Comcast

Comcast Cybersecurity: Director, Security Operations and Incident Response

Comcast$130K — $180K *
Information Technology
8 - 10 years of experience
Job Overview by Ladders

Qualifications

  • 10+ years in cybersecurity, with at least 5 years managing teams
  • Proven track record in handling high-severity incidents and executive comms
  • Availability for a 24x7 operation during critical security events
  • Strong leadership in building and overseeing security teams
  • Deep technical knowledge in security operations and technology
  • Experience collaborating with engineering on security tool enhancements
  • High-pressure decision-making capabilities under fast-paced incidents
  • Expertise in developing incident response frameworks and continuous improvement strategies

Responsibilities

  • Lead the scaling of Comcast's Security Operations Center and incident response functions
  • Develop operational models and escalation paths for managing major incidents
  • Act as a senior incident commander for high-severity cybersecurity events
  • Oversee the threat hunting function to preemptively identify security risks
  • Mature the enterprise threat detection strategy in alignment with business needs
  • Coordinate with engineering teams for improving cyber operations tools
  • Drive continuous enhancement of detection abilities across various environments
  • Establish metrics to track SOC performance and incident response efficacy

Benefits

  • Personalized support tailored to physical, financial, and emotional wellbeing during major life events
  • Expert guidance and tools available 24/7 to help you manage life's milestones
  • A comprehensive range of options to promote healthy work-life balance
  • Support for fostering an inclusive workplace culture
  • Opportunities for professional growth and career development through training and mentoring
Full Job Description
Job Summary
At Comcast, we are committed to providing secure and reliable services for our customers, employees, and business partners. As the
Director, Security Operations and Incident Response, you will lead the enterprise cyber defense function responsible for detecting, analyzing,
hunting, escalating, and responding to cybersecurity threats across Comcast.

This role is accountable for scaling Comcast's Security Operations Center, Security Incident Response Team, threat hunting, and threat
detection capabilities to meet a materially changed threat environment. Comcast must be prepared to manage multiple major incidents
concurrently, maintain high-quality response under elevated case volume, proactively identify emerging threats, and continuously improve detection coverage across enterprise environments.
The Director will provide strategic leadership, executive-level incident command, operational transformation, and cross-functional coordination
across Cybersecurity, IT, Legal, Privacy, Communications, Engineering, Product, and business leadership. This leader will also partner
closely with engineering teams to improve the tools, data pipelines, dashboards, automations, and workflows used by cyber operators every
day.
This is a critical leadership role responsible for protecting Comcast, our customers, our workforce, and our network from high-impact cyber
threats.

Job Description

This position is ineligible for visa sponsorship. To be considered for this role, you must be legally authorized to work in the United States and not require sponsorship for employment now or in the future.

Core Responsibilities:
  • Lead and scale Comcast's SOC, Security Incident Response Team, threat hunting, and threat detection functions, ensuring the organization is trained, equipped, and structured to respond effectively to routine security events and major incidents.
  • Build the operating model, staffing approach, escalation paths, runbooks, and surge capacity required to manage multiple concurrent major incidents.
  • Serve as a senior incident commander for high-severity cybersecurity events, coordinating response across technical teams, business stakeholders, legal, privacy, communications, and executive leadership.
  • Lead Comcast's threat hunting function to proactively identify adversary behavior, emerging attack patterns, control gaps, and high-risk activity before it becomes a major incident. Including leading Purple Team activities.
  • Own and mature the enterprise threat detection strategy, including detection coverage, alert fidelity, tuning, detection lifecycle management, and alignment to threat intelligence, adversary tradecraft, and business risk.
  • Partner with security engineering, data engineering, platform engineering, and product teams to design and improve the tools, pipelines, dashboards, automations, and case management workflows used by cyber operations teams.
  • Drive continuous improvement across SIEM use cases, endpoint detections, cloud detections, identity detections, network telemetry, enrichment pipelines, automation, and analyst workflows.
  • Ensure lessons learned from incidents and hunts directly inform new detections, improved runbooks, stronger controls, and better response procedures.
  • Develop and continuously improve incident response strategy, severity models, communications protocols, after-action reviews, and remediation tracking.
  • Establish executive reporting on incident trends, SOC performance, detection quality, threat hunting outcomes, operational capacity, readiness gaps, and enterprise risk.
  • Define and track metrics for mean time to detect, mean time to respond, alert quality, false-positive reduction, detection coverage, incident conversion, hunting outcomes, case volume, backlog, and major-incident readiness.
  • Manage relationships with external incident response providers, security vendors, technology partners, and strategic service providers to ensure effective support during critical incidents.
  • Ensure SOC, incident response, threat hunting, and detection practices align with regulatory expectations, internal policies, industry frameworks, and enterprise risk management requirements.
  • Provide leadership to managers and technical teams, including goal setting, performance management, workforce planning, coaching, and career development.
  • Represent Comcast as a senior subject matter expert in security operations, incident response, threat hunting, and threat detection.


