This job has expired, please see additional jobs below
Director, Identity Access Management
Comcast
Philadelphia, PA, United States
Job Details - this job has expired, please see similar jobs below
Summary
Comcast Technology and Product Security is the core CyberSecurity team at Comcast. TP&S is composed of a team of transformative security professionals expanding in multiple directions, across borders and, most of all, in the way we think. Here, innovation isn't simply about defending our network and systems, it's about transforming the cybersecurity efforts across our company. Ready to make a difference? Come join our Team!
Broadly regarded as innovators and thought leaders, our executive team has served in key industry security roles, on the boards of national and community-based organizations, and in a number of Federal and Legislative initiatives. We have spent decades investing in the technology and information security capabilities that help us protect and defend our company; we have developed solutions that are practical today and scalable for tomorrow; and we have created collaborative teams dedicated to innovation across each of our businesses to share our best thinking.
The Director of Identity Access Management and Authentication leads the company's enterprise IDM and Authentication Engineering team, which includes technical security engineering and security technology integration across many platforms. TP&S is responsible under the guidance of the CISO and team for comprehensive information and cybersecurity across both the Enterprise and our Xfinity branded technology platforms. Responsibilities include clear communication of engineering strategy, management and mentoring of senior enterprise security engineers, deep knowledge of IDM and Access Management platforms and technologies and excellent business acumen.
This open, collaborative and communicative leader will reside within Comcast's CyberSecurity Strategy organization and partner closely with Engineering and Operations. In this role, you will be responsible for providing active and engaged leadership with business, Cybersecurity and IT teams relative to Identity and Access Management, as well security consulting expertise in support of strategic company initiatives. This leader will collaborate with Security teams, Corporate IT, Operations and application services and business partners to develop, document, implement, and monitor integrated, holistic and consistent IDM and Access architectures. This leader is a bridge builder and takes time to understand the culture of the company and our client's requirements to execute flawlessly in building and governing sprawling enterprise security architectures.
Core Responsibilities:
• Provide expertise and understanding of the Corporate Identity Management landscape working with leadership to mold, shape and expand the IDM service footprint.
• Define, design, build, testing, and rollout of the enterprise IDM and Access Management solutions in collaboration with internal and external resources.
• Serve as a trusted adviser to the business stakeholders and understand their core business processes, business priorities which can be enhanced using IDM solutions.
• Provide technical Engineering and vision for customers' application platforms
• Ability to support negotiations on scope of work as well as manage work with outside vendors / integrators. This includes SOW, MSA, NDA's, along with full financial tracking and defining business benefits.
• Contribute and review IDM and Access Management solution design: ensure innovation, security, and business requirements are met, while also keeping a keen eye on improving the associate's experience with technology
• Partner with other internal or supplier teams as needed (e.g. architecture, information security, network)
• Collaborate cross-functionally with other technology teams and security policy organization.
• Define an enterprise IDM Engineering strategy, with a roadmap of key deliverables and timelines, and deliver consistently.
• Mentor other members of the team on IDM best practices
• Maintain up-to-date knowledge by researching new technologies and software products, participating in educational opportunities and conferences, and reading professional publications
• Foundational knowledge of Identity Management technologies such as SailPoint, PingID, CA Identity Suite
• Experience with roadmap ownership, use case creation, strategy development, KPI development, and customer relationship management
• Significant experience working with large tier security vendors leading RFI/RFP's and contributing to industry standards and working groups
• A true technical director that inspires creativity, innovation and technical leadership from his/her team. A leader focused on the execution component that is agile and understands how to map the business needs to viable technology solutions and achieve desired results. An extremely technical leader and SME in identity management and authentication technologies, and their implementation in large scale environments
Primary Responsibilities:
• Participate in the definition and leading technical programs that support the TP&S security strategy and architecture for security services, mechanisms and safeguards for a broad reaching information security program
• Work in active partnership with stakeholders (Office of the Global CISO, TP&S and Architecture teams, Policy and Compliance Organizations, Network Engineering Organization, and the Business| parallel technical teams) to understand often unique business requirements and develop supporting security domain expertise and technical objectives that will enable the growth and evolution of Comcast's CyberSecurity Identity Management program
• Ensure that operational and incident trends and observations are considered with regard to the evolution of the company's enterprise security architecture capabilities
• Communicate and work through conceptual design (CCD-HLD) and (SLD) system level design to design in compensating controls, increase visibility/telemetry and IR capabilities
• Design and evaluate platforms and structure for integrating diverse security toolsets and technologies
• Provide consulting functions to address IDM and Access Management posture
• Promote a consistent risk vocabulary for application risk and controls and align that vocabulary with related compliance and business risk disciplines within the organization
• Develop metrics that demonstrate current technology implementation roadmaps, indicators of progress, and alignment across teams for those activities
• Support other senior leaders in Information Risk Management in leveraging those metrics as part of the overarching risk and operational dashboard
• Formally and informally respond to customer and regulatory requests with regard to IDM security services, mechanisms and safeguards
• Working under extreme pressure and tight deadlines in a calm and collaborative fashion leading from the front
Required Qualifications:
• 5+ years of experience leading IDM Engineering teams and building Access Management Platforms and Solutions
• 10+ years of leadership and mentoring experience in hands-on and rolling up your sleeves management
• 10+ years of experience managing and providing technical leadership for complex enterprise security projects/programs for a large enterprise organization
• 10+ years of experience with Identity Management technologies and implementations
• Specific experience managing projects / programs from concept through implementation (supporting oversight processes) using a structured project management methodology across the entire project life cycle yet not a project manager per se
• Industry-specific certifications, including two or more of the following: C|CISO, CISSP, CISA, CISM, ISSACA.
Education Level:Bachelor's Degree or Masters Preferred
Field of Study:System Engineering, System Development, Cyber Security, Computer Science, Identity Management, Access Management or related field
CertificationsRequired: CISSP; CISA, CISM or GIAC
Years' Experience:Generally, requires 10+ years related experience. Five or more years in a carrier class Internet Service Provider, preferred.
Comcast is an EOE/Veterans/Disabled/LGBT employer