Comcast Cybersecurity: Cryptography Cyber Security Engineer
Top focus
Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide.
Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace.
Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.) Job Summary Our products, platforms and technologies are constantly evolving that’s why keeping Sky safe from cyber-attacks is one of our top priorities.
Our Cyber Security team helps the business grow while protecting our customers, colleagues, and partners from increasingly sophisticated cyber threats. Whilst primarily working with our technology and engineering teams you will be expected to work with our wider teams across the UK, Italy, and Germany and participate in joint projects between Sky and Comcast.
Join us and you’ll get involved in tackling challenges and future threats in an ever-changing cyber landscape. The Group Core Cyber Security team currently has a role for an experienced individual to join an ongoing PKI/ Certificate Management programme.
You will work with internal teams across Sky to automate certificate management as well as with Comcast PKI team to integrate Sky infrastructure to the Comcast/Sky PKI managed service. This role is an exciting opportunity to join us on our journey, working within our Cyber Security team who are focused on delivering a wide variety of security capabilities to protect, and secure, a complex and ever-evolving environment.
Responsible for supporting cryptographic services and certificate management processes across the organization. Supports the protection of sensitive data through secure encryption, certificate lifecycle management, and key management services.
Identifies cryptographic weaknesses and vulnerabilities; performs analysis of certificate usage and encryption implementations across systems and platforms. Conducts assessments of PKI environments, certificate inventories, and cryptographic services.
Identifies gaps in certificate lifecycle management and trust chains. Evaluates system configurations related to certificates, keys, and encryption. Performs root cause analysis on cryptographic issues and supports remediation. Resolves complex certificate, PKI, and cryptographic operational issues.
Contributes to the design, development, and implementation of automation and tooling to support certificate lifecycle management and cryptographic services across enterprise environments. Works with moderate guidance in own area of knowledge.
Job Description This position is ineligible for visa sponsorship. To be considered for this role, you must be legally authorized to work in the United States and not require sponsorship for employment now or in the future. We are hiring for 2 open, identical positions.
Core Responsibilities: Performs onboarding of systems and services to xPKI platforms in line with defined SLAs. Provides cryptography guidance and support to engineering and business teams. Produces and reports metrics related to certificate management and cryptographic services, ensuring alignment to organizational commitments.
Supports and maintains PKI solutions and environments across the enterprise. Analyses the usage of certificates across business and infrastructure systems to identify risks and improvement opportunities. Maintains accurate certificate inventory and supports continuous improvement of asset visibility.
Supports initiatives to prepare the organization for post-quantum cryptography (PQC). Works with vulnerability management and security assessment teams to prioritize onboarding and remediation activities. Implements and supports automation of certificate lifecycle management processes across internal and external services.
Supports awareness and education initiatives related to certificate management and cryptographic best practices. Performs or supports key ceremonies, business continuity and disaster recovery (BCP/DR) activities, and other cryptography-related workstreams.
Identifies opportunities for process improvements and automation across cryptographic services. Performs certificate lifecycle operations, including issuance, renewal, and revocation activities. Supports investigation and resolution of operational issues related to certificates, encryption, and key management.
Educates stakeholders on cybersecurity best practices, including certificate lifecycle management and cryptographic controls. Familiarizes self with company goals and strategies in order to achieve short-term goals with resolution. Strives to achieve personal goals and those set forth by management.
Consistent exercise of independent judgment and discretion in matters of significance. Regular, consistent and punctual attendance. Must be able to work variable schedule(s) as necessary. Other duties and responsibilities as assigned
Requirements
- Hands on experience of PKI systems and services, ACME protocol, use of RESTful APIs.
- Experience with Certificate Authority Administration, ADCS monitoring
- related tasks Understanding in PKI machine identity technologies such as SSH, SSL, TLS Experience supporting Key Management Systems (KMS) for cryptographic key security.
- A good knowledge and understanding of Information and/or Cyber Security.
- Good written and verbal communication skills to liaise with stakeholders at varying levels of seniority across the business.
- Knowledge of cybersecurity principles and practices and an understanding of security frameworks e.g., NIST, ISO27001.
- Hands on experience with PKI and Certificate deployment/automation and Thales HSMs Good problem-solver, with the ability to tackle multiple tasks simultaneously.
- Being organized and diligent in using time and work management tools.
- A self-starter that is keen to get involved in teamwork, has strong interpersonal skills, and is hard-working and flexible.
- Open mind to learn new technologies, ability to analyze technical workflows and identify weak spots from cyber-security and operational point of views.
- Invested in a culture to self-learn and grow additional skillsets.
- Be curious to learn and share learnings and knowledge with the wider team.
- Employees at all levels are expected to: Understand our Operating Principles; make them the guidelines for how you do your job.
- Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
- Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
- Win as a team - make big things happen by working together and being open to new ideas.
- Drive results and growth.
- Support a culture of inclusion in how you work and lead.
- Do what's right for each other, our customers, investors, and our communities.
- Disclaimer: This information has been designed to indicate the general nature and level of work performed by employees in this role.
- It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.
- Skills Communication, Cryptography, Data Analysis, PKI Certificate Management We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most.
- That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.
- Please visit the benefits summary on our careers site for more details.
- Education Bachelor's Degree While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience
- who have extensive related professional experience.
- Certifications (if applicable) Relevant Work Experience 2-5 Years Comcast is an equal opportunity workplace.
- We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information
- any other basis protected by applicable law.