Principal Penetration Tester

ComcastPhiladelphia, PA
20d
Match Resume

About The Position

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.) Job Summary We are looking for an experienced Principal Penetration Tester (Engineering Level 5) to join our Penetration Testing Team. In this role, you will be responsible for conducting a variety of Pen Tests, including web application, network, mobile, and cloud penetration testing, as well as participating in red team exercises. You’ll also contribute to ongoing efforts to strengthen our security infrastructure and offensive capabilities. As a senior team member, you’ll have the opportunity to take ownership of projects, mentor junior team members, and collaborate with cross-functional teams to assess and remediate vulnerabilities. We foster a collaborative environment where continuous learning and growth are encouraged.

Requirements

  • 5+ years of experience in penetration testing with hands-on expe ience using tools like Burp Suite, Nmap, Metasploit, Nessus etc.
  • Advanced proficiency in cloud platforms - AWS, GCP, Azure and mobile app security testing.
  • Stay current with emerging threats and techniques in AI/ML security.
  • Complete understanding of the OWASP Top 10, CVSS, and CVE databases.
  • Strong analytical, problem-solving, and communication skills, with attention to detail and a proactive mindset.

Nice To Haves

  • Extensive experience in strategic planning and executing large-scale, enterprise-wide security initiatives to address complex security challenges.
  • Proven experience in leading security research and development initiatives.
  • Contributions such as research publications, CVEs, CTF participation, and conference presentations are considered valuable additions.
  • Demonstrated ability to work independently on complex assessments while collaborating with cross-functional teams.
  • Proven expertise in mentoring and providing guidance to junior team members
  • Strong scripting experience with Python, Bash, Ruby, C/C++, C#, or Java to automate testing processes and streamline remediation.
  • Strong presentation skills
  • Certifications such as: OSCP, OSWA, OSWE or similar.

Responsibilities

  • Perform vulnerability scanning and penetration testing across diverse systems, applications, technologies and environments.
  • Identify program improvement opportunities and develop processes to mature and scale the Pen Testing program.
  • Present thought leadership in new and emerging advanced security trends, vulnerabilities and attack techniques
  • Lead security research and development efforts and provide technical leadership.
  • Develop remediation strategies and architect solution to challenging cybersecurity gaps.
  • Execute application penetration tests for APIs, mobile SDKs, cloud environments and web applications from both open and closed-box perspectives.
  • Analyze and prioritize findings based on the Common Vulnerabilities and Exposures (CVE) database, the Common Vulnerability Scoring System (CVSS) and internal Risk Rating system.
  • Contribute to and maintain the team’s tools, labs, and attack infrastructure; actively share knowledge through internal wikis and repositories.
  • Effectively communicate findings and recommendations to both technical and non-technical stakeholders, preparing comprehensive reports and presentations.
  • Stay informed on the latest cybersecurity trends, techniques, and vulnerabilities by following industry publications and threat feeds.

Benefits

  • Medical & Dental
  • 401(k) Savings Plan
  • Generous paid time off
  • Life Milestones - from adoption assistance, childcare resources, pet insurance, and more, Comcast supports you at all life stages.
  • Courtesy Services - We offer all of our full-time employees in serviceable areas free digital TV and internet.
  • Discount tickets for Universal Resorts, including theme park tickets and onsite hotel rooms.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Principal

Number of Employees

5,001-10,000 employees

Job Search Resources

Similar Principal Penetration Tester job opportunities

Penetration Tester
Booz Allen Hamilton
Booz Allen Hamilton • Herndon, VA7d
Penetration Tester
Booz Allen Hamilton
Booz Allen Hamilton • Herndon, VA6d
Penetration Tester
Invictus International Consulting
Invictus International Consulting • Atlantic City, NJ9d
Penetration Tester
Cardinal Security
Cardinal Security • Newark, NJ3d
🔥 New JobPenetration Tester
Booz Allen Hamilton
Booz Allen Hamilton • Usa, VA15h • $99,000 - $225,000
Senior Penetration Tester
JPMorgan Chase
JPMorgan Chase • Washington, DC12d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service