Manager, Infrastructure Security Engineering | JobSetuu

Description

Job Overview

• Source: Jobicy

Job Description

Company Description

NBCUniversal is one of the world's leading media and entertainment companies. We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our global theme park destinations, consumer products, and experiences. We own and operate leading entertainment and news brands, including NBC, NBC News, NBC Sports, Telemundo, NBC Local Stations, Bravo, and Peacock, our premium ad-supported streaming service. We produce and distribute premier filmed entertainment and programming through our powerhouse film and television studios, including Universal Pictures, DreamWorks Animation, and Focus Features, and the four global television studios under the Universal Studio Group banner, and operate industry-leading theme parks and experiences around the world through Universal Destinations & Experiences, including Universal Orlando Resort, home to Universal Epic Universe, and Universal Studios Hollywood. NBCUniversal is a subsidiary of Comcast Corporation. Visit www.nbcuniversal.com for more information.

Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and develop a talented workforce to create and deliver a wide range of content reflecting our world.

Job Description

Join NBCUniversal Cyber Security and lead a team that designs, delivers, and operates enterprise cyber services that protect our employees, platforms, and businesses. This role is accountable for reliable, scalable security capabilities across the NBCU cyber infrastructure portfolio, partnering with stakeholders to reduce risk while enabling innovation and speed.

As an Engineering Manager within Enterprise Cyber Services, you will provide technical and people leadership across the NBCU cyber infrastructure portfolio—including, network/security perimeter services, endpoint and server protection, security tooling and automation, vulnerability and configuration management, cyber platform secrets and key management, and cloud security enablement. You will also drive standard telemetry patterns and integrations with the enterprise SIEM (e.g., log onboarding governance, normalization/parsing, and alert/detection partnership) to ensure security services and platforms produce high-quality, actionable signals. You will partner with service leads to drive roadmap execution, service reliability, operational excellence, and continuous improvement while building strong partnerships with Security Operations, Architecture, Infrastructure, and product teams across the enterprise.

Responsibilities:

• Lead and develop a team of engineers responsible for building and operating enterprise cyber services; establish clear goals, provide coaching and feedback, and support career growth.
• Own service delivery and contribute to multi-quarter roadmap across the cyber infrastructure portfolio pillars (e.g., network security services, endpoint/server security, vulnerability management, logging, telemetry, and SIEM integration, automation, secrets/key management, and cloud security enablement), aligning priorities to business needs and risk reduction.
• Drive secure-by-design engineering practices, reference architectures, and standard patterns for onboarding new platforms and business entities, ensuring consistent control implementation and data quality across NBCUniversal.
• Accountable for reliability, performance, and lifecycle management of cyber services, including capacity planning, patching, upgrades, vendor engagement, and cost management.
• Establish and maintain operational excellence: SLAs/SLOs, service health metrics, runbooks, incident response playbooks, problem management, and post-incident reviews with measurable corrective actions.
• Partner with Security Operations and Threat teams on logging, telemetry, and SIEM integration to ensure detections are effective, prioritized, and continuously improved (e.g., log onboarding/integration, parsing/normalization, correlation, alert tuning).
• Collaborate cross-functionally with Architecture, Infrastructure, Cloud, and Application teams to plan and deliver integrations, migrations, and new capabilities; translate requirements into actionable engineering work.
• Implement governance for security service onboarding and change management, including intake processes, technical reviews, documentation standards, and audit-ready evidence (in partnership with Risk/Compliance where applicable).
• Champion automation and Infrastructure-as-Code to improve consistency and speed of delivery (CI/CD, configuration management, and policy-as-code) across cyber infrastructure services.
• Manage on-call and escalation processes for critical services, ensuring effective coverage, clear communications, and continuous reduction of operational toil.

Qualifications

Basic Requirements: 

• 7+ years of experience in cybersecurity engineering, infrastructure/platform engineering, SRE/DevOps, or related fields.
• 2+ years of engineering leadership experience (people management or technical/team leadership), including coaching, prioritization, and delivering outcomes through others.
• Bachelor’s Degree in Computer Science, Engineering, or equivalent experience.
• Demonstrated knowledge in defense-in-depth, zero trust, segmentation, least privilege, and service hardening.
• Highly collaborative and able to work across teams; strong problem-solving and analytical skills.
• Demonstrated experience operating production services: SLOs/SLAs, incident/problem/change management, runbooks, post-incident reviews, and measurable reliability improvements.

