Placement papers | Freshers Walkin | Jobs daily: Principal Software Security Engineer at Comcast (Philadelphia, PA)


Search jobs and placement papers

Principal Software Security Engineer at Comcast (Philadelphia, PA)

Comcast's Technology & Product organization works at the intersection of media and technology. Our innovative teams are continually developing and delivering products that transform the customer experience. We work every day to make a positive impact through innovation in the pursuit of building amazing products that are enjoyable, easy to use and accessible across all platforms. The team also develops and supports our evolving network architecture, including next-generation consumer systems and technologies, infrastructure and engineering, network integration and management tools, and technical standards.

We are looking for a dedicated and passionate Software Security Engineer to join our Network and Communications engineering team. If you have experience building scalable, cloud based, web scale applications in a secure manner, are excited about impacting millions of users, look no further!
As a Software Security Engineer, you will apply your domain expertise working very closely with each software development team to make Comcast products, platforms and environments highly secure. The technology solutions are built with open source and proprietary software.
The individual will be responsible for defining, implementing, enforcing and validating adherence to security best practices.
We practice Agile/Scrum methodology and program in a variety of languages such as Python, GoLang, NodeJS, Scala, or Java. We develop a variety of Software driven network services platforms built with a diverse set of technologies.


Responsibilities:
Lead and drive secure architecture and design of platforms and services
Provide direction and support to multiple software development teams to ensure best of breed security principles are implemented
Produce technical design and specification documentation that incorporate secure implementation techniques for each platform and service
Create patterns/APIs that projects can use for security-related tasks (i.e., input validation, encryption, etc).
Develop and enforce security practices such as threat modeling, securing data at rest and in transit, infrastructure security, code analysis, penetration testing
Support developers in the areas of secure design, secure coding practices, vulnerability assessments and remediation
Conduct code reviews and ensure secure implementations
Develop strong and trusting relationships with engineering teams and senior leadership
Implement a SecOps mindset across software development lifecycle
Implement tools and process to audit, review and verify security practice compliance on continuous basis on development and production environments
Keep abreast of security advisories on existing frameworks/technologies and train teams on security practices, remediation/patch management
Comfortable with collaboration, open communication and reaching across Development, QA, ops and other cross functional teams
Consistent exercise of independent judgement and discretion in matters of significance


Qualifications:
Must be able to think like an attacker
Must be a strong code reviewer who knows how to look for security vulnerabilities
Strong interest in software security with a passion to solve problems
Experience leading projects in integrating software security practices, code analysis tools, for webscale technology platforms in system development lifecycle
11+ years' work experience in security based technologies such as Cloud infrastructure security on AWS, Openstack, etc; Authentication, Authorization and Access Controls
5+ years' experience with developing software applications and infrastructure with security of data in transit and rest built in
Solid understanding of applied cryptography and security protocols
Understanding of intrusion, abuse, fraud detection and prevention techniques
Development of security tools, automation and frameworks
Deep and active understanding of various programming environments such as Java, Golang, Python, NodeJS and their vulnerabilities.
Solid understanding of algorithm complexity, parallel/distributed systems, advanced data structures, computer networking and operating systems
Solid working knowledge of SQL andNoSQL databases, and messaging/streaming technologies such as Kafka, Apache Spark
Familiarity with secure design of Network protocols
Prior experience working with Agile/Scrum methodologies
Prior experience being embedded in software development teams


Job Specification:
- Bachelors Degree or Equivalent
- Computer Science, Engineering
- Generally requires 11+ years related experience


Employees at all levels are expect to:
- Understand our Operating Principles; make them the guidelines for how you do your job
- Own the customer experience-think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services
- Know your stuff-be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences
- Win as a team-make big things happen by working together and being open to new ideas
- Be an active part of the Net Promoter System-a way of working that brings more employee and customer feedback into the company-by joining huddles, making call backs and helping us elevate opportunities to do better for our customers
- Drive results and growth
- Respect and promote inclusion and diversity
- Do what's right for each other, our customers, investors and our communities

Comcast is an EOE/Veterans/Disabled/LGBT employer


by via developer jobs - Stack Overflow
 

No comments:

Post a Comment