Lead Analyst Security Governance and Requirements

Effectv, the advertising sales division of Comcast Cable, helps local, regional and national advertisers use the best of digital with the power of TV to grow their business. It provides multi-screen marketing solutions to make advertising campaigns more effective and easier to execute. Headquartered in New York with offices throughout the country, Effectv has a presence in 66 markets with nearly 35 million owned and represented subscribers. We’re dedicated to helping our clients meet their business goals by connecting them with their customers through multiscreen television advertising. Working with companies from local startups to nationwide corporations, we provide support to help each business reach its target customers. By applying data to television advertising in new ways, we’re able to bring our clients the best of digital media, coupled with the power of TV. To learn more, check out www.effectv.com.

Job Summary

The Lead Analyst Security Governance and Requirements is the subject matter expert for all things security policies, standards, and controls within Effectv. As part of the Governance, Risk and Compliance (GRC) team within the Technology, Experience and Services organization, they are responsible for incorporating operational and compliance monitoring of security controls and policies into both existing and new technologies, applications, and systems. Implements strategies and maintains subject matter expertise on security industry best practices. They participate in architecture, design, and development meeting to ensure all security policies, standards and controls are incorporated into technology. They act as a key contributor in a complex and crucial technology environment.

Job Description

CORE RESPONSIBILITIES

• Assess, evolve, and influence the policy management framework for all security policies and standards in partnership with corporate security teams.
• Review and make recommendations for streamlining existing and future security policies.
• Appropriately challenge and assess control design and effectiveness in order to ensure policy and standard enforcement.
• Create a process and collateral for rolling out new security policies and reinforcing security awareness.
• Establish, document, and broadly communicate security policy management norms to the technology organization, outlining how to create, maintain, enforce, and deprecate security controls in line with enterprise policy requirements.
• Collaborate within Effectv GRC, Corporate Security and Effectv Technology to support audits and examinations, track policy implementation and issues, and incorporate global security compliance requirements into all projects and programs.
• Manage the Security Exception Process to enable Effectv GRC and Technology teams to track exceptions, manage approvals, and improve automation.
• Strong partnership with internal and external technology teams including applications, infrastructure, and cloud.
• Participates in the administrative processes for Human Resources including hiring and promotions.
• Consistent exercise of independent judgment and discretion in matters of significance.
• Regular, consistent, and punctual attendance. Must be able to work nights and weekends, variable schedule(s) and overtime as necessary.
• Other duties and responsibilities as assigned.

REQUIREMENTS

• Bachelor’s degree in computer science, Accounting/Finance, or related field, or equivalent work experience.
• 4+ years of experience in governance, risk, and compliance function.
• Experience in security frameworks such as NIST, ISO, HIPAA or HiTrust and regulatory compliance reporting such as PCI and/or SOX.
• Experience or foundational knowledge in of security and cloud architecture.
• Expert experience in policy and exception management.
• Experience managing risk and compliance function in a cloud computing environment.
• Strong analytical, organization, time management, facilitation, and process management skills
• Demonstrated high level of written, verbal, and interpersonal skills to communicate technical and non-technical information, ideas, procedures, and processes.
• CISA, CGEIT, CISSP or CRISC certification preferred.

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new ideas.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
• Drive results and growth.
• Respect and promote inclusion & diversity.
• Do what's right for each other, our customers, investors, and our communities.

Disclaimer:

This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications.

Comcast is an EOE/Veterans/Disabled/LGBT employer.

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law. Comcast will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law, including the Los Angeles Fair Chance Initiative for Hiring Ordinance and the San Francisco Fair Chance Ordinance.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Relevant Work Experience

7-10 Years

Salary:

National Pay Range: $79,099.56 USD-$185,389.61 USD

Comcast intends to offer the selected candidate base pay within this range, dependent on job-related, non-discriminatory factors such as experience.

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality – to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.