M+E Technology Job Board

Manager, Information Security

  • Full Time
  • Glendale, CA
  • Applications have closed

Walt Disney Imagineering

Job Summary:
The Walt Disney Company is the global leader in high-quality entertainment and innovative technology. Begin a career that delivers unparalleled creative content and experiences to audiences around the world.

”We make magic.” That’s our motto at Walt Disney Parks and Resorts. And it permeates everything we do. At Disney, you’ll help inspire that magic by enabling our teams to push the limits of entertainment and create the never-before-seen!

Walt Disney Imagineering (WDI) is the master planning, creative development, design, engineering, production, project management, and research and development arm of Disney’s Parks and Resorts business segment. Representing more than 150 disciplines, its talented corps of Imagineers are responsible for the creation of Disney resorts, theme parks and attractions, hotels, water parks, real estate developments, regional entertainment venues, cruise ships and new media technology projects.

This role will lead information security improvements at Walt Disney Imagineering. An ideal candidate would be passionate about security, partnering with development teams to identify opportunities for improvement and championing the direction or solution to deliver high quality software projects. The security efforts this role will be involved in will span the software gamut, including cloud architecture, web development, desktop development, and embedded systems.

Analyze the state of security within the organization and develop, communicate and optimize roadmap to address challenges
Design application security architecture including data classification, development best practices, penetration testing, patching and remediation
Oversee security operations in collaboration with the systems team including network design, network discovery, repository scanning and incident response
Ensure Disney system, network, and data compliance is met by working with application, systems and general infrastructure teams
Research emerging security attack vectors and properly implement security solutions to reduce risk
Collaborate with segment and corporate security teams to share best practices and coordinate efforts

Basic Qualifications:

Direct experience collaborating with application and systems engineering teams
Experience performing vulnerability and risk assessment using tools such as Nessus, Burp Suite, etc
Experience with security tools such as IDS, HIDS, FIM, Web Application Firewalls, vulnerability scanners
Working knowledge of network protocols and Linux/Unix system internals and transport protocols (TCP, TLS, HTTP, UDP)
Proficient with various programming languages such as Python/Java/Ruby/Perl/Go for automation or integration with multiple APIs (REST, SOAP, RPC)
Excellent communications skills, capable of working with cross functional technical and business teams and varying levels of management

Required Education

Bachelor of Science in Computer Science or 7+ years of equivalent, hands-on technology experience in large enterprise environments