Desired Characteristics: 

Domain Expertise (Cyber Infrastructure):

• Network and security perimeter services: DNS, TLS, WAF, proxies, firewalls, VPN/remote access, load balancing, and secure connectivity patterns.
• Endpoint and server security: EDR concepts, OS hardening baselines, patching and vulnerability remediation workflows, and configuration compliance.
• Logging, telemetry, and SIEM integration: observability tools (Datadog or similar), log source onboarding/integration, normalization/parsing, data quality, retention, correlation, and alert tuning; ability to partner with the SIEM platform and detection engineering teams to deliver actionable telemetry.
• Security tooling and automation: building integrations and workflows via APIs, event-driven automation, and CI/CD enablement to reduce operational toil and standardize control implementation.
• Vulnerability and configuration management: asset inventory concepts, scan coverage, exception/risk acceptance, remediation SLAs, and reporting.
• Secrets and key management: KMS/HSM concepts, certificate lifecycle, rotation, break-glass access, and integrating secrets into CI/CD and runtime.
• Cloud security enablement: partner with Cloud Security service team to ensure infrastructure services are supported with cloud deployment in mind.

Platforms & Engineering Practices:

• Operating systems: Strong Linux administration; working knowledge of Windows Server for enterprise integrations.
• Cloud: AWS or Azure (networking, IAM, logging, and KMS), including hybrid connectivity patterns.
• Infrastructure as Code: Terraform or CloudFormation/ARM/Bicep; policy-as-code where applicable.
• CI/CD and source control: Git-based workflows; pipelines such as GitHub Actions, Jenkins, or AWS CodePipeline; and secrets handling in pipelines.
• Automation and scripting: Python and Bash (or equivalent) for service automation, integrations, and data processing.
• Logging and SIEM platforms: Splunk (or equivalent SIEM): log onboarding/integration, source troubleshooting, parsing/normalization, and collaboration with the SIEM platform team; log forwarders/pipelines such as Vector/Logstash and streaming via Kafka (or equivalent).
• Containers and orchestration: Docker and Kubernetes, including secure configuration and runtime considerations.
• Vulnerability and configuration tooling: Experience operating vulnerability scanning and configuration compliance tools (vendor-specific acceptable), plus remediation workflow tracking.
• Secrets and key management tooling: Enterprise secrets manager and KMS/HSM integration experience (vendor-specific acceptable).
• Observability: Service health monitoring, metrics, and dashboards (Datadog or similar) to support SLOs and incident response.

Additional Requirements: 

• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-NBCUniversal worksite, most commonly an employee’s residence. 

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $125,000 - $150,000 (bonus eligible) 

We are accepting applications for this position on an ongoing basis. 

Additional Information

As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. 

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations by emailing AccessibilitySupport@nbcuni.com.

For LA County and City Residents Only: NBCUniversal will consider for employment qualified applicants with criminal histories, or arrest or conviction records, in a manner consistent with relevant legal requirements, including the City of Los Angeles' Fair Chance Initiative For Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, where applicable.

Expert Career Tips for Manager, Infrastructure Security Engineering Roles

To succeed in a competitive market as a Manager, Infrastructure Security Engineering, you need more than just technical skills. Here are some expert strategies to elevate your profile:

• Build a Strong Portfolio: For technical roles, a clean GitHub or a personal project site is essential. For non-technical roles, a case study portfolio demonstrating problem-solving and impact is equally valuable. Show, don't just tell, what you have achieved in your previous positions.
• Master the Narrative: When interviewing, use the STAR method (Situation, Task, Action, Result) to structure your answers. Quantify your results wherever possible—mentioning "increased efficiency by 20%" is much more impactful than saying "improved efficiency."
• Continuous Learning: The industry moves fast. Whether it's staying updated with the latest AI tools or mastering a new management methodology, continuous professional development is key. Consider obtaining industry-recognized certifications that align with Manager, Infrastructure Security Engineering requirements.
• Networking: Connect with other professionals in similar roles. Join online communities, attend webinars, and engage in meaningful discussions on professional social networks. Often, the best opportunities come through referrals and community engagement.
• Soft Skills Matter: Communication, empathy, and leadership are often the deciding factors between two equally qualified technical candidates. Cultivate these skills as they are universally valued across all industries and seniority levels.

