Walt Disney
Location
Arizona | United States
Job description
At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.
The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney’s information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.
In order to ensure that our services keep TWDC secure, we follow an ongoing, iterative process, including continued reevaluation of our services over time to address emerging threats as well as changes in business and technology. This process includes:
1. Analysis of known and emerging threats to determine risks against TWDC assets
2. Creation, maintenance, governance and communication of security policies and standards across TWDC
3. Assessment and audit of compliance against the security policies and standards
4. Assurance that TWDC assets are effectively managed and monitored to meet TWDC security criteria
We are looking to add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work.
GIS supports all of Disney’s segments which includes Disney Entertainment, ESPN and Disney General Entertainment. They brings together the Company’s best-in-class product, technology, and commercialization teams together into one global organization. Responsible for all distribution, network and engineering operations, sales, advertising, data, and certain key technology functions worldwide for the Company’s content engines. Managing operations of the Company’s streaming services including Disney+, Hulu, ESPN+, Disney+ Hotstar and Star, the upcoming general entertainment offering; as well as all domestic broadcast and cable television network. Security professionals will be exposed to industry leading technology that provide our guests with world class and highly secured services.
The DE&ET Security Architecture and Engineering team focuses on building world-class products and services to enable our business partners and tech teams to easily consume and subscribe to security services.
The role of Sr. Staff Security Engineer will report directly to the Director; Security Architecture and Engineering and is tasked with productizing Security Engineering services to ensure security engineering services are scalable, cost efficient, and customer focused. The role will focus primarily on enhancing engineering service offerings to meet business and customer needs while also aligning to Global Information Security strategic initiatives.
This is a 30 month Project Hire position with no guarantee of permanent placement.
What You Will Do:
Supporting Security Engineering’s service catalog to ensure functions and features of relevant services meet or exceed business and customer expectations.
Identifying key areas of opportunity such as process gaps, systemic security gaps, or technical risks that that can be solved with SecArch and Engineering services support or development of new SecArch and Engineering capabilities.
Developing unique, scalable solutions to complex, technical problems in collaboration with SecArch and Engineering leadership that mature the Security Engineering service offering
Providing subject matter expertise to security engineers to support the development of scalable and effective security services.
Providing onboarding support to Security Engineering services via coordination with customers and SecArch and Engineering leaders.
Providing technical coaching and support to engineers and architects to overcome obstacles and challenges impacting in-flight work.
What You Will Bring:
Minimum of 10+ years of related work experience
Building and managing scalable cloud and on-premises security services leveraging cloud native, internally developed, or COTS tooling.
Secure control design and implementation of security process and technology across cloud, on-premises, and hybrid environments leveraging tools such as: web application firewalls, endpoint detection and response tools, automation and orchestration tooling, and security logging.
Operating within or supporting DevOps and DevSecOps practices and principles.
Providing security services at scale within a complex technology environment.
Required Education:
Bachelor's Degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience
Job tags
Salary
