Comcast Cybersecurity: Director, Cybersecurity Awareness, Training, and Communications

Make your mark at Comcast -- a Fortune 30 global media and technology company. From the connectivity and platforms we provide, to the content and experiences we create, we reach hundreds of millions of customers, viewers, and guests worldwide. Become part of our award-winning technology team that turns big ideas into cutting-edge products, platforms, and solutions that our customers love. We create space to innovate, and we recognize, reward, and invest in your ideas, while ensuring you can proudly bring your authentic self to the workplace. Join us. You’ll do the best work of your career right here at Comcast. (In most cases, Comcast prefers to have employees on-site collaborating unless the team has been designated as virtual due to the nature of their work. If a position is listed with both office locations and virtual offerings, Comcast may be willing to consider candidates who live greater than 100 miles from the office for the remote option.)

Job Summary

Reporting to the VP of Cybersecurity Governance, Risk and Compliance, this role will be responsible for leading a team to develop and implement comprehensive cybersecurity awareness programs, conduct effective training sessions, and ensure clear communication strategies to enhance the organization's overall cybersecurity posture. Responsible for managing and overseeing the Cyber Security Awareness policies, standards and practices implemented across the Company. Develops initiatives, security awareness strategies, key goals and activities integrating policies and guidelines.. Collaborates extensively with the leaders across Comcast to ensure implementation of standards for appropriate security awareness compliance and training. Provides leadership and direction for team which may include multiple functional areas. Develops and implements strategy for functional area(s). May have responsibility for developing and managing budget.

Job Description

Core Responsibilities

Cybersecurity Awareness Program:

• Develop and implement a strategic cybersecurity awareness program to educate employees and contractors at all levels about cybersecurity threats, best practices, and company policies.
• Collaborate with cross-functional teams to tailor awareness initiatives to address specific organizational risks and needs.
• Evaluate cyber security education, training, and awareness program efficiency and efficacy by identifying and gathering workforce trend analysis, performance improvement metrics, and then actively shape new products to address gaps, provide top-of-mind awareness of the cyber threat landscape, emerging threats, and best practices to follow.
• Manage phishing campaigns based on current threats and provide statistics.
• Provide metrics on the effectiveness/completion rate for courses.
• Manage and execute cyber awareness roadshows, Cybersecurity Awareness Month, and other initiatives, such as Cybersecurity Ambassador Program (via Be Cyber-savvy Network).
• Create sustainment of these efforts thru-out the year both broadly and focus on high-risk groups with higher click rates.
• Partner with our vendor partner Proofpoint to leverage their products and services even further, to leverage industry best practices and latest strategies and tactics recommended by the vendor partner. 
• Partner with Corp Comms on a dedicated series that we can collaborate with them on and build out a calendar for the year where we know we will have their support early on to execute.
• Leverage modern tools to create short TikTok style videos that we can share with employees via Yammer, Slack, Intranet etc.  and that can add a fun/humorous element to awareness.
• Leverage partnership with NBCU to use internationally recognized digital assets (Like The Office etc.) to build out more engaging materials. 
• Metrics - Build out our metrics and identify KPIs and key behaviors to measure with employees and use the resources that are available to us via Proofpoint to their full potential. 

Metrics, Monitoring and Evaluation:

• Implement metrics and key performance indicators (KPIs) to measure the effectiveness of cybersecurity awareness programs and training initiatives.
• Regularly assess the evolving threat landscape and adjust awareness strategies accordingly.

Collaboration and Relationship Building:

• Build strong relationships with stakeholders like : Communications, CSOC, IT, HR, and other departments to align cybersecurity awareness efforts with organizational goals and objectives.
• Foster a culture of collaboration and information sharing to enhance overall cybersecurity resilience.
• Partner with teams in India and at Sky (EU) to increase the scale of the Cybersecurity Awareness locally in India office and partner with Sky EU and Sky India. On an ongoing basis, work with them to have a recurring bi-weekly working group session to align our efforts more closely, learning from them on their engagement tactics and figuring out ways we can execute them for Comcast.
• Visit Comcast Offices monthly to continue to build relationships with key stakeholders.

Communication Strategy:

• Develop and execute communication plans to keep employees informed about cybersecurity policies, incidents, and emerging threats.
• Design and maintain communication channels, such as newsletters, intranet updates, and other platforms, to promote cybersecurity awareness.
• Prepare and deliver communications for CISO and other executives for awareness initiatives.
• Ensure security policies are communicated through security awareness program so that team members know, understand, and follow them.

Training Development and Delivery:

• Create engaging and interactive training materials that cater to different learning styles and levels of technical expertise.
• Conduct regular cybersecurity training sessions for employees, ensuring that content is up-to-date, relevant, and aligned with industry standards.

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new ideas.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
• Drive results and growth.
• Respect and promote inclusion & diversity.
• Do what's right for each other, our customers, investors and our communities.

Disclaimer:

• This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That's why we provide an array of options, expert guidance and always-on tools that are personalized to meet the needs of your reality—to help support you physically, financially and emotionally through the big milestones and in your everyday life.

Please visit the benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Certifications (if applicable)

Relative Work Experience

10 Years +

Comcast is proud to be an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.