Security Analyst II

1 Month ago • 3-5 Years • Cyber Security

Job Summary

Job Description

The Security Analyst II supports GRC activities, ensuring smooth execution of related initiatives. Key responsibilities include supporting the Third-Party Risk Program (due diligence, stakeholder coordination, KPI maintenance, documentation); supporting the IT & Cybersecurity Risk Management Program (metric collection, dashboard creation, reporting, risk register maintenance); supporting Cloud Centre of Excellence governance (reviewing cloud operations, ensuring compliance); performing risk assessments; and maintaining Cybersecurity & IT compliance with NIST CSF and ISO 27001. The role requires excellent stakeholder management, knowledge of security best practices and standards (ISO 2700x, SOC 2, SSAE 16/18), and experience in risk management, controls, and compliance.
Must have:
  • Third-party risk management
  • IT & Cybersecurity Risk Management
  • Cloud security governance
  • Risk assessment methodologies
  • NIST CSF & ISO 27001 compliance
Good to have:
  • AI/ML experience
  • Cloud Finops experience
  • CISA, CRISC, ISO27001 LA/LI, CISSP, CCSSP certifications

Job Details

Job Summary:

JOB TITLE: Security Analyst


LOCATION: Remote


JOB SUMMARY: The role is for an experienced GRC professional in cybersecurity to support GRC activities and ensure smooth execution of related initiatives. Key responsibilities include supporting the Third-Party Risk Program with due diligence assessments, stakeholder coordination, KPI maintenance, and documentation of findings. The role will support the IT & Cybersecurity Risk Management Program, assist the Cloud Centre of Excellence (CCoE) governance by reviewing cloud operations and ensuring compliance, perform risk assessments, manage the risk register, and maintain Cybersecurity & IT compliance with NIST CSF and ISO 27001 through automated monitoring and reporting.


REPORTING TO: Manager - Governance, Risk and compliance


KEY RESPONSIBILITIES: 
•    Support the Third-Party Risk Program
o    Carry out third party related due diligence assessments.
o    Coordinating with business stakeholder and vendor for program support.
o    Maintain KPIs on an ongoing basis.
o    Document responses, associated findings, and remediation plans in the TWDC systems
•    As part of the Risk Management Program (IT & Cybersecurity), the role will; 
o    Support collection of individual metrics across the documented risk domains.
o    Build dynamic live dashboards that showcase live risk domains, their health, and other associated trends and insights as generated by platform.
o    Support reporting process around the program that includes scheduling periodic insights, dashboard updates to specific leaders and teams.
o    Perform periodic reviews to ensure CIA of the information is maintained and adjust the metrics, sources, risk calculation and quantitative methods to ensure they are accurate and up-to-date, with automatic validations set up wherever possible.
•    Supporting the Cloud Centre of Excellence (CCoE) governance, ensuring implementation of industry best framework and practices in existing and new cloud-related setups. This includes:
o    Support process to regularly review cloud operations.
o    Support relevant policies and monitoring/reporting procedures to ensure compliance and accountability in cloud operations.
•    Perform risk assessments to analyse risks consistently, and implement appropriate treatment and mitigation measures for timely remediation of cyber and IT vulnerabilities. 
•    Update and manage the risk register for ongoing risk management across various teams, processes, and technology. (Automate wherever possible).
•    Support activities to review and maintain Cybersecurity & IT Compliance with internal policies, relevant regulations and standards (e.g., NIST CSF, ISO 27001) through continuous automated monitoring and reporting.

SKILLS & ATTRIBUTES FOR SUCCESS: 

    Excellent stakeholder management
    Working knowledge of information security related best practices and standards such as ISO 2700x, SOC 2 requirements, SSAE 16/18 requirements etc.
    Basic understanding of Cloud Security
    Experience in the management of risk, controls, and compliance
    Knowledge of risk assessment methodologies – qualitative/quantitative
    Excellent analytical and problem-solving skills
    Excellent presentation making and delivery skills

PREFERRED EDUCATION & EXPERIENCE: 
    Relevant Bachelor’s/Master’s degree from an accredited university or equivalent experience.
    3-5 years of experience across Third-Party Risk Management, Information Security and Audit & Compliance monitoring 
o    Minimum of 2 years in TPRM/Internal Audit/Risk.
    Preferred experience with a large company and/or Big 4 accounting firm.
    One or more credentials - CISA, CRISC, ISO27001 LA/LI, CISSP, CCSSP.
    Experience in AI/ML and Cloud Finops is a plus.

