Manager, Security Management at Comcast Corporation

FreeWheel, a Comcast company, provides comprehensive ad platforms for publishers, advertisers, and media buyers. Powered by premium video content, robust data, and advanced technology, we’re making it easier for buyers and sellers to transact across all screens, data types, and sales channels. As a global company, we have offices in nine countries and can insert advertisements around the world.

Job Summary

As the Information Security Manager, you will spearhead a team dedicated to protecting and securing the organization’s digital systems, emphasizing the confidentiality, integrity, and availability of information across all platforms. In this role, you will build our cybersecurity framework, enhance the security posture, reduce risks, and ensure compliance with evolving standards, thereby safeguarding our valuable information assets. You'll join a team that is deeply integrated into the backbone of our engineering and tech operations, working collaboratively across departments to implement cutting-edge security strategies and improve visibility within our risk management dashboards. This position offers the unique opportunity to lead in a high-stakes environment where your efforts have direct impacts on our daily operations and the overall security posture of the organization. Be ready to influence minds, drive change, innovate, and elevate the ways we protect our digital landscape, making it a secure and resilient environment.

Job Description

Core Responsibilities

Governance and Compliance Oversight

• Meet compliance with corporate cybersecurity requirements, ensuring alignment with business objectives.
• ​Manage and drive projects working directly with technical teams and other project managers.
• Manage the GRC risk framework for effective risk identification, assessment, and mitigation.
• Monitor and report on cybersecurity metrics to maintain transparency and accountability.
• Manage cybersecurity audits, maintaining compliance with both internal standards and external regulations.
• Interface with corporate teams and leaders to ensure strategic alignment and report on security postures.

Strategic Security Program Leadership

• Develop and support cybersecurity program that addresses organizational needs.
• Work directly with internal engineering leaders to integrate security practices.
• Lead initiatives in vulnerability management and secure server configuration.
• Implement technical controls, identify, and manage risks proactively.
• Cultivate a security-aware culture and guide the organization towards proactive security measures.

Security Systems Optimization and Team Development

• Analyze, plan, deploy, test, and evaluate security measures and products for continuous improvement.
• Author and implement security controls with a focus on security best practices and quality assurance.
• Mentor the security team and promote career growth within a security-focused framework.
• Collaborate with engineering and vendors to identify and implement security improvements.
• Act as a champion for Engineering and Operations procedures, policies, processes, and best practices in security.

Other responsibilities:

• Consistent exercise of independent judgment and discretion in matters of significance. 
• Regular, consistent, and punctual attendance. Must be able to work nights and weekends, variable schedule(s) as necessary. 
• Other duties and responsibilities as assigned. 
• Selected candidate will be expected to work Eastern Standard Hours.

Must-Have Technical Skills:

• Must have a strong understanding of cybersecurity requirements and the ability to align them with business goals.
• Must have strong technical understanding with modern technologies and agile development process.
• Must possess expertise in managing Governance, Risk Management, and Compliance (GRC) frameworks.
• Must have 2-3 years of security leadership experience.
• Must be adept at monitoring, analyzing, and reporting on cybersecurity metrics.
• Must have experience coordinating and maintaining compliance.
• Must be proficient in interfacing with engineering teams and leaders to ensure security implementation.
• Should have CISSP, CISM, or similar security management certification.

Good to Have Technical Skills:

• Familiarity developing comprehensive cybersecurity programs.
• Ability to proactively identify and manage security risks.
• Must be committed to cultivating a culture of security awareness within the organization.

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new ideas.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
• Drive results and growth.
• Respect and promote inclusion & diversity.
• Do what's right for each other, our customers, investors and our communities.

Disclaimer:

• This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law. Comcast will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law, including the Los Angeles Fair Chance Initiative for Hiring Ordinance and the San Francisco Fair Chance Ordinance.

Skills:

Security Strategy; Security Management; Cybersecurity; Strategic Program Management; Information Security Engineering; Governance Risk Compliance (GRC); Risk Reduction

Salary:

National Pay Range: $95,825.28 USD-$224,590.50 USD

Comcast intends to offer the selected candidate base pay within this range, dependent on job-related, non-discriminatory factors such as experience. The application window is 30 days from the date job is posted, unless the number of applicants requires it to close sooner or later.

The application window is 30 days from the date job is posted, unless the number of applicants requires it to close sooner or later.

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits to eligible employees. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Relevant Work Experience

5-7 Years