• Job Description

  Req#: R366713
  Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)
  Job Summary
  ABOUT CTS CYBERSECURITY
  You will be an innovator in the Cybersecurity division of Comcast Technology Solutions (CTS). (https://www.comcasttechnologysolutions.com/about-us) This division specializes in offering Software-as-a-Service (SaaS) and subscription-based security solutions to large enterprises and the federal government. For the first time ever, customers are now able to purchase some of the best of Comcast’s own in-house security technologies (https://www.comcasttechnologysolutions.com/cybersecurity-suite). These solutions are proven-at-scale to defend critical infrastructure and effectively reduce cost. The Cybersecurity Suite efficiently improves security and compliance while keeping costs in check.
  
  As a GRC expert, you will be responsible for assisting our clients in developing and implementing effective governance, risk management, and compliance programs. Your primary focus will be on utilizing and applying various industry-standard frameworks, including NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance. Additionally, the ideal candidate should have experience in building out a comprehensive consulting program, defining artifacts, deliverables, cadence, and the engagement process.
  Job Description
  In the role of GRC Field Architect, you will be a leader within Comcast Technology Solution’s exciting new cyber security business unit, which sells SaaS and subscription security solutions to the large enterprise and federal government. Currently, two solutions, BluVector and DataBee, both used internally by the Comcast CISO organization, are sold by the business unit. These solutions are sophisticated threat detection, sophisticated threat hunting and security operations center and compliance offerings that improve security and compliance in an efficient manner. DataBee is the BU’s growth engine and is an innovative security & compliance data fabric platform, a new market segment rapidly replacing SIEM and other legacy security & compliance toolsets.
  As a GRC expert, you will be responsible for assisting our clients in designing and implementing effective governance, risk management, and compliance programs. Your main focus will be on using and applying various industry-standard frameworks, including NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance. Additionally, the ideal candidate should have experience in building out a comprehensive consulting program, defining artifacts, deliverables, cadence, and the engagement process.
  Core Responsibilities
  • Provide expert mentorship and consulting services to clients regarding GRC standard processes, frameworks, and methodologies.
  • Lead the development, implementation, and enhancement of GRC programs tailored to meet clients' specific needs and industry requirements.
  • Use the DataBee data security fabric product to implement compliance programs for clients, ensuring alignment with industry frameworks and standards.
  • Collaborate with clients to design and implement GRC strategies, policies, and procedures aligned with industry frameworks such as NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance.
  • Assist clients in establishing risk management frameworks, including the identification, assessment, and mitigation of risks.
  • Support the development and implementation of compliance initiatives, ensuring consistency to relevant regulations and standards.
  • Serve as a domain expert on GRC-related matters, staying ahead of industry trends, emerging frameworks, and regulatory changes.
  • Deliver training and education to clients and internal partners on GRC principles, frameworks, and standard processes.
  • Develop and build out a comprehensive consulting program, including defining artifacts, deliverables, cadence, and the engagement process.
  • Provide guidance and expertise in defining the engagement process with clients, ensuring effective communication, project management, and client satisfaction.
  • Travel is expected to be 20%.
  Requirements
  • Bachelor's degree in a relevant field such as Information Security, Risk Management, or Business Administration. A master's degree is preferred.
  • Demonstrable experience working as a GRC professional, consultant, or program manager, preferably in a client-facing role.
  • In-depth knowledge and experience with a broad range of GRC frameworks, including NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance.
  • Solid understanding of risk management principles and methodologies.
  • Experience in standing up GRC programs/functions within an industry setting.
  • Experience in internal audit, preferably with multi-year experience.
  • Excellent analytical and problem-solving skills, with the ability to assess sophisticated GRC challenges and develop practical solutions.
  • Good communication and interpersonal skills, with the ability to successfully connect with partners at all levels of an organization.
  • Proven experience in building and defining a consulting program, including artifacts, deliverables, cadence, and the engagement process.
  Employees at all levels are expected to:
  • Understand our Operating Principles; make them the guidelines for how you do your job.
  • Be responsible for the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
  • Know your stuff - be hard-working learners, users and advocates of our groundbreaking technology, products and services, especially our digital tools and experiences.
  • Win as a team - make big things happen by working together and being open to new insights.
  • Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
  • Get results and growth.
  • Respect and promote inclusion & diversity.
  • Do what's right for each other, our customers, investors and our communities.
  Disclaimer:
  • This information has been crafted to indicate the general nature and level of work performed by employees in this role. It is not crafted to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.
  Comcast is an EOE/Veterans/Disabled/LGBT employer.
  # workforComcast_CTS
  Compensation
  Pay Range: $125,562.48 - $188,343.72
  Comcast intends to offer the selected candidate base pay dependent on job-related, non-discriminatory factors such as experience. Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.
  Education
  Bachelor's Degree
  While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.
  Certifications (if applicable)
  Relative Work Experience
  7-10 Years
  Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.

• About the company

  Comcast Corporation is an American telecommunications conglomerate headquartered in Philadelphia, Pennsylvania.

Notice