Director, Cyber Security Systems and Tools

Comcast - Moorestown, NJ

Summary

Comcast Information and Infrastructure Security is the core CyberSecurity team at Comcast. IIS is composed of a team of transformative security professionals expanding in multiple directions, across borders and, most of all, in the way we think. Here, innovation isn't simply about defending our network and systems, it's about transforming the cybersecurity efforts across our company. Ready to make a difference? Make the choice to join us! Broadly regarded as innovators and thought leaders, our executive team has served in key industry security roles, on the boards of national and community-based organizations, and in a number of Federal and Legislative initiatives. We have spent decades investing in the technology and information security capabilities that help us protect and defend our company; we have developed solutions that are practical today and scalable for tomorrow; and we have created collaborative teams dedicated to innovation across each of our businesses to share our best thinking. The Director ofCyber Security Engineering is responsible for providing design insight, developing and implementing security toolsets and applications, and making recommendations based on strategic understanding of the overall security technology strategy, threat landscape, attack surface and threat intelligence information. Works cross-functionally and collaborates closely with other leaders across the organization to ensure achievement of targeted objectives. Provide leadership and direction for team with multiple functional areas. A robust foundation of information and systems assurance in a large technology organization is required. The role will require strong communication skills, overall knowledge of the security field from an engineering and operational perspective, and industry knowledge of security related products and services.

 

Key Responsibilities:
The successful Director will have an Engineering mindset and a passion for building new security solutions with innovation and drive. The individual will be an expert in both Waterfall and Agile methods of software development, and be accountable for developing and delivering world-class security products as well as lead an advanced technical team. The leader in this position will use strategic and tactical metrics and performance analysis to interpret operational efficiencies of security toolsets and infrastructure, and create conclusions illustrating ROI and efficacy of the environment. This role will partner closely with the Cyber Threat Response and Engineering Organization, the Cybersecurity Governance, Risk & Technical Compliance organization, and the Legal Response Engineering team among other organizations.

• Lead a team of Application Security, Network Security, and Identity engineering leaders and professionals responsible for planning, design, implementation and ongoing support of security systems of high complexity to fulfill the business needs.
• Work with all interfacing teams to define and baseline the system uptime SLAs.
• Work with other Cyber Security teams to effectively and efficiently manage security monitoring, tuning and incident response.
• Lead global projects, develop timeline, manage project team, and drive deliverables on time and on budget.
• Partner with the other engineering teams to deliver seamless service and infrastructure services to organizations within Comcast as well as Comcast commercial entities.
• Extensive knowledge of network systems, network and data security, telecommunications and all associated hardware, software and associated protocols
• Extensive knowledge of threats, risk analysis and the development of security systems and protocols
• Responsible for management of the ongoing security engineering support, maintenance, security, and availability of IIS Security toolsets based on business requirements and adherence to tight operational, security, and procedural models.
• Guide direction of DevOps tools that allow for troubleshooting to be distributed to engineering and support teams. Build and maintain our monitoring and support capabilities
• Construct business case, cost estimates, ROI and successfully communicate solution to IIS Leadership.
• Manage staff, including selection, goal setting, annual reviews, and compensation planning and career development.
• Provide recommendations to management team to increase effectiveness of organization and technology solutions. Contribute and collaborate to further automate tasks for the deployment and inventory control of hardware and software
• Applicable fields of network security and tools including CheckPoint, Juniper, and CrossBeam Firewalls
• Firewall policy management
• Firewall problem solving
• Establish credibility throughout the organization by earning the reputation for being a proactive senior leader and change agent.
• Effectively manage cross-functional internal and external team collaboration, and communications.
• Respond to and assist with due diligence and internal / external audit requests.

Required Qualifications:

• A minimum of 10 years of experience in the application security engineering and/or security areas with at least 8 years of direct people management experience.
• Must be skilled at mentoring and motivating staff, communicating goals and other corporate initiatives and driving to results.
• Extensive knowledge of Information Technology, particularly those areas related to Information Security and Application Security Engineering and Operations.
• A track record of managing the delivery of complex, multi-faceted technology initiatives.
• A track record for being change agent for development methodologies like Agile, CI/CD, etc.
• A proven ability to establish and sustain effective, professional relationships with product and business managers; work closely with business partners to understand business drivers and market requirements; and provide leadership to the technology group in order to create the right solutions for the market in the required time frames.
• Demonstrated expertise and experience with application security and Identity & Access Control system, intrusions, malware infection, packet analysis
• High degree of technical complexity and conversancy; familiarity with complex global information security infrastructures preferred
• Experience with a wide array of security platforms, protocols, tools, and technologies.
• Knowledge of/experience with international compliance requirements/standards (PCI, GLBA, SOX) and other security regulation requirements
• Strong understanding of current industry infrastructure standards and practices, along with a process oriented background.
• Certifications in CISSP, CCSP, CCIE-Security, highly desirable

 

Skills and Capabilities

• Superior strategic and innovative leadership: A visionary who defines and develops a clear picture of the future direction and corresponding objectives for the organization; able to develop comprehensive implementation plans.
• People skills and management capabilities: The ability to influence, engage and inspire at all levels. High-touch involved style with a team of seasoned direct reports; ability to ensure a collaborative environment that nurtures a service-based environment defined by action and outcomes.
• Communication: A strong communicator with exceptional verbal and written communication skills to translate the vision and strategy into clear priorities and direction, both internally and externally.
• Integrity: Proven champion for the highest workplace integrity, respect and diversity; committed to building a secure business environment while meeting the highest ethical standards.

 

Education Level: Bachelor's Degree
Field of Study: System Engineering, System Development, Cyber Security, Computer Science or related field
Years' Experience: Generally requires 10+ years related experience. Five or more years in a carrier class Internet Service Provider, preferred.

---

Posted: 30+ days ago

Apply Now