Comcast Careers

Security Engineer

Philadelphia, PA
Technology (Technology - Network Engineering)

Job Description

Business Unit:

Comcast is seeking a Linux Security Engineer& in Network Services Engineering team. The role provides candidate with broad exposure and opportunity to up level the Cybersecurity maturity of multiple lines of business and next generation platforms utilized for providing high-speed Internet services. First and foremost an ideal candidate must demonstrate high degree of self-initiative and adaptability to lead multiple security work streams in a fast-paced environment. The ideal candidate must possess strong technical background in security threat/risk management, background in secure software development, implementing security best practices in enterprise environments (including Cloud security), and background in assessing/implementing security products such as UTMs. Candidate will champion effort to help developers and engineers enhance the company's security engineering and architecture across products, applications, cloud, systems, endpoints, network and infrastructure. Candidate will also partner with Comcast’s engineering teams to review security features, assess network designs and recommend configurations for security products being deployed for Residential and SMB customers. Lastly, the candidate is required to collaborate with stakeholders in peer security and technology groups to strengthen overall security posture.


Core Responsibilities:
• Leads team on secure administration of Linux/Unix Operating Systems to ensure platforms and services include security on hosts, devices, and servers
• Develops scripts to quickly deploy patches, updates, and/or remediation to security vulnerabilities
• Leads the security vulnerability management across all teams that own and operate platforms and services
• Identifies, documents, and recommends best practices/solutions to secure hosts and databases
• Works with teams to support security technology through the product and enterprise lifecycle
• Develops and drives adoption of security automation and orchestration solutions
• Stays current with security technologies, trends, vulnerabilities and threats
• Interfaces with teams across the organization to ensure an efficient and effective security solution meets engineering/business needs
• Monitors current and future security trends, technology, and information that will positively affect products and services as well as applies and integrates emerging technological trends to new and existing systems architecture.
• Supports test, troubleshooting, and operational issues alignment with security vulnerabilities
• Supports building a culture of security by educating others and advocating an open security posture
• Consistently exercises best judgment and discretion in matters of significance
• Other duties and responsibilities as assigned


• Hands on experience and administration of Linux/Unix Operating Systems
• Experience with script development for automation
• Experience with Product/Application/Software Development/administration, DevOps, and or Networking
• Experience in the area of Information Security
• Experience with host based firewalls
• Experience with Vulnerability scanning
• Cloud security knowledge in AWS, Openstack, and or VMWare
• Excellent written and verbal communication skills, interpersonal and collaborative skills
• Must have strong problem-solving and analytical skills
• High degree of initiative and be well organized
• Ability to manage multiple projects with strict timelines
• High level of personal integrity
• Enjoys working in a demanding and dynamic environment
• Ability to professionally handle confidential matters, show appropriate level of judgment and maturity
• Proficient in DevOps and Agile Software Development Life Cycles

• Familiarity with secure software development best practices
• Familiarity with performance vulnerability testing, risk analysis, and security assessments
• Familiarity with Authentication, Authorization, Access, Identity and Encryption frameworks
• Understanding of various security frameworks/protocols such as: Federation/SSO, IDS, IPS, Host Based Firewall, VPN, SSH, Key Management, PKI, Tokens, SAML, OAUTH, Fido, HTTPS/TLS, etc
• Solid understanding of the OSI model and IP Protocols (IPv4, IPv6, TCP/UDP/ICMP)
• Proficient at protocols and APIs (REST)
• Familiarity with Messaging/Streaming Platforms such as Kafka, RabitMQ, etc

• Certification Preferred but not required in one or more of the following: CISSP, LPT, CEH, GIAC or CSSLP


Job Specification:
- Bachelor’s Degree or Equivalent
- Engineering, Computer Science
- Generally requires 5-8 years related experience

Comcast is an EOE/Veterans/Disabled/LGBT employer