Job Description

We are passionate people focused on transforming the customer experience and dedicated to creating innovative solutions to address the unique challenges of our extraordinary scale

Requisition #: R366713 Pub Date: 06/22/23 Apply Now Share This Job With a friend (or yourself)

Job Summary

You are entrepreneurial. You like driving new relationships. You are good at evangelizing new technologies and researching the latest in cybersecurity. You achieve satisfaction in seeing customers solve hard security problems. You enjoy the challenge and thrill of succeeding in bringing new technology approaches to market. In the role of GRC Field Architect, you will be a leader within Comcast Technology Solution’s exciting new cyber security business unit, which sells SaaS and subscription security solutions to the large enterprise and federal government. Currently, two solutions, BluVector and DataBee, both used internally by the Comcast CISO organization, are sold by the business unit. These solutions are advanced threat detection, advanced threat hunting and security operations center and compliance offerings that improve security and compliance in a cost-effective manger. DataBee is the BU’s growth engine and is an innovative security & compliance data fabric platform, a new market segment rapidly replacing SIEM and other legacy security & compliance toolsets. As a GRC expert, you will be responsible for assisting our clients in developing and implementing effective governance, risk management, and compliance programs. Your primary focus will be on utilizing and applying various industry-standard frameworks, including NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance. Additionally, the ideal candidate should have experience in building out a comprehensive consulting program, defining artifacts, deliverables, cadence, and the engagement process.

Job Description

In the role of GRC Field Architect, you will be a leader within Comcast Technology Solution’s exciting new cyber security business unit, which sells SaaS and subscription security solutions to the large enterprise and federal government. Currently, two solutions, BluVector and DataBee, both used internally by the Comcast CISO organization, are sold by the business unit. These solutions are sophisticated threat detection, sophisticated threat hunting and security operations center and compliance offerings that improve security and compliance in an efficient manner. DataBee is the BU’s growth engine and is an innovative security & compliance data fabric platform, a new market segment rapidly replacing SIEM and other legacy security & compliance toolsets.

As a GRC expert, you will be responsible for assisting our clients in designing and implementing effective governance, risk management, and compliance programs. Your main focus will be on using and applying various industry-standard frameworks, including NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance. Additionally, the ideal candidate should have experience in building out a comprehensive consulting program, defining artifacts, deliverables, cadence, and the engagement process.

Core Responsibilities

• Provide expert mentorship and consulting services to clients regarding GRC standard processes, frameworks, and methodologies.
• Lead the development, implementation, and enhancement of GRC programs tailored to meet clients' specific needs and industry requirements.
• Use the DataBee data security fabric product to implement compliance programs for clients, ensuring alignment with industry frameworks and standards.
• Collaborate with clients to design and implement GRC strategies, policies, and procedures aligned with industry frameworks such as NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance.
• Assist clients in establishing risk management frameworks, including the identification, assessment, and mitigation of risks.
• Support the development and implementation of compliance initiatives, ensuring consistency to relevant regulations and standards.
• Serve as a domain expert on GRC-related matters, staying ahead of industry trends, emerging frameworks, and regulatory changes.
• Deliver training and education to clients and internal partners on GRC principles, frameworks, and standard processes.
• Develop and build out a comprehensive consulting program, including defining artifacts, deliverables, cadence, and the engagement process.
• Provide guidance and expertise in defining the engagement process with clients, ensuring effective communication, project management, and client satisfaction.
• Travel is expected to be 20%.

Requirements

• Bachelor's degree in a relevant field such as Information Security, Risk Management, or Business Administration. A master's degree is preferred.
• Demonstrable experience working as a GRC professional, consultant, or program manager, preferably in a client-facing role.
• In-depth knowledge and experience with a broad range of GRC frameworks, including NIST CSF, NIST 800.53, ISO27001 series, COBIT 2019, SOC2 attestation from AICPA, and PCI Compliance.
• Solid understanding of risk management principles and methodologies.
• Experience in standing up GRC programs/functions within an industry setting.
• Experience in internal audit, preferably with multi-year experience.
• Excellent analytical and problem-solving skills, with the ability to assess sophisticated GRC challenges and develop practical solutions.
• Good communication and interpersonal skills, with the ability to successfully connect with partners at all levels of an organization.
• Proven experience in building and defining a consulting program, including artifacts, deliverables, cadence, and the engagement process.

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Be responsible for the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be hard-working learners, users and advocates of our groundbreaking technology, products and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new insights.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
• Get results and growth.
• Respect and promote inclusion & diversity.
• Do what's right for each other, our customers, investors and our communities.

Disclaimer:

• This information has been crafted to indicate the general nature and level of work performed by employees in this role. It is not crafted to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Comcast is an EOE/Veterans/Disabled/LGBT employer.

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other basis protected by applicable law.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Relevant Work Experience

7-10 Years

Salary:

Pay Range: $125,562.48 - $188,343.72

Comcast intends to offer the selected candidate base pay within this range, dependent on job-related, non-discriminatory factors such as experience.

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.

Salary:

Pay Range: $125,562.48 - $188,343.72

Comcast intends to offer the selected candidate base pay within this range, dependent on job-related, non-discriminatory factors such as experience.

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.