About Us:
At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.
The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. The Enterprise Technology organization drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.
The Global Information Security (GIS) group provides services to protect the value and use of Disney’s information through collaboration, standardization, enforcement, and education across The Walt Disney Company. The main focus areas of this group are:
Reduce the risk of both accidental and malicious data disclosure
Identify, monitor, engage with complete inventory of information
Establish appropriate policies and procedures to be followed
Educate user community to minimize risk
The Security Engineer, Incident Response reports to the Sr. Manager, Incident Response for the Information Security Forensic, Investigation, Response and Enhanced Detection (F.I.R.E) team. This role plays a critical role with ensuring the overall effectiveness and efficiency of GIS F.I.R.E team operations is maintained and or matured to ensure operational coverage and reach. The role is also responsible for evaluating reported or identified security risks, facilitating and executing strategic remediation of cyber issues/incidents, driving security initiatives across FIRE programs, or efforts to improve the company’s overall security posture.
What You Will Do:
Facilitate end-to-end security activities surrounding systemic issues identified during security incidents and associated actions beyond stopping the initial threat such as, but not limited to:
Support incident response post incident reviews and drive lessons learned and best practices towards continuous improvement; ensure timely completion/closure
Compile all F.I.R.E data, metrics, and executive summaries to ensure timely development of F.I.R.E Operations deliverables (Monthly Business Reviews, Cyber Intelligence reports, etc.)
Collaborate with GIS peers to deliver analysis and briefings around security operations efficiency, effectiveness and coverage.
Support incident recap and trends debriefs with GIS partners: Application Security, Corrective Action, Security Awareness, Vulnerability Management, Risk Management
Evaluate security concerns and potential threats raised by business, IT and security partners across the enterprise and/or cyber intelligence activities to determine the appropriate course of engagement including assessments, remediation, or risk acceptance.
Identification/development of risk observations sourced from incident trends and security concerns
Execute Critical Response actions sourced from Cyber Intelligence reports
Support Security Breach evaluations to determine potential risks to the company’s security posture
Coordinate and distribute updates or response actions to leaders
Support and facilitate actions for HR, ER or legal investigations (i.e. account disablements, network access removal, etc.)
Support F.I.R.E. strategy and planning efforts to identify and execute fiscal year goals and objectives and ensure alignment with GIS global strategy and business objectives. Ensure all changes are prioritized and supported through appropriate risk assessment and analysis.
Support operational oversight and perform audits of F.I.R.E operational services and requirements to drive maturation, effectiveness and efficiency of strategy and processes with teams.
What You Will Bring:
3+ years work experience within an information security function; technical role or functional exposure to the areas of information security operations, incident response, anomaly detection, and vulnerability management.
Understanding of overall security landscape including concepts around governance, compliance, security controls
Foundational technical knowledge in computing hardware, application development, network technologies, and Cloud services
Ability to break down and communicate technically complex security solutions and impacts for non-technical audiences
General understanding of security threats, attacks and tactics
Demonstrated ability to handle confidential information
Knowledge of laws, regulations, and industry requirements related to Information Security (i.e. EU General Data Protection Regulation (GDPR), Payment Card Industry, Domestic and International Privacy regulations)
Ability to manage multiple priorities and work effectively in a fast-paced, high volume, and results driven environment
Ability to rapidly assess a situation and produce summarized results of the issue/security concern
Develop visually appealing graphics and relay complex technical information into a summarized, easy to understand manner via published artifacts, briefings and presentations.
Ability to develop and deliver presentations using MS and Adobe products.
Ability to work in large global environments spanning multiple time-zones.
Required Education:
Bachelor’s Degree in Computer Science, Risk Management, Information Assurance, or comparable field of study, and/or equivalent work experience
Preferred Certification:
CISM and or CISSP certified
PMP Certified
#DISNEYTECH
#LI-JP4
The hiring range for this position is $97,580.00 to $143,990.00 per year, which factors in various geographic regions. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.
br{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> DIRECTOR OF FINANCE AND ADMINISTRATION The Virginia Chamber of Commerce seeks a highly motivated, detail-oriented...
Apply For This JobLHH is assisting our Louisville client in their search for a qualified Director of Finance to add to their growing...
Apply For This JobJob Description About BRAC and BRAC USABRAC is a global leader in developing and implementing cost-effective, evidence-based programs to assist...
Apply For This JobIf you’re a Project Manager and you want to join an amazingly supportive and fun Civil and Construction Engineering Management...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> Ford of Jones County is seeking a full time F&I Manager to add to our...
Apply For This JobJob Description Finance & Insurance Manager Victory Automotive Group is family owned and operated since 1997 with over 40 locations...
Apply For This Job