Comcast Software Security Assessor in Philadelphia, Pennsylvania
Comcast's Technology & Product organization works at the intersection of media and technology. Our innovative teams are continually developing and delivering products that transform the customer experience. From creating apps like TVGo to new features such as the Talking Guide on the X1 platform, we work every day to make a positive impact through innovation in the pursuit of building amazing products that are enjoyable, easy to use and accessible across all platforms. The team also develops and supports our evolving network architecture, including next-generation consumer systems and technologies, infrastructure and engineering, network integration and management tools, and technical standards.
Do you naturally consider how technology might be bypassed, modified, defeated or used in an unexpected way?
Are you passionate about security and driven to stay current with evolving security issues?
Are you a tenacious problem solver who can work effectively both individually and within a team?
Do you thrive in a setting with smart people and challenging problems?
If yes, we want to hear from you!
IN THIS ROLE
You will perform software-based security assessments for web applications, middleware, mobile apps, and proprietary software using both black box and white box testing approaches. You will work autonomously and interact directly with customers to conduct assessments, analyze results, and develop remediation strategies.
WHAT YOU WILL DO
Perform software security testing and code analysis using static source code analyzers
Analyze attack chains and recommend efficient methods for mitigation
Help advance the goal of building-in security to all Comcast products
WHAT YOU SHOULD POSSESS
Fluency with pen-testing techniques and tools, including identifying attack surfaces of interest, loop-back proxies, fuzzers, disassemblers, and reverse-engineering
Broad range of assessment experience against web apps, APIs, system/network platforms, mobile applications, etc.
Deep knowledge of common errors in programming, cryptographic implementations, network/service configurations
Extensive experience with vulnerability scanning, cataloging, and remediation strategies
Understanding of embedded software, middleware, and application architectures
Recent experience with scaled cloud applications and SDN technology
Passion for cybersecurity, an entrepreneurial spirit, persistence, and resourcefulness
WHAT YOU CAN EXPECT
A cool and casual work environment with chances to showcase your skills
A culture of innovation and continuous learning
Training, support, and mentoring to expand and evolve your expertise
Opportunities to impact the security of Comcast products in millions of homes and businesses
WHAT WE REQUIRE
Bachelor's degree or equivalent, preferably in engineering or computer science
7 years of related experience
Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
Other duties and responsibilities as assigned
Comcast is an EOE/Veterans/Disabled/LGBT employer