Additionally, research the specific company's culture and values. Tailoring your application to show how you align with their mission can significantly increase your chances of moving forward in the process.

Salary & Compensation

Salary not disclosed; typically competitive for the role.

Work Arrangement

Type: On-Site

Standard business hours at the office.

Comprehensive Application Strategy & Hiring Process

Applying for a new role is a marathon, not a sprint. Follow this strategic approach to maximize your success rate:

1. Initial Research & Tailoring

Don't send the same resume to every employer. Spend at least 30 minutes researching the company. Look for recent news, their product roadmap, and their team structure. Modify your summary and core competencies to reflect the specific keywords found in the job description.

2. The Perfect Cover Letter

If the application allows for a cover letter, use it to tell a story that your resume cannot. Explain why you are passionate about this specific company and how your unique background makes you the perfect fit for the challenges they are currently facing.

3. Navigating the Multi-Stage Interview

Most modern hiring processes involve 3-5 stages. This typically includes a recruiter screen, a technical or skill-based assessment, a peer interview, and a final leadership round. Prepare for each stage differently: focus on enthusiasm and fit for the recruiter, technical depth for the assessment, and strategic vision for the leadership round.

4. Post-Interview Follow-Up

Always send a personalized thank-you note within 24 hours of each interview. Reference a specific topic discussed during the call to demonstrate your active listening and genuine interest in the role.

By following these steps, you demonstrate a high level of professionalism and attention to detail that sets you apart from the average applicant.

Typical Interview Process

1. Resume screening
2. HR call
3. Skill interview
4. Final manager interview
5. Offer

Tip: Research the company's products and culture.

Global Market Intelligence & Relocation Insights

At JobSetuu, we specialize in helping talent navigate the global job market. Here is what you need to know about the current landscape in Global and beyond:

The demand for skilled professionals is increasingly borderless. For roles based in Global, understanding the local cost of living, visa requirements (if applicable), and cultural nuances is vital. If this is a remote role, consider the time zone alignment and the asynchronous communication culture of the hiring organization.

Relocation Support: Many forward-thinking companies offer relocation packages that include moving stipends, temporary housing, and legal assistance with work permits. When evaluating an offer, look beyond the base salary—consider the total compensation package, including equity, bonuses, and healthcare benefits.

Work-Life Balance Trends: Hybrid and remote work have become standard in many regions. Research the local labor laws and common practices regarding work hours and vacation time to ensure the role aligns with your lifestyle goals.

Leveraging JobSetuu's tools can help you compare salaries across different cities and understand the "purchasing power" of your potential offer, ensuring you make an informed decision for your long-term career path.

Skills & Competency Roadmap for Professional Development

To remain competitive in Professional Development, we recommend focusing on the following core competencies over the next 12-18 months:

• Technical Mastery: Deepen your expertise in the core tools and languages relevant to your field. For developers, this might be cloud architecture; for marketers, it might be data-driven attribution modeling.
• AI Augmentation: Learn how to leverage generative AI and automation tools to increase your productivity. Understanding how to integrate these technologies into your workflow is becoming a non-negotiable skill.
• Leadership & Strategy: Even in individual contributor roles, the ability to think strategically and lead projects from inception to completion is highly valued. Focus on stakeholder management and high-level project planning.
• Data Literacy: The ability to interpret data and use it to drive decisions is essential across all business functions. Familiarize yourself with data visualization and basic analytical concepts.

By investing in these areas, you not only prepare yourself for the role you are applying for today but also build a resilient foundation for the opportunities of tomorrow.

Apply via JobSetuu

Discover your next career milestone on JobSetuu. This Manager, Infrastructure Security Engineering position is part of our commitment to bringing you the most relevant and high-impact job openings globally. At JobSetuu, we simplify your job search by aggregating premier listings and providing the tools you need to stand out. Don't miss the chance to elevate your professional journey—explore more opportunities and career insights on our platform today.