NBCUniversal

Compensation

Full Description

Company Description NBCUniversal is one of the world's leading media and entertainment companies. We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, NBC News, MSNBC, CNBC, NBC Sports, Telemundo, NBC Local Stations, Bravo, USA Network, and Peacock, our premium ad-supported streaming service. We produce and distribute premier filmed entertainment and programming through Universal Filmed Entertainment Group and Universal Studio Group, and have world-renowned theme parks and attractions through Universal Destinations & Experiences. NBCUniversal is a subsidiary of Comcast Corporation. Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and develop a talented workforce to create and deliver a wide range of content reflecting our world. Comcast NBCUniversal has announced its intent to create a new publicly traded company ('Versant') comprised of most of NBCUniversal's cable television networks, including USA Network, CNBC, MSNBC, Oxygen, E!, SYFY and Golf Channel along with complementary digital assets Fandango, Rotten Tomatoes, GolfNow, GolfPass, and SportsEngine. The well-capitalized company will have significant scale as a pure-play set of assets anchored by leading news, sports and entertainment content. The spin-off is expected to be completed during 2025. Job Description The SIEM Logging and Monitoring Service Security Engineer – SME & Team Lead is key member of the new Versant Cyber organization who will serve as the subject matter expert for enterprise data security, encryption, and key management services. This role combines deep technical expertise with team leadership to ensure sensitive data is protected across applications, databases, storage, cloud, and network environments. The successful candidate will lead a team of engineers, define data protection strategies, and implement encryption, tokenization, and data loss prevention technologies while ensuring compliance with regulatory and industry standards. RESPONSIBILITIES: Key areas of focus for the SIEM Logging and Monitoring Service Security Engineer all the systems across the data centers and cloud. The successful candidate will be responsible for the following activities: • Lead and mentor a team of security engineers and analysts responsible for SIEM logging and monitoring. • Serve as SME for SIEM platforms (Splunk, Sentinel, Datadog, QRadar, or equivalent). • Define, implement, and maintain enterprise-wide logging and monitoring standards. • Develop detection rules, correlation logic, dashboards, and reports to strengthen threat detection. • Integrate application logs, database audit logs, storage logs, IAM events, network logs, and system logs into SIEM platforms. • Build and maintain log parsers, normalization rules, and enrichment pipelines. • Monitor application events, authentication/authorization activity, and API usage. • Capture and analyze database activities, privileged user access, schema changes, and sensitive data queries. • Enable monitoring for cloud storage activity, permission changes, and data access anomalies. • Ingest and monitor logs from IAM, IGA, and PAM systems (e.g., Entra ID, Ping, Okta, CyberArk). • Track authentication events, provisioning/deprovisioning activity, and privilege escalations. • Collect and analyze logs from firewalls, IDS/IPS, proxies, VPNs, and cloud-native network tools. • Monitor network anomalies, suspicious traffic patterns, and data egress activity. • Integrate logs from Windows, Linux, and cloud-based systems for full infrastructure visibility. • Monitor system-level administrative access, service accounts, and configuration changes. • Incorporate logs from virtualization and container platforms (VMware, Kubernetes, Docker). • Partner with SOC and IR teams to tune alerts, reduce false positives, and improve detection fidelity. • Provide Tier 3 support and subject matter expertise during high-severity incidents. • Ensure logging and monitoring capabilities align with compliance and audit requirements (SOX, PCI, GDPR, CCPA, etc.). • Drive improvements in detection engineering, alert fidelity, and security visibility across the enterprise. • Evaluate and implement new SIEM and monitoring tools to enhance capabilities. Qualifications • BS in Computer Science, Information Security, or related field (or equivalent practical experience). • 5–8 years of experience in systems/infrastructure security with increasing responsibility. • Demonstrated leadership or team lead experience in a security operations or engineering role. • Proven ability to mentor and guide junior engineers. • Excellent problem-solving, communication, and stakeholder engagement skills. • Experience in forecasting and managing cybersecurity budgets and vendor relationships including outsourced staff and services. • Deep hands-on experience with SIEM platforms (Splunk, Sentinel, Datadog, QRadar, etc.). • Proven experience integrating logs from applications, databases, storage, IAM, network, and systems. • Strong understanding of log parsing, normalization, and enrichment. • Familiarity with detection engineering, MITRE ATT&CK, and threat hunting. • Cloud log integration expertise (AWS CloudTrail, Azure Monitor, GCP Logging). • Proficiency in scripting (Python, PowerShell, Bash). • Strong understanding of compliance requirements and security frameworks (CIS, NIST, ISO). • Experience securing cloud environments and designing future-state architecture. • Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them and the ability to translate this to defending Versant. DESIRED CHARACTERISTICS: • Previous experience working in multiple large complex environments and specifically within the Identity and/or Security Engineering components of those organizations. • Previous experience working in identity, security engineering, and/or information security functions in the media and advanced technology industries. • Master’s Degree in an IT related field. Additional Requirements: • Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-Versant worksite, most commonly an employee’s residence. This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $145,000 - $170,000 (bonus eligible) We are accepting applications for this position on an ongoing basis. Additional Information As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. If you are a qualified individual with a disability or a disabled veteran and require support throughout the application and/or recruitment process as a result of your disability, you have the right to request a reasonable accommodation. You can submit your request to [email protected]. Although you'll be hired as an NBCU employee, your employment and the responsibilities associated with this job likely will transition to Versant in the future. By joining at this pivotal time, you'll be a part of this exciting company as it takes shape.