Job Summary:From movie concept to film production.
Global premiere to direct-to-consumer mobile applications.
You will innovate and deliver solutions that support a studio whose content is legendary and transcends generations.We’re looking for passionate engineers to help drive the technical selection, implementation, configuration, and operationalization of solutions and technologies that address today’s and tomorrow’s cybersecurity challenges.The Staff Security Engineer (one level above Senior) will be integral to leading and partnering with teams to progress from the prototype, proof of concept, pilot, and production phases of security-driven programs.Responsibilities:Facilitate vulnerability management program across various systems, network, and engineering groupsEvaluate current policies, provide risk analysis, and security reviews that will safeguard digital files and vital electronic systemsPartner with Global Information Security, Studio Content Information Security, Systems and Network teams to develop, test, deploy, and operationalize security monitoring, assessment, and response solutionsPartner with architecture and engineering teams in design review, and execution of solutions that protect the intellectual property of the Walt Disney StudiosPrepare, review, and present reports (e.G., penetration test results, incident response metrics, forensics, exceptions, risks) to team (peers) and leadershipAssist with the maintenance of metrics and scorecards in support of the information security program for quarterly and annual Information Security reports to executive managementIdentify & evangelize new technologies, patterns, solutions and best practicesInteract with internal and external customers on security-related projects and operational tasks in addition to presenting findings to senior leadershipBasic Qualifications:6-10 Years of Experience in cybersecurity and cloud infrastructure engineering/architectureHands-on knowledge of Automation skills, Dev Ops skills etc.System admin Red Hat Linux/Unix, Windows – Experience and knowledge is mandatoryUNIX/Linux administration, troubleshooting, performance tuning, & securityMicrosoft Active Directory, Windows Server administration, troubleshooting, performance tuning, & securityDetailed understanding of TCP/IP and related communication protocols, Windows authentication mechanisms (Kerberos, NTLM, AD), networking technologies, software defined computing, containerization, routing and switching, big data, elastic compute, and risk analysis and risk management methodologiesDemonstrated experience in creating conceptual, logical and physical security diagrams, thorough understanding of vulnerabilities and countermeasuresDemonstrated experience with securing private cloud infrastructuresIn-Depth knowledge of Public Cloud (e.G., AWS, Google Cloud Compute)Experience in containerization technologies and orchestration (e.G., Docker, Kubernetes)Experience with software build and runtime security tools and practicesExperience with both commercial and open source security and vulnerability detection tools (e.G., Tenable, Qualys, Aquasec, Prisma, Synk, AWS Inspector, Kali, Metasploit)Multiple scripting languages in your toolbox (e.G., Python, GO, Perl, Swift)Demonstrated experience in creating conceptual, logical and physical security diagrams, thorough understanding of vulnerabilities and countermeasuresKnowledge of tools and techniques for analyzing large sets of dataInformation security technology/compliance experience (e.G., Sarbanes-Oxley, NERC CIP, MPAA Content Security, PCI, PII, GDPR)Ability to manage multiple priorities and work effectively in a fast-paced, high volume, results driven environmentExcellent written and verbal communication skills including documentation and reportingExceptional analytical and problem-solving skillsAbility to establish credibility and working relationships with a wide range of personnel including operations, management and legal staffStrong organizational and time management skillsPrefer certifications such as AWS-SAA, AWS-CSS, AZ-500, MS-500, AZ-300, CISSP, CCSP, CCSK, Cloud+, CEH, Pentest+, GSEC, GCIH, MCSE, VCP-CMARequired EducationMS/BS degree in Information System management / Computer Science / Information Security or a related technical discipline OR equivalent work experience