ABOUT US: 
Disney Star is a leading media & entertainment company in India that reaches over 700 million viewers a month in nine different languages. Our entertainment portfolio which cuts across general entertainment, movies, sports, infotainment, kids, and lifestyle content generates over 20,000 hours of original content every year. 
Disney+ Hotstar, India’s leading streaming platform, enables us to reach and entertain audiences anywhere, anytime. Disney+ Hotstar has changed the way Indians consume their entertainment - from their favourite TV shows and movies to sporting extravaganzas. 
With leadership positions in every segment it occupies, Disney Star has been redefining the media landscape for more than 30 years now, anchored on the three pillars of storytelling, innovation, and an unwavering focus on delivering to the expectations of our audiences.  

Join us, and let's continue to inspire a billion imaginations.

WHY JOIN US: 
Because our employees and cast members are at the heart of everything we do, Disney offers a competitive total rewards package that includes pay, health and savings benefits, time-off programs, special educational opportunities and more. Together, these rewards make up a comprehensive package that helps our employees grow personally and professionally and take advantage of the special extras that only Disney STAR can offer to make their journey memorable

Official Company Pages: ;

Official Careers: ;

LinkedIn: ;

Similar Jobs

ByteDance - Security Engineer (Penetration Tester) - 2025 Start

ByteDance

Singapore (On-Site)
5 Months ago
ByteDance - Product Manager - Edge Computing Platform

ByteDance

Singapore (On-Site)
5 Months ago
Axinous - Senior Professional Services Consultant - AMS

Axinous

United States (Remote)
4 Weeks ago
Axinous - Account Executive - Commercial Healthcare

Axinous

North Carolina, United States (Remote)
3 Weeks ago
PlayStation Global - Senior Security Analyst-Data Governance

PlayStation Global

Aliso Viejo, California, United States (On-Site)
3 Months ago
Arkose Labs - Senior Machine Learning Researcher

Arkose Labs

Pune, Maharashtra, India (Hybrid)
6 Months ago
Assystems - Informaticien Cybersécurité Réseau Industriel H/F

Assystems

Cherbourg-en-Cotentin, Normandy, France (On-Site)
5 Months ago
PearlAbyss - Game Security Technical Support

PearlAbyss

(On-Site)
3 Months ago
ION - Intermediate IT Auditor, Italy

ION

Pisa, Tuscany, Italy (On-Site)
6 Months ago
Canva - Security Engineering Director - Detection & Response - Remote across ANZ

Canva

Wellington, Wellington, New Zealand (Remote)
4 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

NVIDIA - Senior Cloud Test Developer Architect

NVIDIA

Santa Clara, California, United States (On-Site)
1 Month ago
Axinous - Principal Software Development Engineer

Axinous

(Remote)
1 Month ago
Axinous - Account Executive, Enterprise - Maryland/Virginia

Axinous

Maryland, United States (Remote)
3 Weeks ago
ByteDance - Product Manager - Edge Computing Platform

ByteDance

Singapore (On-Site)
5 Months ago
ION - Senior DevSecOps Engineer, Italy

ION

Pisa, Tuscany, Italy (On-Site)
6 Months ago
Rackspace Technology - SOC Analyst L3 (Sentinel is mandatory) - R-19060

Rackspace Technology

Gurugram, Haryana, India (Hybrid)
5 Months ago
Axinous - Principal Security Researcher

Axinous

United States (Remote)
3 Weeks ago
Skillz - Lead Application Security Engineer

Skillz

Las Vegas, Nevada, United States (On-Site)
3 Weeks ago
Fortis Games - Staff Security Operations Engineer

Fortis Games

Spain (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Mumbai, Maharashtra, India

PwC - IN-Senior Associate- HRT-P&O-Advisory-Mumbai

PwC

Mumbai, Maharashtra, India (On-Site)
4 Months ago
ION - Credit Analyst - 7915

ION

Mumbai, Maharashtra, India (On-Site)
6 Months ago
Nagarro - Associate Principal Engineer, .Net Fullstack

