About
Job Description
Job Description
The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney's information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.
In order to ensure that our services keep TWDC secure, we follow an ongoing, iterative process, including continued reevaluation of our services over time to address emerging threats as well as changes in business and technology. This process includes:
1. Analysis of known and emerging threats to determine risks against TWDC assets
2. Creation, maintenance, governance and communication of security policies and standards across TWDC
3. Assessment and audit of compliance against the security policies and standards
4. Assurance that TWDC assets are effectively managed and monitored to meet TWDC security criteria
We look add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work.
The GIS Incident Response team is responsible for tracking, executing and/or ensuring all actions required for responding to any network security threat (direct or indirect) against the company is conducted timely and effectively. This is accomplished in accordance with established procedures, through key collaboration and communication with company business partners enterprise wide, and interfacing with law enforcement agencies, as needed.
Job Type
Full Time
Segment
The Walt Disney Company (Corporate)
Category
Technology
Basic Qualifications
Skills / Specialized Knowledge/ Competencies
* Ability to break down and communicate technically complex security situations and impacts for a non-technical audience
* Strong understanding and experience in information security and IT domains (networking, application, databases, operating systems, etc.)
* Strong understanding of information security risks and attacker methodologies
* Strong knowledge of information security principles, standards, practices and technologies
* Good understanding of industry and regulatory and compliance reporting requirements (i.e.GDPR, etc.)
* Demonstrated strong organizational skills with attention to detail
* Proven ability to achieve results in a fast moving, dynamic environment
* Ability to coordinate efforts across an organization to remediate Cyber security threats
* Ability to multi-task and meet deadlines
* Strong communication, interpersonal skills, problem-solving and decision-making skills
Business
The Walt Disney Company (Corporate)
Postal Code
91502
Responsibilities
* Oversee the team dynamic and relations that would allow for an effective and enjoyable work environment that's conducive to building team cohesion and partnerships required for an high performing incident response team
* Manage, drive and report on Incident trends both internal and external in order to identify potential issues (systemic or otherwise) requiring corrective actions
* Build and sustain partnership with security stakeholders to maintain a collaborative environment
* Provide mentorship and technical guidance to less experienced Incident Responders and managers.
* Support the process of searching, locating, and securing data with the intent to use it as evidence for legal cases. Collected data is filtered, processed and reviewed for relevance.
* Lead and manage the investigation and analysis to determine TWDC susceptibility to new or emerging cyber threats
* Provide support or guidance to the Awareness Team with improving or developing TWDC Security Training material as it relates to user awareness on issues
* Enable information security awareness by incorporating lessons learned into current information security requirements
Job Description
The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney's information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.
In order to ensure that our services keep TWDC secure, we follow an ongoing, iterative process, including continued reevaluation of our services over time to address emerging threats as well as changes in business and technology. This process includes:
1. Analysis of known and emerging threats to determine risks against TWDC assets
2. Creation, maintenance, governance and communication of security policies and standards across TWDC
3. Assessment and audit of compliance against the security policies and standards
4. Assurance that TWDC assets are effectively managed and monitored to meet TWDC security criteria
We look add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work.
The GIS Incident Response team is responsible for tracking, executing and/or ensuring all actions required for responding to any network security threat (direct or indirect) against the company is conducted timely and effectively. This is accomplished in accordance with established procedures, through key collaboration and communication with company business partners enterprise wide, and interfacing with law enforcement agencies, as needed.
Basic Qualifications
Skills / Specialized Knowledge/ Competencies
* Ability to break down and communicate technically complex security situations and impacts for a non-technical audience
* Strong understanding and experience in information security and IT domains (networking, application, databases, operating systems, etc.)
* Strong understanding of information security risks and attacker methodologies
* Strong knowledge of information security principles, standards, practices and technologies
* Good understanding of industry and regulatory and compliance reporting requirements (i.e.GDPR, etc.)
* Demonstrated strong organizational skills with attention to detail
* Proven ability to achieve results in a fast moving, dynamic environment
* Ability to coordinate efforts across an organization to remediate Cyber security threats
* Ability to multi-task and meet deadlines
* Strong communication, interpersonal skills, problem-solving and decision-making skills
Responsibilities
* Oversee the team dynamic and relations that would allow for an effective and enjoyable work environment that's conducive to building team cohesion and partnerships required for an high performing incident response team
* Manage, drive and report on Incident trends both internal and external in order to identify potential issues (systemic or otherwise) requiring corrective actions
* Build and sustain partnership with security stakeholders to maintain a collaborative environment
* Provide mentorship and technical guidance to less experienced Incident Responders and managers.
* Support the process of searching, locating, and securing data with the intent to use it as evidence for legal cases. Collected data is filtered, processed and reviewed for relevance.
* Lead and manage the investigation and analysis to determine TWDC susceptibility to new or emerging cyber threats
* Provide support or guidance to the Awareness Team with improving or developing TWDC Security Training material as it relates to user awareness on issues
* Enable information security awareness by incorporating lessons learned into current information security requirements