Technical Advisor

Comcast Philadelphia, PA

About the Job

Business Unit:

Technical Advisor – Comcast Global Audit


Primary Responsibilities:
The Technical Advisor Network; will partner with quarterly audit teams through planning, execution, and reporting by providing technical expertise and analysis across multiple audit activities. With our standard engagement cadence and focus on diversifying our talent, Advisors will gain broad exposure to our businesses and technologies. Advisors will work collaboratively with audit teams to provide detailed technical Network guidance across a diverse range of Comcast environments on a quarterly basis.

Core Responsibilities/What You Deliver:
-Provides Subject Matter Expertise across all aspects of the Internal Audit process including assessing risk, evaluating technical controls/operations, and partnering with engagement teams to identify and evaluate issues related to the following:
-SDN and SD-WAN Implementation
-HFC Access Network deployment and maintenance
-Network (LAN and WLAN) Access Control and Authentication implementation design and configuration (i.e., Cisco ISE, RSA)
-IDS/IPS solutions (i.e., Tippingpoint, Snort)
-SIEM deployment and performance monitoring (i.e., Arcsight, Splunk)
-Firewalls/VPNs/Proxies (i.e., Cisco, Palo Alto, Juniper, Bluecoat)
-Load balancing/Acceleration solutions (i.e., F5, Riverbed)
-Network resiliency and redundancy (including technical disaster recovery)
-Complex routing and switching solutions (i.e., Cisco, Nexus)

-Manages inquiry and data analysis to understand security and technology operations, assess risk, and partners with engagement teams in developing project scope for complex process areas.
-Contributes to overall planning efforts for multiple engagements regarding technical testing timeline and approach.
-Ensures the team applies appropriate audit procedures to the areas reviewed so that controls are tested and all significant risks are addressed.
-Examines records, documents, methods, policies, costs, and other factors to determine if areas are conducting operations in accordance with established policies/procedures, best practices, information security frameworks, COBIT controls, and governmental and legal requirements.
-Formulates appropriate conclusions based on technical analysis. Combines knowledge of Company operations with testing results to determine the overall impact to the technical environment.
-Writes clear and meaningful audit comments and recommendations for action by management.
-Provides expertise to less technical engagement teams and helps with understanding and executing upon technical concepts and standards.
-Evaluates audit findings, recommends solutions for correcting control weaknesses, and prioritizes areas for management focus.
-Identifies opportunities for improvement to audit methodology, tools, and training.

-Assists in the design, development, and maintenance of a comprehensive corporate audit plan.
-Reviews or prepares details of plans for performing individual systems-related audits including objectives, procedures, budgets, and schedules.
-Manages the activities of assigned audit team members by clarifying audit objectives, approving individual procedures, interpreting policy, and assisting in the resolution of unusual technical problems.
-Leads the presentation and review of audit findings with key members of operating management.
-Recommends and explores alternative courses of action for correcting control weaknesses, resolving operating problems, or improving performance.
-Analyzes actions initiated or proposed in response to audit recommendations. Monitors the completion of corrective actions and, as necessary, advises management of non-compliance.
-Manages the life cycle of technology audits, which assess the design adequacy and operating effectiveness of technology controls. Ensures proper focus, pace, and execution of all audit activities.
-Establishes working relationships with key technology personnelthroughout the Company to sufficiently to gain respect and understanding while maintaining an objective focus.
-Manages Internal Audit resources throughout each project, including the on the job training and development of Internal Audit staff.
-Contributes in areas such as recruiting, staffing, scheduling, budgeting, etc.
-Consistent exercise of independent judgment and discretion in matters of significance.
-Other duties and responsibilities as assigned.

-Supports department objectives and performs other duties and responsibilities, as assigned.

How You Deliver
-Demonstrates the ability to quickly grasp complex subjects. Applies strong analytical skills and technical knowledge.
-Stays current on relevant business risks (e.g., current events, audit trends, emerging technologies, cyber security, etc.) and determines where appropriate to apply to engagements.
-Shows flexibility in prioritizing and completing tasks or stepping in to support execution, as appropriate.
-Exercises consistent judgment and discretion in matters of significance.
-Exhibits willingness to tackle new areas and challenging topics.
-Demonstrates the ability to work in a complex, dynamic, and fast-paced environment.
-Acts in accordance with stated CGA and company policies and practices, and maintains the highest degree of integrity in all activities and interactions.
-Displays regular, consistent, and punctual attendance.  Able to work nights and weekends, variable schedule(s), as necessary.  Out-of-town travel approximately 40%.

How You Partner
-Exhibits strong interpersonal skills including written and verbal communications, and an ability to collaborate with others.
-Shows respect to other team members and clients in all interactions.
-Demonstrates a willingness to assist other team members in areas outside of direct assignments, when necessary.
-Collaborates in a virtual environment to complete projects with team members in various locations.
-Partners with internal CGA teams (e.g., FinOps, SOX, and Data) across engagement activities.
-Includes business partners in engagement activities (e.g., CISO, Legal, Human Resources, Security, and Business Assurance), as needed.

How You Develop
-Utilizes available resources and tools to research and expand knowledge to enhance work product.
-Exhibits a commitment to continuously self-improve by working with leadership to leverage strengths and focus on areas of development.
-Gains knowledge of basic data analytics and cyber security concepts, and applies to engagements.
-Assists less experienced team members with furthering their own development during the course of engagements.

Specifically Required Skills
-Strong knowledge of data networking including TCP/IP, UDP, RTSP, DNS, DHCP, WINS, VLAN assignments, link aggregation, and routing protocols. HFC network experience a plus.
-5+ years of networking experience, including configuring, analyzing & troubleshooting complex enterprise networks.
-CCIE Preferred (Not Required)
-Bachelor's Degree or Equivalent in Management Information Systems (MIS), Computer Science, Accounting / Finance, or a related discipline with solid academic credentials.
-Minimum of 5 years of progressively responsible experience that includes IT audit, compliance or other internal control functions.
-Generally requires 6-9 years related experience
-Experience with identifying risks and controls in regards to various IT related areas (e.g., application, operating system, database, and network).
-Knowledge of and experience with fundamental IT General Controls (e.g., user administration, change management, backup and recovery, program development) concepts and principles.
-Familiarity with Technology risk and control assessment frameworks (e.g., COSO, COBiT, ITIL, PMBOK and ISO 27000).
-Professional certification a plus (e.g., CISA, PMP, CIA, CPA, ITIL, CISSP).
-Proficient in use of Microsoft Office suite (e.g., Excel, PowerPoint, Visio).
-Demonstrated ability to work in a complex, dynamic, and fast-paced environment with strong inherent project management skills, including:  prioritizing tasks, balancing workload between multiple projects, anticipating next steps, adapting to changing situations and project scope.
-Willingness and genuine desire to tackle new areas and consistently challenging topics.
-Able to quickly grasp complex subject matter (both technical and business processes) and apply strong analytical skills and business orientation to assessing processes, risks and controls.
-Strong interpersonal skills required, including:  written and verbal communications, willingness to assist in areas outside of direct assignments when necessary, and commitment to self-improvement and completion of team objectives.

Comcast is not accepting unsolicited assistance from search firms for this employment opportunity.  All resumes submitted by search firms to any employee at Comcast via-email, the Internet or in any form and/or method without a valid written Statement of Work in place for this position from Comcast HR/Recruitment will be deemed the sole property of Comcast.  No fee will be paid in the event the candidate is hired by Comcast as a result of the referral or through other means.


Comcast is an EOE/Veterans/Disabled/LGBT employer