Senior Security Specialist, Information Security - Security Solution Architect

Job Posting Title:

Senior Security Specialist, Information Security -  Security Solution Architect

Req ID:

10113628

Job Description:

Senior Security Specialist, Information Security -  Security Solution Architect

At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.

The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.

The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:

-Secure the Magic by protecting information systems and platforms.

-Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.

-Strengthen the business through optimizing execution, application, and technology used to protect the Company.

-Innovate by investing in core capabilities to enhance operational efficiency.

Team Description:

This Security Solution Architect plays a crucial role in designing and implementing security strategies that meet the needs of the business. They will focus on designing, implementing and managing comprehensive security solutions to protect systems, data and applications from cyber threats. The Architect will conceptualize and develop solutions to improve security posture and lead projects from conception to design to implementation. The position will also provide periodic review and feedback for all new and existing security standards. The position is also expected to mentor junior team members and educate our partners and customers to ensure security is something that everyone values and supports.

Responsibilities of Role:

-Assist in the development of solutions that meet or exceed company security requirements and are tailored to address the needs of the Segment.

-Ensure solutions align with business objectives and regulatory requirements.

-Contribute to the development of execution plans to implement short and long term security goals.

-Conduct security risk assessments to identify vulnerabilities and gaps in new and existing systems.

-Propose mitigation strategies and integrate them into the overall architecture.

-Work with Segment teams to integrate solutions into existing infrastructures, applications, and cloud platforms.

-Collaborate with business leaders, project managers, and technical teams to ensure security considerations are factored into all technology projects.

-Contribute to the development of security policies, standards, and best practices to maintain compliance and improve overall security posture.

-Stay informed about information security trends, tools, and technologies to stay ahead of emerging threats.

-Assist in designing systems to detect and respond to security breaches or incidents effectively.

-Evaluate third party service provider integrations for compliance with information security policies and standards and prepare appropriate documentation.

Must Haves (Years of Experience, languages, programs, tools, etc.):

-Eight years of related IT experience.

-Knowledge of cybersecurity frameworks (e.g. NIST, ISO27001)

-Demonstrated experience with encryption, system and network security, cloud security and identity management

-Strong understanding of security tools (e.g. SIEM systems, firewalls, anti-malware)

-Working knowledge of cloud platforms (e.g. AWS, Azure, Google Cloud)

-Experience with security assessment methods and penetration testing techniques

-Demonstrated experience in identifying risk and development of mitigation plans

-Demonstrated experience in a security program for a large and complex organization

-Knowledge of security related legislation/regulations with emphasis on PCI and Privacy

-Strong problem solving skills with an ability to develop creative alternatives to complex problems, as well as continuous improvement process skills

-Demonstrated ability to handle sensitive information

-Ability to establish credibility and working relationships with a wide range of personnel, including operations, management, executive, and legal staff

-Demonstrated professional written, verbal, and presentation communications skills

-Proven ability to work effectively in a fast-paced environment as part of a high performance team

-Security accreditation (e.g., CISSP, GCIH, CISM, etc.)

Nice To Haves:

-Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.)

Education:

-Bachelor’s degree in Cyber Security, Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience

Job Posting Segment:

Enterprise Technology

Job Posting Primary Business:

Corporate Global Information Security

Primary Job Posting Category:

Security Operations

Employment Type:

Full time

Primary City, State, Region, Postal Code:

Orlando, FL, USA

Alternate City, State, Region, Postal Code:

Date Posted:

2025-02-19