Senior Cyber Security Architect
Job SummaryComcast brings together the best in media and technology. We drive innovation to create the world’s best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and captivating businesses and build career opportunities across a wide range of locations and fields. We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring pioneering products and services to life for millions of customers every day. If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast. Customer Experience Technologies (CXT) is passionate about the technology, systems and tools that support the customer lifecycle (sales, activation, billing, support, etc.), as well as employee-facing teams such as human resources, finance, and workplace information technology. These tools and systems are foundational to our ability to meet and exceed customer expectations and support an excellent employee experience. The Technology, Product, Experience (TPX) organization works at the intersection of media and technology and our innovative teams are continually developing and delivering products and next-generation technologies that transform the customer experience and their Data Experience. Masergy is a recent Comcast Business acquisition that focuses on serving Midmarket and Enterprise customers with a portfolio of managed network, managed voice, and managed security solutions. Masergy is based in Plano Texas.
Comcast is seeking a Cyber Security Architect to join the Masergy organization. The ideal candidate will possess a deep technical information and product security background with an emphasis on security architectures, as well as a strong ability to communicate and interact with both engineers and executives. This person will focus on reviewing, providing guidance and working with lead security architects to enhance the company’s security engineering and architecture across many different internal and customer facing products, applications, cloud, systems, endpoints, network and infrastructure. The role will also collaborate with stakeholders across security and technology groups to support strengthening security. There will also be opportunities to work on security initiatives and other security related work.
This person must have experience designing and reviewing security architectures and technology architectures. This person can identify and drive issues to closure. This individual must be a consensus builder, a team player and work within an open security posture environment.Core Responsibilities
Responsible for leading and overseeing security initiatives within Masergy.
Support building a culture of security by educating others and advocating an open security posture.
Collaborate with designated security leads in each of Masergy’s business units to help prioritize and escalate awareness of issues.
Participate in the Comcast Cybersecurity community including guilds and working groups
Communicate to teams and executives regarding Masergy Security incidents, vulnerabilities, mitigations and resolutions.
Contribute to and/or lead various security architecture review efforts to ensure products include security into design, development and operations.
Give to and/or lead threat modeling efforts against products, tools and enterprise applications that Comcast designs, builds and operates.
Identify and document security issues.
Risk rank security issues with product and enterprise teams.
Stay current with security technologies, trends, vulnerabilities and threats.
Advise management including business sponsors on security risks and should be able to translate security risks to business impact.
Work with many teams to support security technology through the product and enterprise lifecycle.
Author requirements and user stories to include development, integration and operational detail necessary for security.
Interfaces with many teams across the organization to ensure an efficient and effective security solution meets the business needs.
Advise on solutions to ensure they are well engineered, operable, maintainable, and delivered on schedule.
Guide threat analysis, technology assurance and technical auditing
Works to and is an advocate to ensure compliance for security best practices including but not limited to the following: coding standards, design, platform, cloud, network specific design concerns and user access reviews.
Monitors current and future security trends, technology and information that will positively affect products and services as well as applies and integrates emerging technological trends to new and existing systems architecture.
Applies new and innovative ideas to old or new problems. Fosters environments that encourage innovation. Contributes to and supports effort to further build intellectual property via patents.
Review third party security technology across multiple platforms and products and ensure practices and controls align with enterprise standards.
Support test, troubleshooting and operational issues alignment with security designs and architectures.
Partner with Comcast Cybersecurity to promote best practices across all Cybersecurity Domains.
Serve as the lead for Masergy for enterprise privacy initiatives. Provide Masergy with security advice on data security issues, compliance, and privacy requirements such as PCI, CPNI, HIPAA, FCC Regulations, SOX, Subscriber PII, etc.
Security and technical expertise in cloud technologies such as Kubernetes, AWS, and Azure.
Possibly work with big data, metrics and data analytics tools to help manage large volumes of security reporting systems.
Consistent exercise of independent judgment and discretion in matters of significance.
Other duties and responsibilities as assigned.
Architected security for products, enterprise, information and other initiatives
Excellent written and verbal communication skills, interpersonal and collaborative skills
Proficient at protocols and APIs
Proficient at the secure software development lifecycle and DevOps
Proficient at identity, authentication and authorization systems
Proficient at understanding cryptographic trust-based systems
Cloud security knowledge preferred
Data and database security
Federation, SSO, IDS, IPS, Host Based Firewall, VPN, Wi-Fi, Video, Internet, Voice, DNS, DHCP, HTTPS/TLS, SSH, Key Management, PKI, Tokens, SAML, OAUTH, Fido
Knowledgeable in PCI, CPNI, HIPAA, ISO 27001, FCC Regulations, SOX, Subscriber PII, etc.
Coding experience preferred but not required
Poise and ability to act calmly and competently in high-pressure, high-stress situations
Enjoys working in a demanding, and a very dynamic environment
Good natured and positive with people
Security expertise in one or more relevant areas
Must have strong problem-solving skills
Ability to manage multiple projects with strict timelines
High level of personal integrity
Ability to expertly handle confidential matters with an appropriate level of judgment and maturity
High degree of initiative and well organized
10+ years of experience in engineering, software, or technology-based industry
5+ years of experience working in a security-related role, with various security architectures
Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Licensed PEN Tester (LPT), Certified Ethical Hacker (CEH), Global Information Assurance Certification (GIAC), Certified Secure Software Lifecycle Professional (CSSLP), Other software development lifecycle certifications
Bachelor’s Degree or Equivalent
Engineering, Computer Science, Cybersecurity or related field
Comcast is an EOE/Veterans/Disabled/LGBT employer.
Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other basis protected by applicable law.
While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.
Relevant Work Experience
Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the [Register to View] on our careers site for more details.