Comcast Cybersecurity: Security Systems Engineer

• Define, document, own, and maintain minimum security baseline configurations for network devices (with an emphasis on Comcast Business technologies), operating systems (Linux and Windows), Active Directory, databases, hypervisors, and cloud platforms including containers, orchestration tools, and supporting services
• Translate security principles and industry standards such as CIS, NIST, OpenSCAP, and PCI‑DSS into actionable, platform‑specific technical controls
• Review vendor security recommendations, threat intelligence, and emerging risks to continuously refine and improve secure configuration baselines
• Participate in technical security governance reviews for new platforms or services, major system upgrades, and significant architectural changes
• Evaluate existing system and platform configurations against approved security baselines and identify gaps or deviations
• Provide prescriptive, risk‑based security guidance to engineering teams while balancing security requirements, operational feasibility, and platform constraints
• Use, maintain, and optimize secure configuration and compliance validation tools across a diverse set of infrastructure and platform technologies
• Execute, analyze, and review secure configuration and compliance scans across on‑prem and cloud environments
• Validate scan findings for accuracy, risk severity, and business impact prior to escalation or remediation planning
• Partner with system, network, and platform engineers to validate remediation actions and ensure security controls are implemented effectively
• Identify configuration drift, recurring misconfigurations, and systemic control gaps across the environment
• Collaborate with infrastructure and platform teams to correct deviations, reduce operational risk, and limit repeat findings
• Recommend sustainable design changes, automation, or guardrails to prevent configuration drift and improve long‑term security posture
• Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
• Other duties and responsibilities as assigned.

Requirements: 

• 5+ years of technical systems engineering experience with an emphasis on cyber security and/or IT Audit 
• Detailed technical and security knowledge of various technology platforms including network devices, databases, operating systems (Linux, Windows), Active Directory, hypervisors, and cloud computing (Containers, orchestration tools, etc.) 
• Thorough understanding of the latest security principles, techniques, and protocols 
• Ability to work in a matrix team environment as well as independently, demonstrate excellent problem-solving abilities, be well organized, flexible, and self-motivated 
• Ability to communicate effectively with systems engineers, network engineers and software developers 
• A strong passion to continuously learn, adapt to new technologies, and share knowledge in the cybersecurity domain. 
• Ability to think critically and independently 

Additional Preferred Skills: 

• Experience with network layer devices as a system administrator 
• Knowledge of security or compliance standards such as OpenSCAP, PCI-DSS, CIS Benchmark, NIST Framework, etc. 
• Experience with configuration management tools such as Ansible, Puppet, Chef, etc. 
• Thorough understanding of the latest security principles, techniques, and protocols 
• Experience with reporting cyber security compliance across technology platforms and/or previous background in executive metric reporting 
• Experience with python, GO, bash 

Soft Skill requirements (team fit/personality requirements): 

• Proven experience working in a matrix team collaborative environment 
• Ability to work remote with minimal supervision 
• Good verbal and written skills 

Cyber Security Certifications, a plus: 

• CISSP, CISM, CISA, GSEC, SSCP, CCSP 

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new ideas.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
• Drive results and growth.
• Support a culture of inclusion in how you work and lead.
• Do what's right for each other, our customers, investors and our communities.

Disclaimer:
This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.