Comcast’s Technology, Product & Experience organization works at the intersection of media and technology. Our innovative teams are continually developing and delivering products that transform the customer experience. From creating apps like TVGo to new features such as the Talking Guide on the X1 platform, we work every day to make a positive impact through innovation in the pursuit of building amazing products that are enjoyable, easy to use and accessible across all platforms. The team also develops and supports our evolving network architecture, including next-generation consumer systems and technologies, infrastructure and engineering, network integration and management tools, and technical standards. We offer a flexible working environment to balance the need to work independently wherever you choose, with days that require collaboration at one of our offices. Our roles primarily reside inside or around one of our Tech Hubs (Philadelphia and surrounding suburbs, Denver, Austin, Silicon Valley, Washington DC/N. Virginia). Some roles can work virtual full-time if they are not near a Tech Hub, but that is dependent upon the needs of the position and amount of collaboration required. Job Summary Comcast seeks to recruit a Vice President of Security Architecture, Identity & Access Management and IoT Security as one of the key leaders of the company’s world class information and product security team. This leader will be responsible for building and leading a very technically talented and diverse team who work across one of the world’s largest broadcasters, telecommunications and internet service providers to ensure its 189,000 employees have the appropriate access to the company’s data and systems, that the company is a wise and responsible steward of its clients’ and customers’ data and that its half million connected devices are secure. This new leader will succeed an executive who is planning on retiring after a successful tenure and will immediately be a part of the leadership team of the world class security program that Ms. Davis and the team have cultivated for the past seven years. As operators of one of the world’s most extensive and high-volume data networks, Comcast has developed one of the world’s largest public key infrastructures (PKI) to enable the secure transfer of digital information (customer and client information, business intelligence, legal data etc.) internally and externally. Another cutting-edge team under this leader is one of the world-leading de-identification practices, using sophisticated encryption and other techniques to ensure customer data is responsibly managed, protecting both Comcast and its customers. The largest team under this VP is that tasked with ensuring Comcast colleagues and clients alike have access to the appropriate tools and information in an efficient and secure way. This includes complex privileged access and secrets management systems. Due to the variety and complexity of Comcast’s businesses, it is critical the program continues to deliver an optimal user experience across these businesses, without compromise on quality and rigor. There is an ongoing desire to continue systems and entitlements rationalization, in pursuit of architectural simplicity and reduced operational risk. This new VP will be a recognized technical subject matter expert in one or more of the role’s core domains, while also being an accomplished leader and influencer in a large, complex matrix. They will ensure alignment with divisional business and technology leaders to develop and deliver a modern set of agile capabilities that reduce cost and complexity and enable innovation and critical initiatives such as Comcast’s leading public key infrastructure (PKI) and de-identification practices. This executive will own the philosophy, practices, and technology to deliver market-leading capability that is frictionless, scalable, and secure. The role will be based out Comcast’s corporate offices in Philadelphia, or at its Mt. Laurel, NJ location, both under a hybrid work model. Job Description Reports to: Noopur Davis, Corporate Executive Vice President, Chief Information Security and Chief Product Privacy Officer Direct reports: 60 total team members with 5 primary functions: Public Key Infrastructure – manage about 300 million certifications with device authentication and certificates that has direct oversight of IoT security. Traditional Identity and Access and Privileged Access – development, testing and production support for entitlement management both for proprietary and off the shelf identity systems. Includes rationalization of systems to deliver consistent, streamlined authentication and improved user experience. This also includes technology and governance to determine standards for separation of duties with proper levels of authentication. De-identification – manage extensive data sets from Comcast’s customers and internal business arms to protect the privacy of individuals while maintaining smooth and cohesive operations. IoT Security – lead the team responsible for securing Comcast’s ~half million connected physical devices. API Gateway Key Responsibilities: Global and group-wide responsibility for the framework of policies and technologies that ensure that the right users – both Comcast employees and its customers - have the appropriate access to data and technology resources to work productively / do business with Comcast seamlessly. Bring an understanding of the developer experience as it relates to entitlements management, understanding the connective tissue / inter-dependencies between application entitlements, platform entitlements and user experience. Develop standards, controls and tools to proactively identify and mitigate risk associated with users gaining illegitimate access to data / systems. Lead identity and access management (IAM) projects, including those involving authoritative source, identity management, provisioning, authentication, authorization, monitoring and certifications, and auditing and reporting. Lead the direction and execution of the IAM road map that prioritizes delivery of a modern tools, policies and practices, as well as supports innovation and new business / technology initiatives. Partner with peers in cybersecurity and technology / engineering to ensure the IAM road map is aligned to the broader information security and technology risk strategy, as well as customized to fit the needs of the respective business lines. Leverage knowledge of various business segments to navigate nuances in operational and technical processes across the respective business lines to anticipate potential roadblocks or challenges. As required, meet with internal and external auditors, regulators, or the board of directors on IAM topics. Supervise the implementation of