Security Engineer, Content Security

N

NBCUniversal

Security Engineer, Content Security

Universal City, CA
Full Time
Paid
  • Responsibilities

    Job Description

    NBCUniversal’s Intellectual Property Analytics, Operations, and Technology (IPAOT) team supports NBCUniversal’s content globally with four key areas: (1) developing more secure and scalable frameworks for Internet-based video distribution, (2) improving security technologies and processes in content production and distribution, (3) addressing voluminous copyright infringements on websites, apps and protocols, and (4) analyzing data to measure and understand the drivers of unlicensed video consumption on the Internet.

    Role Purpose:
    The IPAOT – Content Security team at NBCUniversal is looking for a talented data-driven individual who will take a leadership role in the assessment, analysis and direction of the vendor security and platform security assessment programs. Additionally, this role will work closely with the business to understand content related pain points and be a go-to for policy and security based questions. The ideal candidate will use their engineering skillset and security experience to shape existing programs and help architect new ones, driving for more secure technologies that enable business units across production, post production and distribution. This is a fast-paced role that interfaces with many internal business units, 3rd party vendors and executive stakeholders at NBCUniversal.

    Responsibilities:
    Assess

    • Coordinate, schedule and track security assessments with 3rd party vendors based on the MPA’s Best Practices, ISO and NIST
    • Review completed security assessments and record findings in internal tracking platform
    • Ensure assessment data from vendors is current and free of discrepancies

    Remediate

    • Work with external vendors to remediate critical vulnerabilities and challenge inaccurate information with evidence; this includes coordinating with internal security teams to develop the remediation plan, scheduling follow up discussions and updating the information in our tracking portal

    Report

    • Create detailed reports for all aspects of the vendor assessment program and create business specific reports to enable the business to understand risks and make informed decisions
    • Communicate risk analysis effectively to internal business units, distilling complex sets of security data into succinct plans, actions and next steps

    Consult/Advise

    • Review and stay current on media technology platforms that store and distribute content, offering subject matter expertise on the security viability of those solutions
    • Review and be aware of the latest in technology developments for security technologies that protect media including: multifactor authentication, visible and invisible watermarks, encryption and user authentication
    • Be able to test against the above security technologies on the platforms they are implemented within

    Project Management

    • Gather requirements for projects, develop timelines and manage the execution of project deliverables
  • Qualifications

    Qualifications

    Basic Qualifications:

    • Bachelor’s degree in engineering, information systems, computer science, cyber security or related field, or equivalent five years’ experience
    • Demonstrated experience in working with complex data sets and building presentations to summarize the data to colleagues and executives using Tableau, Excel, PowerPoint and Word.
    • Experience with the MPA’s Best Practices including Management Systems, Physical Security, Digital Security, Cloud & Application Security controls
    • Experience in working with 3rd party external vendors in evaluation of their security architecture against an industry standard set of best practices
    • Experience with reading, analyzing and critiquing vulnerability scan reports, and penetration tests for both infrastructure environments and application software
    • Experience with architectures of both physical and virtual environments that store content, including compute and storage infrastructure, firewalls, VLANs/VPCs, routing, etc.
    • Experience with encryption technologies, both file-based and filesystem-based encryption at-rest and in-motion
    • Experience with multi-factor authentication technologies and implementations

    Desired Characteristics:

    • Proven ability to work independently with little to no direction and maintain a strong focus on business priorities and be persistent in follow-through
    • Demonstrated excellent organizational, analytical and problem-solving ability
    • Demonstrated strong and effective communicator, both verbally and written, with ability to interface with various departments of the company, as well as outside vendors and contractors
    • Knowledge of or involvement in the Trusted Partner Network (TPN) initiative with MPA/CDSA and the Studios
    • Experience with security features of file storage/sharing platforms including Sharepoint, Dropbox, Box, Slack, Aspera, Signiant, etc.
    • Experience with dailies and cut review platforms such as: PIX, DAX, 5th Kind Core, Shift.io, Frame.io
    • Experience with Digital Rights Management (DRM) technologies such as: Widevine, PlayReady, Primetime, Fairplay
    • Experience with content protection technologies such as visible/invisible/forensic watermarking and detection. Single and multi-key watermarks and session-based watermarks
    • Experience with authoritative security sources such as ISO, NIST, CSM
    • Experience with intrusion detection and prevention software, and definition vs AI/machine learning based technologies
    • Experience with the architecture and security of major cloud platforms including Microsoft Azure, Amazon AWS, and Google Cloud

    Hybrid: This position has been designated as hybrid, generally contributing from the office a minimum of three days per week.

    This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $105,000 - $135,000.

    Additional Information

    As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

    NBCUniversal will consider for employment qualified applicants with criminal histories, or arrest or conviction records, in a manner consistent with relevant legal requirements, including the City of Los Angeles' Fair Chance Initiative For Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, where applicable.

    If you are a qualified individual with a disability or a disabled veteran and require support throughout the application and/or recruitment process as a result of your disability, you have the right to request a reasonable accommodation. You can submit your request to AccessibilitySupport@nbcuni.com.