Staff Security Specialist, Information Security

Job Category: Information Technology (IT)
Job Type: Full Time
Job Location: USA
Salary: $126.4K/yr - $169.5K/yr
Company Name: The Walt Disney Company

Company Overview

The Walt Disney Company, along with its subsidiaries and affiliates, is a globally recognized leader in family entertainment and media. The company operates across three primary business segments: Disney Entertainment, ESPN, and Disney Experiences.

Our mission is to captivate, inform, and inspire audiences worldwide through the art of exceptional storytelling. With our iconic brands, visionary creators, and cutting-edge technology, we continue to set the standard as the world’s premier entertainment company.

What You’ll Do:

  • Lead the review of reports, assessments, and findings to identify necessary remediation and corrective actions.
  • Collaborate with IT and business teams to coordinate and implement remediation efforts effectively.
  • Ensure that remediation activities align with security standards such as CIS Benchmarks, NIST, and TWDC policies.
  • Document outstanding items in status reports, including next steps, dependencies, and key stakeholders.
  • Communicate results to both technical and non-technical audiences.
  • Provide recommendations to enhance overall security posture.
  • Lead efforts to refine and improve security baselines and standards.
  • Stay up to date with evolving security guidelines and integrate them into IT and business practices.
  • Monitor emerging threats and vulnerabilities, proactively suggesting risk mitigation strategies.
  • Work closely with business partners, stakeholders, and internal teams to assess and enhance security and compliance strategies.
  • Keep informed on industry trends, best practices, and advancements in information security technologies.

Required Qualifications & Skills:

  • Minimum of 7 years of experience leading and managing corrective actions.
  • Extensive experience in coordinating remediation efforts across diverse technologies.
  • 7+ years of experience in risk identification and mitigation plan execution.
  • Proven experience managing security programs in large, complex organizations.
  • Strong knowledge of security frameworks and industry standards.
  • Excellent analytical skills and attention to detail.
  • Strong problem-solving abilities with a focus on creative solutions and process improvements.
  • Ability to handle sensitive and confidential information with discretion.
  • Ability to establish credibility and build strong relationships with various stakeholders, including operations, management, executives, and legal teams.
  • Professional-level written, verbal, and presentation communication skills.
  • Solid understanding of project management principles and the ability to multitask effectively.
  • Proven ability to thrive in a fast-paced, high-performance team environment.

Required Education:

  • Bachelor’s degree or equivalent experience in Cyber Security, Computer Science, Management Information Systems, or a related field.

Preferred Education & Certifications:

  • One or more general security certifications, such as PCNSE, Security+, CySA+, CCNA Cyber Ops, AWS, GSEC, GICSP, CISSP, or other relevant certifications.
  • One or more certifications related to vulnerability assessment or auditing, such as CISA, CISM, GCCC, GSNA, or other relevant certifications.
    APPLY

Apply for this position

Allowed Type(s): .pdf, .doc, .docx