expertise, often in the form of a Subject Matter Expert. Provides innovative solutions for engineering highly-complex developmental problems that are competitive with industry and company standards. Directs and influences strategic and technical information security operations of all Comcast Systems Engineering departments by providing strategic operational direction, and ensuring effective organizational implementation

Core Responsibilities:

-Provides technical leadership and advocates technical vision and strategies.

-Contributes to the development of the SE cyber security strategy and develop organizational objectives to align with the overall technical strategic direction, including driving the creation of technical standards

-Provides strategic direction and effective coordination of cyber and information security tasks in order to ensure alignment to Comcast Cable security strategy and compliance with corporate and external policies and regulations.

-Directs the implementation of new security controls and capabilities, new devsecops security design patterns and cadence of accountability for execution of security initiatives such as vulnerability

-Identifies strategic opportunities in the market based on technical assessment. Recommends strategies and plans-of-action to senior management.

-Consults on internal projects and initiatives, developing and administering leading-edge technology solutions. Possesses detailed command over all technical and business aspects of projects in order to broker understanding and to build consensus across various focus teams. Assists with forecasting long-term technical needs.

-Possesses the ability to rapidly grasp new technologies and abstractions and apply them in a meaningful way. Stays knowledgeable of competition and important emerging technologies and standards.

-Administers proof-of-concept system development (systems and software.)

-Drives consensus with Security, Audit, and Systems Engineering for risks based on applicable standards and compliance programs such as ISO (International Organization for Standardization), PCI (Payment Card Industry), CPNI (Customer Proprietary Network Information), SOX (Sarbanes/Oxley), and HIPAA (Health Insurance Portability and Accountability Act) as well as other industry and customer compliance regulations

-Leads security vulnerability management practices for Systems Engineering

-Contributes to Security architectural and system design reviews.

-Coauthors white papers on subjects of expertise for industry-wide distribution as well as presentation at professional organizations.

-Consistent exercise of independent judgment and discretion in matters of significance.

-Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.

-Other duties and responsibilities as assigned.

Job Specification:

-Masters Degree or Equivalent

-Engineering, Computer Science

-Passion for Cyber Security

-Consensus builder with a focus on execution

-Able to lead matrixed and federated working groups

-Security Certification desired (CISSP, CISM or equivalent)

-Generally requires 15 years related experience

-3 years Cyber or Information Security-related experience

Comcast is an EOE/Veterans/Disabled/LGBT employer