Comcast is a Fortune 30 global media and technology company that focuses on innovative technology solutions. The Cybersecurity Incident Response Engineer will be part of the Security Incident Response Team (SIRT), responsible for monitoring security events, responding to threats, and improving security operations through advanced technologies and collaboration.
Monitors networks for security events and alerts to potential/active threats, intrusions, and/or compromises.
Restores environment after an incident and ensures that the managed security service has thorough detection capabilities in place for emerging threats.
Performs service requests from internal/external teams.
Maintains an advanced understanding of cyber security threats, vulnerabilities, attacks, responsible groups, motivations and techniques.
Continues to assess the evolving threats and new technologies, solutions, and services to stay ahead of them through research.
May perform documentation, vetting and weaponization of identified vulnerabilities for operational use.
Evaluates event flows to identify common risks and vulnerabilities to develop and implement solutions.
Assists with security audits, risk analysis, network forensics and penetration testing.
Provides assistance in monitoring the security of all designated networks and systems.
May prepare detailed incident reports and technical briefs for the IT security team.
Conducts After Action Reviews (AAR) to improve the response process including updating playbooks.
Familiarizes self with company goals and strategies in order to achieve short-term goals with resolution.
Strives to achieve personal goals and those set forth by management.
Consistent exercise of independent judgment and discretion in matters of significance.
Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary.
Other duties and responsibilities as assigned.
Qualification
Required
Proven experience leading or supporting incident response activities
Ability to review and interpret logs to identify potential attacks or anomalies
Strong analytical skills to recognize evolving attack patterns and adapt response strategies
Hands-on experience identifying and mitigating phishing attempts
Skilled in interpreting different types of attacks across various log sources
Ability to validate and assess Indicators of Compromise for accuracy and relevance
Solid understanding of network protocols and architecture
Experience analyzing Windows and Linux environments for security threats
Familiarity with securing cloud platforms and services
Experience with Security Information and Event Management (SIEM) platforms for monitoring and analysis
Knowledge of Endpoint Detection and Response (EDR) tools and processes for endpoint security
Understanding of authentication mechanisms and identity management
Ability to analyze and secure endpoints across diverse environments
Strong verbal and written communication skills for clear reporting and collaboration
Ability to work effectively within cross-functional teams in fast-paced environments
Bachelor's Degree
2-5 Years of Relevant Work Experience
Preferred
Benefits
Best-in-class Benefits to eligible employees
An array of options, expert guidance and always-on tools
Support you physically, financially and emotionally through the big milestones and in your everyday life
Comcast is a media and technology company that provides broadband internet, mobile services, and entertainment platforms. It is a sub-organization of SkyShowtime.
Glassdoor
3.8
Founded in 1963
Philadelphia, Pennsylvania, USA
10001+ employees
https://corporate.comcast.com
Comcast is a media and technology company that provides broadband internet, mobile services, and entertainment platforms. It is a sub-organization of SkyShowtime.
