Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.) **Job Summary** Comcast is seeking a Product Security Engineer to join its dynamic Bug Bounty team. In this pivotal role, you will collaborate with security researchers and ethical hackers to identify, assess, and remediate vulnerabilities across the organization. You will work closely with product teams to ensure thorough and prompt resolution of security issues, gaining deep technical insights into Comcast's infrastructure and operations. As a key member of the security team, you will leverage your technical expertise and leadership skills to drive the expansion of Comcast's Bug Bounty Program by assessing the overall security maturity and systems architecture of products to launch bug bounty programs. Your responsibilities will also include conducting web application pen testing, developing vulnerability detection tools and process improvements. The ideal candidate will demonstrate resilience, a passion for continuous learning, and a proactive security mindset, ultimately working to uphold the highest standards of customer trust and safety. **Job Description** **Core Responsibilities** - Assess, research, prioritize, and escalate reported vulnerabilities as appropriate, often involving web application testing. - Identify trends in security research methods and develop tools for proactive vulnerability detection - Coordinate security incident response and vulnerability management activities with product teams - Partner with other teams in the security organization to build and test remediation strategies - Attend technical calls with internal or external parties regarding reported vulnerabilities - Identify gaps within existing internal security practices and propose enhancements where necessary - Participate in a weekend rotation that includes your peers on the team **Basic Qualifications -** - Masters or Bachelor's degree in computer science or equivalent - Knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits or equivalent - Experience applying threat modeling or other risk identification techniques or equivalent - 3+ years' experience in web application security and vulnerability management roles **Must-Have Skills:** - Technical background, Linux, Burpsuite, Python, OWASP Top 10, hand-on experience in security projects - Excellent written and oral communication skills - Ability to convey technical concepts relating to vulnerability details to a non-technical audience. **Preferred:** - Certifications- OSCP, PNPT, eJPT - Contributions to the security community (public research, blogging, presentations, bug bounty, etc.) Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law. **Skills:** Security Research; Penetration Testing; Infrastructure Penetration Testing Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits to eligible employees. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary (https://jobs.comcast.com/benefits) on our careers site for more details. **Education** Bachelor's Degree While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience. **Relevant Work Experience** 10 Years +, 5-7 Years, 2-5 Years, 0-2 Years, 15 Years +, 7-10 Years **Job Family Group:** Information Technology