Director, Information Security
Santa Monica, Los Angeles
Full Time Executive-level / Director USD 175K - 225K
Skydance
Skydance is a diversified media company founded by David Ellison in 2010 to create high quality, event-level entertainment for global audiences. The Company brings to life stories of immersive worlds across its feature film, television, and...Our corporate headquarters in Santa Monica, where we strive to create a collaborative environment, is the center for all our film and television teams. Other departments include production, marketing, business affairs, finance, human resources, and operations. Whether you are a seasoned executive or an assistant just starting out, everyone is valued on the Skydance team!
For information on Skydance’s privacy practices, see the Skydance U.S. Personnel Privacy Notice located at https://skydance.com/privacy-personnel/.
---
Skydance Media is a modern content creator managing IP across a panoply of mediums including features, television, animation, and video games on a global footprint. The Skydance Information Security Director is responsible for shaping company policy, advising IT Executive Staff on current and potential threats, monitoring and maintaining a proactive security posture, and rigorous testing and risk management. This includes but is not limited to Network Monitoring, Preventative and Detection Controls, Forensics and Investigations, Security Awareness, Security Vulnerability Management, and Cyber Threat Intelligence activities.#LI-ER1
Responsibilities
- Writing security policies and procedures documenting requirements and architecture
- Maintain a SOC playbook
- Penetration and vulnerability testing and the clear presentation of actionable findings
- Assess, triage and prioritize security alerts from logging and monitoring systems
- Identify, triage, and remediate threats based on threat intelligence
- Investigate and communicate with peers on the risk posed by these threats
- Report on findings from investigations and incidents to stakeholders as needed
- Evaluate system, application, and user data for adherence to organizational and government policies and procedures
- Assess newly published vulnerabilities and attacker Tactics, Techniques and Procedures to identify possible defensive measures to locate and stop threat actors
- Contributes to tool optimization and automation initiatives to streamline analysis and response workflows.
Requirements
- Bachelor's degree in information systems, security, computer science or 4 years professional experience and 5+ years professional experience in information security areas such as threat hunting, incident response, forensics, security analysis, security engineering etc.
- Experience with operating system internals and security controls including macOS, Windows, and Linux
- Experience with regular expressions and scripting language(s) (e.g. Python, Bash or PowerShell)
- Experience configuring and analyzing WANs, LANs, VLANs, VPNs, and TCP/IP protocols
- Experience developing and managing standards for AD, Group Policies, Cloud system switching/routing, Virtualization, Business Continuity and DR
- Experience with malware behavioral analysis and broader system forensics
- Exceptional written and verbal communication skills
- Apply critical thinking to all activities and actions, in pursuit of Skydance’s InfoSec goals
- Demonstrable track record of exceptional performance
- Exceptional organizational and self-management skills
Preferred Skills and Experience
- Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) preferred
- ISC2, ISACA, GIAC a plus
- Media & Entertainment experience a plus
We realize that skills and expertise can come from many different experiences and paths, and we encourage you to apply even if you don’t meet all of the requirements as written in the job description.
#Media #LI-hybrid
Skydance is a diversified media company founded by David Ellison in 2010 to create high quality, event-level entertainment for global audiences. The Company brings to life stories of immersive worlds across its feature film, television, interactive, and animation divisions. Skydance is proud to be an equal opportunity employer committed to building and fostering a diverse, equitable, and inclusive workforce. We welcome and consider applicants for employment regardless of race, color, religion, age, sex, national origin, citizenship, sexual orientation, gender identity or expression, marital status, pregnancy status, military/veteran status, disability, or any other protected category. Diversity in the workplace is not just a commitment, it is who we are and a reflection of what makes our world special.
Recruitment Fraud AlertIt has come to our attention that there may be fraudulent activity by individuals impersonating our Talent Acquisition team. Skydance will only contact you from an official “@skydance.com” email address. If you suspect that you are being contacted by an unauthorized person or believe that the correspondence you have received is suspicious, please do not click on any links or attachments in such emails and submit any questions or concerns to our information security team at information.security@skydance.com.
Tags: Automation Bash CISM CISSP Cloud Computer Science Finance Forensics GIAC Incident response ISACA Linux MacOS Malware Monitoring PowerShell Privacy Python Risk management Scripting Security analysis SOC TCP/IP Threat intelligence VPN Vulnerabilities Vulnerability management Windows
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs