Director, Incident Response & Detection

NBCUniversal is one of the world's leading media and entertainment companies. We create world-class content, which we distribute across our portfolio of film, television, and streaming, and bring to life through our theme parks and consumer experiences. We own and operate leading entertainment and news brands, including NBC, NBC News, MSNBC, CNBC, NBC Sports, Telemundo, NBC Local Stations, Bravo, USA Network, and Peacock, our premium ad-supported streaming service. We produce and distribute premier filmed entertainment and programming through Universal Filmed Entertainment Group and Universal Studio Group, and have world-renowned theme parks and attractions through Universal Destinations & Experiences. NBCUniversal is a subsidiary of Comcast Corporation.

Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and develop a talented workforce to create and deliver a wide range of content reflecting our world.

Comcast NBCUniversal has announced its intent to create a new publicly traded company ('Versant') comprised of most of NBCUniversal's cable television networks, including USA Network, CNBC, MSNBC, Oxygen, E!, SYFY and Golf Channel along with complementary digital assets Fandango, Rotten Tomatoes, GolfNow, GolfPass, and SportsEngine. The well-capitalized company will have significant scale as a pure-play set of assets anchored by leading news, sports and entertainment content. The spin-off is expected to be completed during 2025.

The Director, Incident Response and Detection will be a critical team member within the new Versant Cyber organization. This individual is responsible for all incident response operations, the 24 / 7 security operations center (SOC), and all detection engineering and threat hunting activities. Reporting directly to the VP, Cyber Defense Operations, the successful candidate will be expected to develop new strategies, processes, best-practices, and tools that contribute to our cyber security posture.

Responsibilities

Key areas of focus for the Director, Incident Response and Detection include managing workflows, escalations, and advance technical processes to build program maturity and growth of the threat operations and response function. The successful candidate will be responsible for the following activities :

Lead the overall strategy, execution, and continuous improvement of Security Operations, Incident Response, and Security Automation, Detection Engineering, and Threat Hunting programs.

Manage and mentor SOC managers, incident responders, and threat hunters across global time zones, ensuring 24 / 7 operational resilience and high performance.

Build and evolve IR policies, procedures, and playbooks that align with industry best practices (NIST, MITRE ATT&CK, etc.).

Ensure continuous readiness for cyber incidents and lead tabletop exercises and red / blue team collaboration.

Serve as the senior escalation point for critical security incidents, overseeing coordinated responses, executive communications, and post-incident reviews.

Promote, foster, and advocate for an environment of collaboration, diversity, and inclusion.

Lead proactive threat hunting efforts, leveraging advanced analytics, threat intel, and behavioral analysis to uncover sophisticated adversary tactics.

Interface with executive leadership, Legal, Risk, and IT to provide visibility and alignment on key cyber risks and response readiness.

Deliver clear, actionable reporting on threat landscape trends, incident response outcomes, and SOC performance.

Act as a spokesperson and subject matter expert during high-severity events, regulatory reviews, and board-level discussions.

LI-remote

Basic Requirements

5+ years working in Cyber Defense with experience in Incident Response, Security Operations Center (SOC), detection engineering, or similar functions.

Deep technical knowledge of cyber threats, detection technologies, forensic tools, EDR / SIEM platforms, and attack methodologies.

Strong command of security frameworks such as MITRE ATT&CK, NIST CSF, CIS Controls, and experience with compliance regimes (e.g., SOX, GDPR, ISO).

Experience with host-based and network-based logging and analysis.

Must be self-motivated and able to work both independently and as part of a team.

Strong communication (both verbal and written) and client intimacy skills with experience briefing corporate executives and professionals.

Ability to be on call and provide support during nontraditional working hours.

Bachelor's Degree in an IT related field and / or equivalent work experience.

Desired Characteristics

Previous experience working in multiple large complex environments and specifically within the Cyber Defense components of those organizations.

Previous experience working in cyber defense and / or information security functions in the media and advanced technology industries.

Previous experience working with network tools and technologies such as firewall (FW), proxies, IPS / IDS devices, full packet capture (FPC), and email platforms.

Previous experience conducting static, dynamic, or reverse engineering malware analysis.

Experience in applying security concepts to Cloud computing (AWS, Azure, GCP).

Relevant certifications (GCIA, GCIH, GCFA, GNFA, etc.).

Master's Degree in an IT related field.

Additional Requirements

• Fully Remote : This position has been designated as fully remote, meaning that the position is expected to contribute from a non-NBCUniversal worksite, most commonly an employee's residence.

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page (https : / / www.nbcunicareers.com / benefits) of the Careers website. Salary range : $160,000 - $200,000 (bonus and long-term incentive eligible)

We are accepting applications for this position on an ongoing basis.

As part of our selection process, external candidates may be required to attend an in-person interview with an NBCUniversal employee at one of our locations prior to a hiring decision. NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations by emailing AccessibilitySupport@nbcuni.com.

Although you'll be hired as an NBCU employee, your employment and the responsibilities associated with this job likely will transition to Versant in the future. By joining at this pivotal time, you'll be a part of this exciting company as it takes shape.

For LA County and City Residents Only : NBCUniversal will consider for employment qualified applicants with criminal histories, or arrest or conviction records, in a manner consistent with relevant legal requirements, including the City of Los Angeles' Fair Chance Initiative For Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, where applicable.