Cyber Security Engineer
USA - CA - Remote - California Region 1
Full Time USD 86K - 119K
The Walt Disney Company
The mission of The Walt Disney Company is to be one of the world's leading producers and providers of entertainment and information.Job Posting Title:
Cyber Security EngineerReq ID:
10091835Job Description:
Job Description:
Under the direction of the Cyber Security Manager, the Cyber Security Engineer is responsible for maintaining an enterprise-wide information security program to ensure that information assets are adequately protected. This position is responsible for identifying, evaluating, and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the enterprise.
The CSE position requires sound knowledge of business management and a working knowledge of information security technologies. The CSE will proactively work with business units to implement practices that meet defined policies and standards for information security. The CSE will mentor Cyber Security staff.
The CSE serves a vital role in assurance activities related to the availability, integrity and confidentiality of cast member, business partner, employee, and business information in compliance with information security policies. The CSE must be highly knowledgeable about the business environment and ensure that information systems are maintained in a fully functional, secure mode.
Responsibilities
- Designs, implements, and manages comprehensive security solutions to protect our critical infrastructure.
- Supports communication with vendor by providing reports from Intrusion Prevention Systems (IPS), Web Filtering, Email Filtering, Data Loss Prevention, and other security and compliance products.
- Identifies and assess vulnerabilities in systems and networks through vulnerability scanning and penetration testing.
- Participate in security incident response activities and lead investigations as needed.
- Researches and investigates emerging risk topics, threats, vulnerabilities, capabilities, and solution options to create/update policy and governance, technology strategies, solution architecture, and assessments.
- Supports incident management/response across the enterprise and provides consistent security monitoring, response, follow-up investigation, and determination of root cause. Evaluate security alerts generated by internal systems, vendors, and other industry sources.
- Supports the user access review process and other monitoring aspects of identity and access management.
- Works with IT control owners in creating documentation, interpretation, and monitoring of IT general controls.
- Interacts with third-party managed security service providers as required to facilitate ongoing system testing and monitoring.
- Reviews active threat intelligence and other sources and suggest enhancements to security posture.
- Works with internal and external auditors during examinations providing support and assistance in addressing audit recommendations.
- Collaborate with other IT teams to integrate security considerations into all aspects of the development lifecycle.
- Document security processes and procedures for future reference and training purposes.
Years of Relevant Work Experience: 5 to 10 years
Certifications, Licenses, Registrations
Certified Information Systems Security Professional (CISSP) Preferred
Microsoft Azure Security AZ-500 Preferred
Other security and technology certifications are desired Preferred
Training, Technical Skills or Knowledge
Minimum of 2-5 years of experience in a cyber security engineer role (depending on the seniority of the position). Required
Degree in Information Security or a technology-related field, and/or equivalent work or education related experience Required
Strong understanding of, and experience with Microsoft cloud security solutions Required
Experience with vulnerability scanning and penetration testing methodologies. Required
Abilities and Behaviors below:
- Proven experience working within cross-functional project teams and providing business direction.
- Proven hands-on experience with system tools for monitoring trends related to security event management, vulnerability assessment, and intrusion detection to include Cloud offerings.
- Proven ability to cultivate strong working relationships and drive collaboration across multiple business and technical teams.
- Demonstrated strong analytical skills, business acumen and ability to present ideas to Senior Management in a concise and effective manner.
- Proven ability to coordinate across discrete business and functional areas and communicate effectively across the organization.
- Proven ability to handle multiple efforts and prioritize appropriately.
- Ability to leverage technology and tools to manage, plan and execute project plans.
- Experience in preparing written proposals and presentations for delivery to Senior Management.
- Proven PCI-DSS and compliance experience.
- Ability to take initiative and work on multiple projects at one time.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
- Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic environment.
- Poise and ability to act calmly and competently in high-pressure, high-stress situations.
- Must be a critical thinker, with strong problem-solving skills.
- High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity.
- High degree of initiative, dependability, and ability to work with little supervision.
- Possesses a desire to mentor and collaborate both inside and outside the Cyber Security team.
Job Posting Segment:
Credit UnionsJob Posting Primary Business:
Partners! Federal Credit UnionPrimary Job Posting Category:
Sensitive Information ProtectionEmployment Type:
Full timePrimary City, State, Region, Postal Code:
Remote Worker Location, USAAlternate City, State, Region, Postal Code:
USA - FL - Remote - Florida Region 1Date Posted:
2024-05-30Tags: Azure CISSP Cloud Compliance Governance IAM Incident response Intrusion detection Intrusion prevention IPS Monitoring Pentesting Threat intelligence Vulnerabilities
Perks/benefits: Career development Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open DoD-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs