Engineer 3, Cyber Security Engineering-0752

Comcast
Philadelphia, United States of America
yesterday

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate

Job location

Remote
Philadelphia, United States of America

Tech stack

Amazon Web Services (AWS)
Software System Penetration Testing
Bash
Burp Suite
Command-Line Interface
Computer Security
Linux
Monitoring of Systems
Identity and Access Management
Network Packet
Python
Kali Linux
Linux Commands
Linux Distribution
Software Maintenance
Shell Script
Systems Architecture
S3 Bucket
Scripting (Bash/Python/Go/Ruby)
Information Technology
Tenable Nessus
Nessus
Qualys

Job description

DUTIES: Contribute to a team responsible for developing and maintaining software security systems; perform web application penetration testing using Burp Suite, and custom Bash and Python scripts; detect and remediate vulnerabilities using scanning tools including Nuclei, Qualys, and Nessus; use Linux for penetration testing, vulnerability exploitation, and scripting automation in Kali Linux or any other Linux distribution, including performing Linux command-line operations, privilege escalation, shell scripting, and network packet analysis; design and implement custom tools using Python to detect vulnerabilities; ensure security of AWS cloud environments, including using IAM policies, security groups, S3 bucket configurations, and cloud-native monitoring tools; manage incident response activities related to product security, including investigation, root cause analysis, and remediation of vulnerabilities; research, validate, and document the lifecycle of reported vulnerabilities in Comcast's products; assess the overall security maturity and systems architecture of products to launch bug bounty programs; leverage the researcher community in identifying potential vulnerabilities; validate, research, prioritize, and escalate reported vulnerabilities as appropriate; manage each reported vulnerability and the communications of its status with internal and external parties until resolution; manage a queue of reported vulnerabilities to ensure findings are promptly addressed, catalogued, and internally distributed to appropriate internal stakeholders; partner with other teams in the security organization to build and test remediation strategies; document all information including the mitigation and remediation of reported vulnerabilities; collaborate with internal teams to map the systems architecture of a product and define the scope of systems to be included as targets for bug bounty programs; and work with the Quality Assurance team to determine if applications fit specification and technical requirements. Position is eligible to work remotely one or more days per week, per company policy.

Requirements

REQUIREMENTS: Bachelor's degree, or foreign equivalent, in Computer Science, Engineering, or related technical field, and two (2) years of experience developing and maintaining software security systems; performing web application penetration testing using tools including Burp Suite, and custom Bash or Python scripts; detecting and remediating vulnerabilities using scanning tools including Nuclei, Qualys, and Nessus; using Linux for penetration testing, vulnerability exploitation, and scripting automation in Kali Linux or any other Linux distribution, with Linux experience in command-line operations, privilege escalation, shell scripting, and network packet analysis; designing and implementing custom tools using Python to detect vulnerabilities; and managing incident response activities related to product security, including investigation, root cause analysis, and remediation of vulnerabilities. Applicant must possess Offensive Security (OffSec) Certified Professional (OSCP)

About the company

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You'll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)

Apply for this position