Sr. Security Specialist, Cloud Architecture

[{{ $ctrl._job.status.name | translate}}] Sr. Security Specialist, Cloud Architecture
The Walt Disney Company (Corporate)

Posted
Interested in this opportunity ?

Job description

At Disney, we‘re storytellers. We make the impossible, possible. We do this through utilizing and developing cutting-edge technology and pushing the envelope to bring stories to life through our movies, products, interactive games, parks and resorts, and media networks. Now is your chance to join our talented team that delivers unparalleled creative content to audiences around the world.
The Global Information Security (GIS) group provides services to protect the value and use of Disney’s information through collaboration, standardization, enforcement, and education across The Walt Disney Company.
The main focus areas of this group are:
  • Reduce the risk of both accidental and malicious data disclosure
  • Identify, monitor, engage with complete inventory of information
  • Establish appropriate policies and procedures to be followed
  • Educate user community to minimize risk
Responsibilities
  • Engage with cross-functional teams in the design and implementation of cloud and cloud-security projects and initiatives
  • This role will habitually interact with internal and external customers on security-related projects and operational tasks, and prepare/conduct briefs to senior staff members and executives on a regular basis
  • Develops and documents technical solutions that meet specifications and that impact future developments (position papers, processes, requirements, data flows, mapping to controls)
  • Provide technical assistance in the selection, configuration, and maintenance of cloud security solutions
  • Identifies, selects, develops and documents architecture artifacts (reference architectures, standards, policies, reusable designs, best practices) across data protection topics
  • Researches, learns and evaluates new technologies to solve problems, close gaps or improve functionality and operations
  • Leads discussions, assessments, tracking and overall reporting of technology security risks
  • Identifies issues and potential solutions
  • Responsible for tracking and reporting weekly status updates on work in progress
  • Acts as a subject matter expert and engage with cross-functional teams
  • Know and evaluate current policies to provide risk analysis, input to vulnerability testing and security reviews
  • Must be able to understand business drivers and processes to evaluate risk and recommend solutions with a balanced result
  • Promote awareness of applicable security policies and standards and implement or coordinate remediation required by audits, as necessary
Basic Qualifications
  • 5 years’ experience with 3 or more areas including: public cloud, secure application development, virtual network big data, elastic compute, cloud security
  • 3 years of practical cloud information security experience
  • Experience in information management and information technology security design and implementation
  • Demonstrated experience with security event logs from Windows, Unix, intrusion detection systems, network, and remote access solutions
  • Experience managing IDS / IPS / firewall systems in distributed/hybrid cloud environment
  • Demonstrated experience in creating conceptual, logical and physical security diagrams, Thorough understanding of vulnerabilities and countermeasures.
  • Information Security technology/compliance experience. Familiarity with major regulations such as Sarbanes-Oxley and NERC CIP preferred
  • Detailed understanding of TCP/IP and related communication protocols, Windows authentication mechanisms (Kerberos, NTLM, AD), networking technologies, software defined computing, containerization, routing and switching, big data, elastic compute, and risk analysis and risk management methodologies
  • Ability to manage multiple priorities and work effectively in a fast-paced, high volume, results driven environment
  • Excellent written and verbal communication skills including reporting
  • This will require practical use and understanding of advanced security protocols and standards, and solid knowledge of information security principles and practices as well as latest scalable technologies (hard and soft)
  • Key competencies required to be successful in this role:
  • Peer Relationships – gains trust; collaboratively solve problems with peers
  • Political Savvy – maneuver through complex political situations; sensitive to how organizations functions
  • Understanding Others – senses groups: positions, intentions, and needs; what they value and motivates them
  • Intellectual Horsepower – deals with concepts and complexity comfortably, sharp, capable, and agile
  • Technical Learning –learning new industry, company, product, or tech knowledge quickly
  • Comfort Around Higher Management – present to senior leadership comfortably
  • Listening – practices attentive and active listening; patience to hear people out;
  • Dealing with Ambiguity – handle risk and uncertainty without having the total picture
  • Humor - positive and constructive sense of humor
  • Perseverance – pursues everything with energy, drive, and a need to finish
  • Personal Disclosure – shares personal strengths, weaknesses, and limitations; admits mistakes and shortcomings
  • Presentation Skills – effective presentation skills; commands attention and can manage group process during the presentation
  • Learning on the Fly – a relentless and versatile learner; experiments to find solutions
  • Self-Knowledge – knows personal strengths, weaknesses, opportunities, and limits; seeks feedback; isn’t defensive
  • Interpersonal Savvy – builds constructive relationships; builds appropriate rapport; uses diplomacy and tact
  • Decision Quality – makes good decisions using analysis, wisdom, experience, and judgment; sought out for advice and solutions
  • Process Management – good at figuring out lean processes to get things done; organizes people and activities; knows what to measure and how to measure it
  • Patience – understands the people and the data before making judgments and acting
  • Informing – provides the info people need to know to do their jobs
  • Integrity & Trust – seen as a direct, truthful individual; keeps confidences
  • Personal Learning – picks up on the need to change personal, interpersonal, and managerial behavior
Preferred Qualifications
  • Two or more senior Information Security and cloud certifications:
  • CISSP, AWS Certified Public Cloud Architect, MCSE cloud, VMWare VCP6 cloud, EMCCA cloud computing Architect or GIAC)
Required Education
  • BS degree in Computer Science, MIS, Computer Engineering, or 5+ years’ equivalent technology experience or related work experience
Preferred Education
  • Masters or other advanced degree preferred
Company Overview At Corporate, you’ll team with the best in the business to build one of the most innovative global businesses in any industry. Uniquely positioned at the center of an exciting, multi-faceted Company, the forward-thinkers at Disney Corporate constantly pursue new ideas and technologies to help the Company’s many businesses drive value, all the while gaining something valuable from the experience themselves. Come see the most interesting Company from the most interesting point of view. Additional Information
  • This position is a legal entity of The Walt Disney Company, an equal opportunity employer.

Requirements

See description

Job type
Fulltime job
Location
Glendale, AZ, United States
Department
Other
Starting in
As soon as possible

Other suggested jobs

{{:: 'Customer Training Specialist' | ellipsis : 40 : true }}

{{:: 'SiteMinder' | ellipsis : 35 : true }}

{{:: 'Supply Acquisition Manager' | ellipsis : 40 : true }}

{{:: 'onefinestay' | ellipsis : 35 : true }}
Interested in this opportunity ?
Other jobs
Android Developer
Seattle, WA, United States
Senior Financial Analyst
Burbank, CA, United States
View 1476 other offers