isecjobs.com

Security Specialist, Corrective Action

USA - CA - 820 S Flower St, United States

Full Time Mid-level / Intermediate USD 95K - 127K
Company logo

The Walt Disney Company

The mission of The Walt Disney Company is to be one of the world's leading producers and providers of entertainment and information.

View all jobs at The Walt Disney Company

Apply now Apply later

Job Posting Title:

Security Specialist, Corrective Action

Req ID:

10113161

Job Description:


At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.

The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney’s information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.

Corporate is required to address security control gap issues identified through various assessment programs.  A cybersecurity corrective action job involves developing and implementing plans to address security gaps and vulnerabilities.  This includes issues identified through internal assessments against corporate policy, vulnerability scanning, penetration testing, and regulatory issues identified through compliance program assessments such as PCI and EU data privacy.

What You'll Do:

  • Review reports, assessments, and findings to identify remediation and/or corrective action needed.
  • Coordinate with IT and business partners to facilitate necessary remediation and corrective action.
  • Verify remediation and corrective action activity achieves compliance against security standards such as CIS Benchmarks, NIST, and TWDC policies and standards.
  • Document open items in status reports, including next steps, dependencies, and stakeholders.
  • Communicate results to stakeholders, including technical and non-technical audiences.
  • Provide recommendations to improve security posture.
  • Assist in improving security baselines and standards.
  • Stay updated on evolving security guidelines and incorporate them into IT and business practices.
  • Stay informed on emerging threats and vulnerabilities.
  • Proactively recommend adjustments to mitigate risks.

Required Qualifications & Skills:

  • A minimum of 3 years of related cybersecurity experience    
  • Demonstrated experience facilitating corrective action.
  • Ability to work well with individuals and teams with varying technical and business backgrounds.
  • Understanding of security frameworks and standards.
  • Analytical thinking and attention to detail.
  • Established problem-solving skills with an ability to develop creative alternatives to complex problems, as well as continuous improvement process skills 
  • Demonstrated ability to handle confidential information. 
  • Experience in a security program for a large and complex organization.
     

Required Education:

  • Bachelor's degree or equivalent experience in Cyber Security, Computer Science, Management Information Systems, or related field.    

Preferred Education:

  • One or more general security certifications including PCNSE, Security+, CySA+, CCNA Cyber Ops, AWS, GSEC, GICSP, CISSP, or other relevant certifications
  • One or more vulnerability assessment or auditing certification including CISSA, CISM, GCCC, GSNA or other relevant certifications
The hiring range for this position in California is $95,300.00 to $127,800.00 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate's geographic region, job-related knowledge, skills and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.

Job Posting Segment:

Enterprise Technology

Job Posting Primary Business:

Corporate Global Information Security

Primary Job Posting Category:

Security Governance

Employment Type:

Full time

Primary City, State, Region, Postal Code:

Burbank, CA, USA

Alternate City, State, Region, Postal Code:

USA - FL - Kirkman Point 1

Date Posted:

2025-02-19
Apply now Apply later
Job stats:  0  0  0

Tags: Audits AWS CISM CISSP Compliance Computer Science GICSP Governance GSEC GSNA NIST Pentesting Privacy Vulnerabilities

Perks/benefits: Equity / stock options Salary bonus

Region: North America
Country: United States

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information Systems Security Officer jobsInformation System Security Officer jobsInformation Security Officer jobsSenior Cybersecurity Engineer jobsSenior Cloud Security Engineer jobsInformation Security Manager jobsCyber Security Specialist jobsIT Security Engineer jobsSystems Engineer jobsSenior Network Security Engineer jobsSystems Administrator jobsSenior Information Security Analyst jobsSecurity Consultant jobsSenior Cyber Security Engineer jobsSecurity Specialist jobsIT Security Analyst jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsThreat Intelligence Analyst jobsSenior Penetration Tester jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Information Security Engineer jobsCyber Threat Intelligence Analyst jobs
Encryption jobsTop Secret jobsGDPR jobsSaaS jobsSplunk jobsMalware jobsEDR jobsRMF jobsSDLC jobsBash jobsSQL jobsForensics jobsIDS jobsThreat detection jobsIPS jobsActive Directory jobsFinance jobsDoDD 8570 jobsIntrusion detection jobsITIL jobsCompTIA jobsCRISC jobsDocker jobsTerraform jobsGIAC jobs
OWASP jobsHIPAA jobsSOC 2 jobsClearance Required jobsSANS jobsUNIX jobsCCSP jobsIndustrial jobsSAP jobsOSCP jobsJavaScript jobsVPN jobsTCP/IP jobsAnsible jobsBanking jobsDNS jobsPolygraph jobsSOX jobsData Analytics jobsMachine Learning jobsIT infrastructure jobsJira jobsCISO jobsVMware jobsNIST 800-53 jobs