Senior Security Specialist

At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world‑class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses.

Uniting each endeavour is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.

The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross‑company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.

The Global Information Security (GIS) organization strives to secure the magic by employing best‑in‑class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment‑specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:

• Secure the Magic by protecting information systems and platforms.
• Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.
• Strengthen the business through optimizing execution, application, and technology used to protect the Company.
• Innovate by investing in core capabilities to enhance operational efficiency.

As a member of the Cyber Remediation Operations team, you will work closely with the Disney Entertainment business teams in protecting Disney’s highly respected Disney Entertainment portfolio, including ESPN, Disney+, Hulu, and ABC.

• Review reports, assessments, and findings to develop and prioritize appropriate remediation or corrective action plans.
• Collaborate with IT, security teams, business partners, and operational teams to drive remediation of security deficiencies.
• Regularly communicate portfolio health results to stakeholders, including technical and non‑technical audiences.
• Develop and document risk mitigation strategies when compliance cannot be achieved.
• Analyze business areas and develop improvement plans to strengthen security posture.
• Drive improvement to security baselines, policies and standards.
• Verify implemented remediation and corrective action activity achieves compliance with TWDC policies and standards.
• Stay updated on evolving cybersecurity threats, vulnerabilities, trends, technologies, and best practices and incorporate them into IT and business practices.
• Consolidate data from multiple sources into clear, concise, actionable presentations for senior management, communicating data‑driven insights.
• Support the on‑time delivery of security and compliance initiatives.

• Minimum of 5+ years of related cybersecurity experience.
• Demonstrated experience facilitating cyber remediation and vulnerability management.
• Ability to handle confidential information with integrity.
• Ability to work well with individuals and teams with varying technical and business backgrounds.
• Understanding of security frameworks and standards.
• Strong analytical, problem‑solving, and critical‑thinking skills with attention to detail.
• Established problem‑solving skills with an ability to develop creative alternatives to complex problems, as well as continuous process improvement skills.
• Experience working in a security program for a large and complex organization.

• Working knowledge of industry compliance programs such as PCI, SOX, etc.
• One or more general security certifications including Security+, CySA+, AWS, GSEC, GICSP, CISSP, or other relevant certifications.
• One or more vulnerability assessment or auditing certification including CISA, CISM, GCCC, GSNA or other relevant certifications.

• Bachelor’s degree in Computer Science, Information Systems, Software, Electrical or…