Remote Director, Infrastructure Security Services @ NBCUniversal

Company Description

NBCUniversal is one of the world’s leading media and entertainment companies. We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, NBC News, MSNBC, CNBC, NBC Sports, Telemundo, NBC Local Stations, Bravo, USA Network, and Peacock, our premium ad-supported streaming service. We produce and distribute premier filmed entertainment and programming through Universal Filmed Entertainment Group and Universal Studio Group, and have world-renowned theme parks and attractions through Universal Destinations & Experiences. NBCUniversal is a subsidiary of Comcast Corporation.

Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and develop a talented workforce to create and deliver a wide range of content reflecting our world.

Comcast NBCUniversal has announced its intent to create a new publicly traded company (‘Versant’) comprised of most of NBCUniversal’s cable television networks, including USA Network, CNBC, MSNBC, Oxygen, E!, SYFY and Golf Channel along with complementary digital assets Fandango, Rotten Tomatoes, GolfNow, GolfPass, and SportsEngine. The well-capitalized company will have significant scale as a pure-play set of assets anchored by leading news, sports and entertainment content. The spin-off is expected to be completed during 2025.

Job Description

The Director, Infrastructure Security Services will be a key member of the new Versant Cyber organization. This individual is responsible for protecting the organization’s foundational systems and communication platforms. This role will define the design, implementation, and management of systems, processes, and teams that protect against cyber threats and ensure the integrity, confidentiality, and availability of critical IT assets. This individual reports directly to the VP, Identity and Security Services and will interact with various key stakeholders within the Cyber organization and drive relationship management across the Versant business areas.

RESPONSIBILITIES: 

The Director of Security Services will lead the design, delivery, and ongoing enhancement of enterprise-wide security capabilities to protect the applications, data, networks, broadcast platforms, and systems of a leading cable and media company. This leader will be accountable for ensuring the resiliency, availability, and trustworthiness of security services, leveraging advanced tools and modern architectures to safeguard both business-critical infrastructure and customer-facing platforms. 

This role requires expertise across the spectrum of enterprise, cloud, and content delivery environments, as well as the ability to balance business enablement, regulatory compliance, and consumer trust. 

• Define and implement the enterprise security services strategy across cable, broadcast, digital media, and corporate IT environments. 
• Develop multiyear roadmaps for evolving security services to address emerging threats, regulatory requirements, and business growth. 
• Advise executive leadership on risk posture, threat landscape, and prioritization of investments in security technology. 
• Define KPIs and performance metrics for availability, detection coverage, incident response, and compliance. 
• Ensure compliance with industry regulations and frameworks (e.g., FCC, GDPR, SOX, PCI DSS, NIST CSF). 
• Drive operational efficiency while maintaining SLAs and resiliency for mission-critical services. 
• Partner with IT, broadcast operations, and business units to embed security into all stages of service delivery. 
• Foster a culture of collaboration, continuous learning, diversity, and innovation. 
• Lead high-performing teams of engineers and specialists delivering 24×7 security services. 
• Network & Infrastructure Security 
• DNS security & resilience (e.g., Infoblox, Akamai). 
• Network segmentation, micro-segmentation, and Zero Trust models. 
• VPN, ZTNA, and secure access solutions. 
• Application & API Security 
• Web application security & bot management (e.g., Shape Security, Akamai Bot Manager). 
• Secure software development lifecycle (SSDLC) and shift-left testing. 
• API security (e.g., Salt Security, Apigee). 
• Code & dependency scanning (e.g. Veracode). 
• Data Security & Privacy 
• Data Loss Prevention (DLP) tools and policies. 
• Encryption, key, and secrets management (e.g., HashiCorp Vault, HSM). 
• Cloud security posture management (CSPM) and data classification (e.g., Wiz, Netskope). 
• Insider threat monitoring. 
• Threat Detection, Logging, and Response 
• Centralized logging and SIEM platforms (e.g., Splunk, Elastic). 
• Security Orchestration, Automation, and Response (SOAR) platforms. 
• Threat intelligence integrations & dynamic blocklists (e.g., Cyber Dynamic Lists, ISAC feeds). 
• Endpoint Protection. 
• Media & Content Security 
• Digital Rights Management (DRM) & conditional access for broadcast and streaming. 
• Anti-piracy and content protection services (e.g., watermarking, takedown services). 
• Content distribution and CDN security. 
• Cloud & Emerging Technology Security 
• Cloud workload protection and compliance monitoring (AWS, Azure, GCP). 
• CASB (Cloud Access Security Broker) for SaaS protection. 
• Secure API gateways and service meshes. 
• Preparation for AI/Agentic system security and monitoring. 

Qualifications

• Minimum 8 years working across cyber security disciplines to include but not limited to Identity and Access Management (IAM), Security Engineering, Product Security, Networking, Platforms, Cloud, or Information Security.
• Experience in forecasting and managing cybersecurity budgets and vendor relationships including outsourced staff and services. 
• Solid IT engineering experience and breadth with exposure to SWE, IT Systems Administration, Enterprise Tooling, Automation, *nix systems, Windows, Cloud (AWS preferred), etc. 
• Expertise in configuring and managing corporate edge firewalls and network security solutions. 
• Deep understanding of email-based threats (e.g., phishing, BEC, ransomware) and network-based threats (e.g., DDoS, intrusion attempts) and protective measures. 
• Understanding of the state of the security industry and applicable trends and market opportunities. 
• Experience securing cloud environments and designing future-state architecture. 
• Knowledge of the cyber threat landscape to include different types of adversaries, campaigns, and the motivations that drive them and the ability to translate this to defending Versant.
• Strong leadership skills, social and business acumen, and proven results working with leaders across organizational and business lines to solve complex problems.
• Bachelor’s Degree in an IT related field and/or equivalent work experience. 

DESIRED CHARACTERISTICS: 

• Previous experience working in multiple large complex environments and specifically within the Identity and/or Security Engineering components of those organizations.
• Previous experience working in identity, security engineering, and/or information security functions in the media and advanced technology industries.
• Master’s Degree in an IT related field. 

Additional Requirements: 

• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-Versant worksite, most commonly an employee’s residence. 

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $150,000 – $200,000 (bonus and long-term incentive eligible) 

We are accepting applications for this position on an ongoing basis. 

Additional Information

As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal’s policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

If you are a qualified individual with a disability or a disabled veteran and require support throughout the application and/or recruitment process as a result of your disability, you have the right to request a reasonable accommodation. You can submit your request to AccessibilitySupport@nbcuni.com.

Although you’ll be hired as an NBCU employee, your employment and the responsibilities associated with this job likely will transition to Versant in the future. By joining at this pivotal time, you’ll be a part of this exciting company as it takes shape.