Full-Time Cyber Security Engineer

We are seeking a Cyber Security Engineer to join our NBCU Security Engineering team. The role involves supporting security consulting engagements across NBCU businesses, Enterprise IT, and the Cyber Security organization, ensuring secure technology design and deployment aligned with strategies.

Responsibilities include: conducting end-to-end security and threat analysis of enterprise initiatives involving new or modified technology deployments; completing security reviews, providing and receiving feedback, and specializing in one or more cyber disciplines.

The role also involves partnering with business customers, information security officers, and security engineering team members, necessitating strong communication and organizational skills.

Basic Requirements:

• 2+ years of practical engineering experience in enterprise IT or Cyber Security
• Beginner-level knowledge in one or more technical areas (e.g., Cloud, Network, Endpoint) with willingness to learn other areas
• Ability to explain common threats to components (Network, Cloud, Web, Application)
• Knowledge of best practices (OWASP Top 10, CWE/SANS Top 25)
• Strong communication and feedback skills
• Ability to work independently and with remote team members
• Organized and professional with time management skills

Desired Characteristics:

• Relevant experience in technical/cybersecurity areas
• Intermediate knowledge in one or more technical/cybersecurity areas
• Experience providing cyber security guidance/consultative services
• Experience in threat analysis and modeling
• Knowledge of SDLC security principles and secure coding practices
• Experience with Consumer-Facing Applications (streaming media, OTT, digital media)
• Familiarity with security controls (Cloud Security Matrix, NIST CSF, CIS Critical Security Controls)
• Understanding of industry frameworks (MITRE ATT&CK)
• Understanding of data and privacy regulations (PCI DSS, SOX, HIPAA, GDPR, CCPA)
• Understanding of common Cloud Services (IaaS, PaaS, SaaS)
• Familiarity with Cybersecurity Engineering/Operations, Incident Response, and GRC functions
• Experience using diagramming tools (Lucidchart, Visio)

What is the last date for applying to the job?

Which countries are accepted for this remote job?