Required Qualifications:
  • 10+ years of relevant cybersecurity experience, including leadership experience in cybersecurity operations, security incident response, threat hunting, threat detection, or enterprise SOC functions in a large, complex environment with at least 5 years of experience managing leaders of people
  • Demonstrated experience managing high-severity cybersecurity incidents, including executive communications, cross functional coordination, containment strategy, remediation oversight, and post-incident improvement.
  • This role supports a 24x7 cybersecurity operation and requires availability outside of standard business hours, including nights, weekends, and holidays, during critical incidents and high-severity security events.
  • Strong leadership experience building, managing, and scaling technical security teams, including managers, incident responders, SOC analysts, threat hunters, detection engineers, and specialized security professionals.
  • Deep technical understanding of modern security operations, including SIEM, EDR, threat intelligence, malware analysis, digital forensics, cloud security, identity security, network security, automation, and detection engineering.
  • Experience partnering with engineering teams to build, improve, and operationalize security tools, data platforms, dashboards, automations, telemetry pipelines, and analyst workflows.
  • Proven ability to make high-impact decisions under pressure and lead teams through ambiguous, fast-moving security events.
  • Experience developing incident response operating models, playbooks, escalation procedures, readiness exercises, metrics, and continuous improvement programs.
  • Strong understanding of adversary tradecraft, threat hunting methodologies, detection lifecycle management, and frameworks such as MITRE ATT&CK.
  • Strong executive communication skills, including the ability to brief senior leaders on risk, impact, operational status, capacity gaps, and recommended actions.
  • Ability to collaborate effectively across Cybersecurity, IT, Legal, Privacy, Compliance, Communications, Engineering, Product, and business leadership.
  • Relevant industry certifications preferred, such as CISSP, CISM, GCIH, GCIA, GCFA, GNFA, GMON, or other GIAC certifications.


The ideal candidate is a senior cyber operations leader who can operate at both strategic and tactical levels. They should be comfortable leading during crisis conditions, scaling incident response, maturing threat hunting and detection programs, and partnering with engineering teams to build the operational tools required for enterprise-scale cyber defense.

This leader must be able to translate threat activity, operational pain points, analyst needs, and business risk into durable platforms, automations, detections, workflows, and operating models that improve speed, quality, resilience, and readiness across the SOC. Employees at all levels are expected to:
  • Understand our Operating Principles; make them the guidelines for how you do your job.
  • Own the customer experience think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
  • Know your stuff be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
  • Win as a team make big things happen by working together and being open to new ideas.
  • Be an active part of the Net Promoter System a way of working that brings more employee and customer feedback into the company by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
  • Drive results and growth.
  • Support a culture of inclusion in how you work and lead
  • Do what's right for each other, our customers, investors and our communities


Disclaimer: This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Skills
Artificial Intelligence (AI), Cyber Operations, Executive Presence, People Leadership, Security Incident Response

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality-to help support you physically, financially and emotionally through the big milestones and in your everyday life.

Please visit the benefits summary on our careers site for more details.

Education
Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relevant Work Experience
10 Years +

About Comcast

FreeWheel manages the economics of content for the enterprise class of entertainment, offering technical infrastructure for revenue rights management and business operations, wrapped in advisory services. They offer advertising sales rights, display, video, mobile ad management, contract management, professional content, ad serving, reporting, analytics, technology, services, advisory services, business operations, programmatic advertising, advertising marketplace, and linear, and online advertising.

Comcast Careers

Joining Comcast means becoming part of a dynamic team committed to shaping the future of media and technology. As a leading company in entertainment, communications, and technology, Comcast offers unparalleled job opportunities designed to foster professional growth and innovation. Work You’ll Do At Comcast, you’ll be part of a culture that cherishes diversity, leadership, and innovation. Our team is at the forefront of the industry, leading changes that redefine how people connect and experience content across the globe. Transform your career with a company that is committed to your professional development. Comcast offers a variety of positions across multiple fields, where your skills will be honed for leadership roles and your career aspirations supported by comprehensive training programs. Join Our Leading Team Be part of a team that values creativity and diversity. Comcast’s commitment to inclusive culture and diversity training ensures that every team member’s voice is heard and valued. This approach not only enhances our work environment but also drives our leadership in the competitive tech industry. Innovate with Us Engage in work that matters with a team of over 100,000 employees worldwide. At Comcast, innovation isn’t just another buzzword—it's at the core of everything we do. From developing groundbreaking technology to reimagining how our customers experience entertainment and communication, your work will influence millions. Internship and Employment Opportunities Start your career with a Comcast internship, where you’ll gain invaluable industry experience, network with professionals, and develop skills that will benefit you throughout your career. For those seeking full-time positions, Comcast’s hiring process is designed to find not just the right skills but the right fit for our culture of growth and innovation. Benefits and Growth Comcast is dedicated to the well-being and advancement of our team members. Enjoy a wealth of benefits that support both your professional and personal life, including health, wellness, and retirement plans. Our employees are encouraged to pursue continuous growth through professional development opportunities and leadership training. Stay Connected Join the Comcast Team Explore job opportunities that match your skills and interests. We are always looking for passionate, curious, and solution-driven team players. Search Comcast jobs today and find out where your career could take you. Keep Up to Date Stay ahead with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the people who work here. Read Careers Blog Job Alert Emails Customize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding career opportunities that await at Comcast. By joining Comcast, you’re not just finding a job—you’re joining a community of innovators who are passionate about creating extraordinary experiences for our customers and for each other.
Learn more about Comcast
Size
31,000 employees
Market Cap
$149.9 billion
Industry
Net Income
$10.5 billion
Founded
1963
5 Year Trend
+7.6%
Revenue
$103.5 billion
NASDAQ

Similar Jobs

More Jobs at Comcast

More Information Technology Jobs

Find similar Comcast Cybersecurity: Director, Security Operations and Incident Response jobs: