Manager 2, Program Management - PCI Program
Company: Comcast
Location: Philadelphia
Posted on: April 1, 2026
|
|
|
Job Description:
Make your mark at Comcast a Fortune 30 global media and
technology company. From the connectivity and platforms we provide,
to the content and experiences we create, we reach hundreds of
millions of customers, viewers, and guests worldwide. Become part
of our award-winning technology team that turns big ideas into
cutting-edge products, platforms, and solutions that our customers
love. We create space to innovate, and we recognize, reward, and
invest in your ideas, while ensuring you can proudly bring your
authentic self to the workplace. Join us. You’ll do the best work
of your career right here at Comcast. (In most cases, Comcast
prefers to have employees on-site collaborating unless the team has
been designated as virtual due to the nature of their work. If a
position is listed with both office locations and virtual
offerings, Comcast may be willing to consider candidates who live
greater than 100 miles from the office for the remote option.) Job
Summary The Senior Manager, PCI Program (US) leads Comcast’s U.S.
Payment Card Industry (PCI) compliance program across cable
operations. This role oversees PCI DSS scope governance,
assessments, people leadership, stakeholder management, and
continuous controls monitoring. You will partner closely with
internal technology, engineering, and compliance teams to ensure
Comcast maintains compliance excellence and is fully prepared for
annual PCI assessments and ongoing PCI DSS 4.0 obligations. Job
Description Program Leadership & Compliance Execution Lead U.S. PCI
program operations, including annual ROC/AOC submissions, ASV
attestations, quarterly internal scans, penetration tests, and
segmentation testing. Drive organizational readiness for PCI DSS
4.0 by ensuring updated controls, evidence standards, and
continuous compliance practices are implemented. Maintain
comprehensive program documentation, evidence packages, and
audit?ready materials aligned with QSA expectations. People
Leadership Manage and mentor PCI GRC team members across program
management, compliance analysis, vulnerability management, and
penetration testing functions. Support staff development,
cross?training, and operational continuity. Oversee staffing,
recruitment, retention, performance management, and professional
development. Scope Governance & Onboarding Direct annual PCI
scoping exercises, collaborating with architecture and engineering
to validate data flows, segmentation boundaries, and connected?to
system inventories. Manage onboarding for newly in?scope systems
and ensure updates are accurately reflected in scope documentation.
Continuous Monitoring & Risk Reduction Oversee dashboards,
remediation cycles, vulnerability metrics, and operational
compliance indicators. Identify and escalate compliance gaps;
coordinate remediation efforts and track program risks in alignment
with Comcast’s risk management processes. Stakeholder Engagement &
Communication Serve as primary liaison for QSAs, engineering teams,
business partners, and leadership stakeholders. Facilitate evidence
walkthroughs, interviews, working sessions, and program checkpoints
to maintain alignment and transparency. Third?Party & Cross?Entity
Coordination Validate PCI scope for third?party vendors and
coordinate internal teams when external vendor activities affect
in?scope systems. Partner with cross?entity organizations (e.g.,
Sky) where shared responsibilities, training, or assessment
dependencies exist. Operational & Administrative Responsibilities
Support corporate budgeting and tracking for the PCI program.
Recommend and implement improvements to PMO processes and program
performance. Maintain awareness of emerging methodologies, agile
practices, and industry standards. Exercise independent judgment in
matters of significance. Role requires regular, punctual attendance
and may require occasional nights, weekends, or overtime.
Qualifications Required 7–10 years of experience in security
compliance, PCI DSS, audit, risk management, or related security
disciplines. Strong understanding of PCI DSS, segmentation
principles, vulnerability management, and enterprise security
controls. Demonstrated experience leading complex compliance
programs and multidisciplinary teams. Excellent communication
skills with proven stakeholder engagement capabilities. Ability to
assess risk, manage escalations, and lead structured remediation
efforts. Preferred Certifications such as PCI ISA, CISSP, CISA, or
CISM. Experience partnering with QSAs and managing large?scale
enterprise compliance assessments. Familiarity with Comcast
environments, ServiceNow, Qualys, Power BI, and enterprise
scanning/reporting workflows. Operating Principles Employees at all
levels are expected to: Embrace Comcast’s Operating Principles as
the foundation for daily work. Own the customer experience with a
digital?first mindset. Be enthusiastic learners and advocates for
Comcast products, technologies, and digital tools. Collaborate
effectively and openly with cross?functional teams. Participate
actively in the Net Promoter System to elevate customer and
employee feedback. Deliver results, support an inclusive culture,
and operate with integrity in all decisions and actions. Disclaimer
This job description outlines the general scope and
responsibilities of the role. It is not an exhaustive list of all
duties, responsibilities, or qualifications required. Skills
Control Frameworks, Evidence Management, PCI Standards, Problem
Solving, Security Compliance, Stakeholder Management, Team
Development We believe that benefits should connect you to the
support you need when it matters most, and should help you care for
those who matter most. That's why we provide an array of options,
expert guidance and always-on tools that are personalized to meet
the needs of your reality—to help support you physically,
financially and emotionally through the big milestones and in your
everyday life. Please visit the benefits summary on our careers
site for more details. Education Bachelor's Degree While possessing
the stated degree is preferred, Comcast also may consider
applicants who hold some combination of coursework and experience,
or who have extensive related professional experience.
Certifications (if applicable) Relevant Work Experience 7-10 Years
Comcast is an equal opportunity workplace. We will consider all
qualified applicants for employment without regard to race, color,
religion, age, sex, sexual orientation, gender identity, national
origin, disability, veteran status, genetic information, or any
other basis protected by applicable law.
Keywords: Comcast, Plainfield , Manager 2, Program Management - PCI Program, IT / Software / Systems , Philadelphia, New Jersey
