Senior Analyst, Compliance

Comcast brings together the best in media and technology. We drive innovation to create the world's best entertainment and online experiences. As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines. We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day. If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast.

Job Summary

Responsible for supporting supplier compliance oversight activities to ensure adherence to regulatory requirements, contractual obligations, and internal control standards. Partners cross-functionally with Legal, Finance, Procurement, Customer Operations, Information Security, and Technical Operations to assess third-party risk, evaluate control effectiveness, and drive remediation of compliance gaps. Usually determines own work priorities. Acts as a resource for colleagues with less experience.

Job Description

Core Responsibilities

• Review supplier data, documentation, and operational processes to ensure compliance with applicable laws, privacy requirements, and internal governance controls.
• Conduct control testing and document results in accordance with established third-party risk and compliance frameworks
• Maintain and enhance the supplier control and monitoring framework, including development of control standards and requirements.
• Identify compliance gaps, assess risk severity, and develop clear remediation plans in partnership with business owners and suppliers.
• Develop supplier risk metrics and reporting to flag, monitor, and escalate high‑risk suppliers, and maintain recurring dashboards for senior leadership.
• Review and interpret supplier risk indicators—including security, operational, and financial stability data (e.g., D&B, Moody’s)—to support onboarding and renewal risk assessments.
• Review supplier contracts to spot compliance, regulatory, and operational risk issues, with emphasis on indemnification, liability, and data protection clauses.
• Track corrective actions through closure, escalate unresolved risks, and monitor trigger events or changes in supplier risk posture.
• Prepare documentation and evidence for internal audits, regulatory reviews, and external assessments.
• Support technology enablement for supplier compliance processes, including workflow validation in ServiceNow TPRM/SLO and Contract Lifecycle Management (CLM) systems.
• Collaborate closely with Legal, Information Security, Procurement, and Operations to evaluate risks, resolve issues, and ensure consistent governance practices.
• Ability to translate complex regulatory and technical concepts into actionable compliance requirements.
• Consistent exercise of independent judgment and discretion in matters of significance.
• Regular, consistent and punctual attendance. Must be able to work nights and weekends, variable schedule(s) and overtime as necessary.
• Other duties and responsibilities as assigned.

Skills

• Demonstrated ability to exercise independent judgment in assessing supplier risk identification, and escalating significant issues to senior leadership.
• Advanced capability in evaluating and optimizing third-party risk assessment workflows, identifying bottlenecks and implementing process enhancements to improve control effectiveness and cycle time.
• Proficiency in translating complex supplier risk data into financial and operational impact metrics (e.g., KRIs/KPIs) and executive-level dashboards that inform strategic decision-making.
• Ability to analyze complex supplier environments across operational, cybersecurity, financial, and compliance, and contractual risk domains to determine risk and appropriate mitigation strategies.
• Hands-on experience support and validating workflows within ServiceNow Third-Party Risk Management (TPRM), Supplier Lifecycle Operations (SLO) module and Contract Lifecycle Management (CLM) platforms, including control mapping, approval routing, and remediation tracking.
• Strong stakeholder influence, negotiation and facilitation skills; with the ability to challenge assumptions and drive remediation alignment.
• Clear, concise written and verbal communication tailored to technical, operational, and executive audiences.

Relevant Work Experience

• 5–7 years of progressive experience in compliance, third-party risk management, or enterprise risk oversight, including:
• Leading end-to-end supplier risk assessments across onboarding and renewal cycles, evaluating operational, cybersecurity, financial, regulatory, and contractual risks, and translating findings into actionable remediation requirements.
• Designing, enhancing, and deploying elements of third-party risk frameworks, including risk tiering methodologies, escalation thresholds, and control standards aligned to enterprise risk appetite.
• Establishing and exercising escalation standards to elevate material supplier risks to senior leadership, including documentation of risk acceptance decisions and compensating controls where appropriate.
• Developing and delivering executive-level reporting that quantifies aggregate supplier risk exposure and identifies trends requiring strategic attention.
• Interpreting third-party assurance reports (e.g., SOC 2, ISO 27001, penetration testing results) to assess control effectiveness and determine residual risk.
• Analyzing supplier financial stability indicators (e.g., D&B, Moody’s, credit assessments) to inform risk ratings and proactive escalation criteria.
• Conducting contract risk reviews in partnership with Legal, with focus on indemnification, liability caps, data protection, business continuity, and regulatory obligations.
• Leading cross-functional remediation efforts to closure, partnering with Procurement, Legal, Information Security, and Operations to resolve complex supplier risk issues.
• Supporting technology enablement initiatives within ServiceNow TPRM/SLO and CLM systems, including workflow validation and governance checkpoint implementation.
  

Preferred:

• Experience supporting ESG, sustainability, or data privacy regulatory requirements (e.g., GDPR, state privacy laws) within third-party risk programs.

Employees at all levels are expected to:

• Understand our Operating Principles; make them the guidelines for how you do your job.
• Own the customer experience - think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services.
• Know your stuff - be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences.
• Win as a team - make big things happen by working together and being open to new ideas.
• Be an active part of the Net Promoter System - a way of working that brings more employee and customer feedback into the company - by joining huddles, making call backs and helping us elevate opportunities to do better for our customers.
• Drive results and growth.
• Support a culture of inclusion in how you work and lead.
• Do what's right for each other, our customers, investors and our communities.

Disclaimer:

• This information has been designed to indicate the general nature and level of work performed by employees in this role. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications.

Comcast is an equal opportunity workplace. We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law.

Skills:

Business Processes; Analytical Analysis; Critical Thinking

Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work. Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus. Additionally, Comcast provides best-in-class Benefits to eligible employees. We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most. That’s why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality - to help support you physically, financially and emotionally through the big milestones and in your everyday life. Please visit the compensation and benefits summary on our careers site for more details.

Education

Bachelor's Degree

While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience.

Relevant Work Experience

5-7 Years