Staff Cyber Security Engineer (Generative AI)
$125,000 - $155,000/Yr
NBC - Englewd Clfs, NJ
posted 23 days ago
Full-time - Senior
Remote - Englewd Clfs, NJ
Broadcasting and Content Providers
About the position
The Staff Cyber Security Engineer will be a key member of the NBCU Security Architecture team, focusing on securing emerging technologies, particularly AI systems. This role involves collaborating with various NBCUniversal businesses and the Cyber Security organization to ensure secure technology design and deployment, while also serving as a subject matter expert in security across multiple domains. The engineer will develop threat models and control strategies, communicate security needs effectively, and mentor junior team members.
Responsibilities
- Partner with business and technical teams to architect secure products and maintain a secure posture throughout their lifecycle.
- Explain common threats to components including Network, Cloud, Web, and Application environments and design mitigations based on product and business needs.
- Develop threat models and control strategies integrated into the design, development, and operation of new technology platforms.
- Collaborate with the Cyber organization and business stakeholders to provide security guidance and mitigation requirements.
- Communicate the importance of key Cyber programs and services to obtain support from business and technology teams.
- Mentor junior team members and foster a culture of continual improvement.
Requirements
- 8+ years of experience in cyber security and secure product architecture.
- Ability to explain common threats and design mitigations for various environments.
- Knowledge of ML and generative AI technologies and their security concerns.
- Familiarity with Cyber Security best practices, including OWASP Top 10 and CWE/SANS Top 25.
- Advanced technical knowledge in one or more security domains and experience in designing complex systems.
- Strong written and verbal communication skills tailored to technical and non-technical audiences.
- Experience developing and documenting security guidelines or best practices.
Nice-to-haves
- Experience performing Threat Analysis and modeling using frameworks like MITRE ATT&CK.
- Familiarity with security control frameworks such as Cloud Security Matrix and NIST CSF.
- In-depth knowledge of generative AI platforms and their associated risks.
- Understanding of data and privacy regulations including PCI DSS, SOX, HIPAA, GDPR, CCPA.
- Knowledge of common Cloud services and platforms (IaaS, PaaS, SaaS).
Benefits
- Medical insurance
- Dental insurance
- Vision insurance
- 401(k)
- Paid leave
- Tuition reimbursement
- Employee discounts and perks