Nagarro

Gurugram, Haryana, India (On-Site)
5 Months ago
Velotio Technologies - Senior QA Automation Engineer

Velotio Technologies

India (Remote)
3 Weeks ago
GoTo Group - Lead Software Engineer - Engineering Platform

GoTo Group

Bengaluru, Karnataka, India (On-Site)
4 Months ago
Google - Software Engineer II, Infrastructure, Google Cloud

Google

Hyderabad, Telangana, India (On-Site)
5 Months ago
Coinbase - Senior Recruiter

Coinbase

Hyderabad, Telangana, India (Remote)
6 Months ago
Google - Software Engineer II, Google Cloud

Google

Bengaluru, Karnataka, India (On-Site)
5 Months ago
PwC - CRM Technical -Senior associate

PwC

Mumbai, Maharashtra, India (On-Site)
6 Months ago
GoTo Group - Senior Software Engineer - Data Platform (Streaming)

GoTo Group

Bengaluru, Karnataka, India (On-Site)
5 Months ago

Get notifed when new similar jobs are uploaded

Cyber Security Jobs

Infoblox - Product Security Architect

Infoblox

Washington, United States (On-Site)
4 Months ago
PwC - Financial Sector Information Protection Consultant

PwC

Amsterdam, North Holland, Netherlands (Hybrid)
3 Months ago
PwC - Seniors Sustainability Assurance - US CLIENT

PwC

Olivos, Buenos Aires Province, Argentina (On-Site)
3 Months ago
Canva - Security Engineering Director - Detection & Response - Remote across ANZ

Canva

Melbourne, Victoria, Australia (Remote)
4 Months ago
PwC - Risk Services - AI Strategy Lead

PwC

Singapore (On-Site)
6 Months ago
PwC - Implementation Consultant, Associate - contractor

PwC

Bangkok, Bangkok, Thailand (On-Site)
6 Months ago
PwC - Cyber Governance Risk & Compliance| Manager | Cyber Security | Technology Consulting

PwC

Dublin, County Dublin, Ireland (On-Site)
6 Months ago
Canva - Backend Software Engineer - Security Platform Engineering (Open to remote across ANZ)

Canva

Sydney, New South Wales, Australia (Remote)
4 Months ago
Saviynt - Account Executive

Saviynt

Austin, Texas, United States (Remote)
5 Months ago
The Walt Disney Company - Vice President, Global Security - APAC

The Walt Disney Company

Singapore, Singapore (On-Site)
5 Months ago

Get notifed when new similar jobs are uploaded

About The Company

From classic animated features and exhilarating theme park attractions to cutting edge sports coverage, and the hottest shows on television, The Walt Disney Company has been making magic since 1923, creating unforgettable stories that connect with audiences around the world. And we’re just getting started!

The key to our success…. The Cast, Crew, Imagineers and Employees who honor Disney’s rich legacy by stretching the bounds of imagination to create the never-before-seen, bringing unparalleled entertainment experiences to people of all ages. Begin a career that delivers unparalleled creative content and experiences to audiences around the world and just imagine the stories you could be part of…

What is #LifeAtDisney like? It’s a series of magical moments with cast members and employees developing and telling our stories in the most innovative ways. Whether it’s a day spent as a Disney VoluntEAR, or celebrating the release of a new interactive experience, retail product or movie, our days are filled with the knowledge that we are creating entertainment experiences the whole family can enjoy. Follow @DisneyCareers on Facebook, Twitter and Instagram for a peek behind-the-curtain, and discover how you could connect to a world of stories with Disney!

Glendale, California, United States (On-Site)

Glendale, California, United States (On-Site)

Glendale, California, United States (On-Site)

Vancouver, British Columbia, Canada (Hybrid)

Anaheim, California, United States (On-Site)

Anaheim, California, United States (On-Site)

Anaheim, California, United States (On-Site)

Lake Buena Vista, Florida, United States (On-Site)

Hong Kong (On-Site)

Papenburg, Lower Saxony, Germany (On-Site)

View All Jobs

Get notified when new jobs are added by The Walt Disney Company

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug