Walt Disney
Location
Burbank, CA | United States
Job description
At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.
The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. The Enterprise Technology organization drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.
The Global Information Security (GIS) group provides services to protect the value and use of Disney’s information through collaboration, standardization, enforcement, and education across The Walt Disney Company. The main focus areas of this group are:
Reduce the risk of both accidental and malicious data disclosure
Identify , monitor, engage with complete inventory of information
Establish appropriate policies and procedures to be followed
Educate user community to minimize risk
The Sr. Security Engineer is responsible for aiding the development and ongoing maturation of the Cyber Threat Intelligence Program. Essential to the role, the core job functions include: Conducting cyber research and analysis to identify external and internal cyber trends/observations as well as systemic trends to highlight historical and present day threat activities. The analyst will identify and analyze employed threat Techniques, Tactics and Procedures (TTPs) and provide security awareness and/or actionable information that allows for the development or implementation of proactive defensive measures or improve coverage and timeliness of response actions.
What You Will Do:
Leverage security technologies, methodologies and industry best practices to develop or contribute to Cyber Threat Activity Reports and fortify collaboration/information sharing across TWDC partners for integrated threat reporting and expanded situational awareness. A key component of this objective includes the analysis, definition and ongoing monitoring of TWDC’s overall cyber threat landscape.
Help lead and/or work closely with the core team to develop executive and tactical level briefings while collaborating with the VP, Information Security and Cyber Incident Response, Sr. Manager Incident Response, Security Operations, Enhanced Detection Team, Security Awareness and Global Security.
Participate and represent the Company in cybersecurity meetings/conferences with both internal and external security partners.
What You Will Bring:
Minimum of 5+ years of experience in the field of cybersecurity
5+ Cyber Intelligence gathering
Demonstrated understanding of intelligence lifecycle and associated analytic methodologies (ATT&CK, Diamond Model, Cyber Kill Chain, etc.)
Strong knowledge of information security components, principles, practices, and procedures.
Strong knowledge of hacker methodologies and experience in creating and maintaining threat actor profile reports
Experience in developing and maintaining Priority Intelligence Requirements
Understanding of the geopolitical and societal landscape
Experience using cyber threat intelligence tools and platforms
Demonstrated ability to handle confidential information
Knowledge of laws, regulations, and industry requirements related to Information Security ( i.e. EU General Data Protection Regulation (GDPR), Payment Card Industry, Domestic and International Privacy regulations)
Excellent organizational skills
Ability to handle multiple priorities and work successfully in a fast-paced, high volume, and results driven environment
Ability to rapidly assess a situation and produce summarized results of the issue/security concern
Strong cross-team collaboration and team building skills
Develop visually appealing graphics and relay complex technical information into a summarized, easy to understand manner via published artifacts, briefings and presentations
Ability to develop and deliver presentations using MS and Adobe products.
Ability to work in large global environments spanning multiple time-zones.
High standard of performance, attention to detail and commitment to excellence
Demonstrated ability to positively influence and persuade individuals of varying levels
Required Education:
Bachelor’s Degree in Computer Science , Risk Management, Information Assurance, or comparable field of study, and/ or equivalent work experience
Preferred Qualifications
Certified information systems security professional (CISSP) or GIAC Cyber Threat Intelligence (GCTI) preferred
#DISNEYTECH
The hiring range for this position in CA is $123,902 to $166,210 per year, and in NY is $129,806 to $174,130 per year and in WA is $129,806-$174,130 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offeredJob tags
Salary