Logo
Comcast

Tier 3 Network Security Engineer-8015

Comcast, Plano, Texas, us, 75086


Comcast Business offers a suite of Connectivity, Communications, Networking, Cybersecurity, Wireless, and Managed Solutions to help global organizations of all sizes prepare for what’s next. Powered by the nation’s largest Gig-speed broadband network and backed by 24/7 customer support, Comcast Business is the nation’s largest technology provider to small businesses and one of the leading service providers to the Enterprise market. Comcast Business has been consistently recognized by industry analysts and associations as a leader and innovator, and one of the fastest growing providers of Ethernet services.

Job SummaryJob DescriptionDUTIES:Provide technical leadership in operating firewalls, proxies, and critical platforms designed to secure the Comcast network.Protect networks from physical harm, viruses, unauthorized users, and damage to data by developing and monitoring security procedures.Use open-source threat intelligence (OSINT) to track security posture and detect breaches, vulnerabilities, or targeted campaigns.Perform malware analysis where techniques including polymorphic encryption, injection, hollowing, and obfuscations are common.Reverse engineer malware samples.Detect, respond, and report on outputs of security tools.Perform penetration testing.Ensure network security by identifying exploits and vulnerabilities, using firewalls, SSL/TLS, and Netflow, and analyzing packet captures.Hunt for malware, advanced persistent threats, and novel attacks across Windows, MacOS, and Linux machines, using MITRE ATT&CK.Administer, troubleshoot, and operate Linux servers.Operate in a Research & Development (R&D) environment.Perform Endpoint Detection and Response (EDR) using SentinelOne and Carbon Black.Work with information security compliance frameworks and standards, including ISO 27001 and PCI DSS.Administer, troubleshoot, and operate Elastic stack, Logstash, MySQL, and Apache webservers.Work with Hashicorp Vault.Work with encryption.Develop software tools, integrations, and services using Perl, GoLang, Python, JavaScript.Perform vulnerability management.Provide technical support for product and supported applications while maintaining Security Operations Center (SOC) controlled infrastructure and applications.Approve SOC designed applications, maintain and support the health of all SOC dependent equipment, and monitor and analyze network load, including traffic and utilization trends.Recommend updates to the current network and computer systems.Identify systems problems, assess the severity of issues, and prioritize responses.Provide advanced troubleshooting and summaries of networking issues.Collaborate with the Network Operations team to ensure disaster recovery plans are viable and current.Guide and mentor junior-level Network Security Engineers and Analysts.

REQUIREMENTS:Bachelor’s degree, or foreign equivalent, in Computer Science, Engineering, or related technical field, and five (5) years of experience developing software tools, integrations, and services using Python, and JavaScript; ensuring network security by identifying exploits and vulnerabilities, using firewalls, SSL/TLS, and Netflow, and analyzing packet captures; hunting for malware, advanced persistent threats, and novel attacks across Windows, MacOS, and Linux machines; using open-source threat intelligence (OSINT) to track security posture and detect breaches, vulnerabilities, or targeted campaigns; performing malware analysis where techniques including polymorphic encryption, injection, hollowing, and obfuscations are common; reverse engineering malware samples; detecting, responding, and reporting on outputs of security tools; performing penetration testing; of which three (3) years include using Perl and MITRE ATT&CK; performing Endpoint Detection and Response (EDR) using Carbon Black; administering, troubleshooting, and operating MySQL, Linux servers, and Apache webservers; of which two (2) years include administering, troubleshooting, and operating Elastic stack and Logstash; and of which one (1) year includes using GoLang; performing Endpoint Detection and Response (EDR) using SentinelOne; operating in a Research & Development (R&D) environment; working with information security compliance frameworks and standards, including ISO 27001 and PCI DSS; working with Hashicorp Vault; working with encryption; and performing vulnerability management.

Disclaimer:

This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.

#J-18808-Ljbffr