Senior Security Specialist - Security Operations

Who We Are:

At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.

The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.

The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:

• Secure the Magic by protecting information systems and platforms.

• Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.

• Strengthen the business through optimizing execution, application, and technology used to protect the Company.

• Innovate by investing in core capabilities to enhance operational efficiency.

Team Description:

The Security Operations Team is a group of highly skilled engineers and analysts with the goal of providing tools and services that secure the environment.

What You Will Do:

We are hiring! We need a Senior Security Specialist - Security Operations to join our Sec Ops Team!

Responsibilities:

• Lead the analysis and investigation of information security events (IDS/DLP/SIEM/etc.) in a 24X7 SOC environment to immediately detect, verify, and respond swiftly to cyber threats.

• Serves as a technical point of escalation and provides mentoring for Tier 1 / Tier 2 Security Operations Center (SOC) analysts.

• Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security monitoring strategy, and documenting procedures for the SOC.

• Conducting threat analysis to extract indicators of compromise.

• Prepare reports, summaries, and other forms of communication that may be both internal and client facing.

• Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives.

• Develop dashboards and security-centric analytics to assist with core SOC monitoring operations.

• Create scripts to automate investigation and response functions at scale.

• Recommending security tools and countermeasures to strengthen security operations and response posture.

• Maintain familiarity with industry trends and security best practices.

Must Have:

• Minimum of 5 years experience working in a security operations capacity

• Experience conducting extensive threat analysis

• Skilled in using SIEM technologies (i.e. Splunk)

• Experience with Security Orchestration / Automation Tools (SOAR)

• Working in Cloud environments (AWS/Azure/GCP)

• Knowledge of and experience with the following:

  • Intrusion Detection / Prevention Systems (IDS/IPS)

  • Web Application Firewalls (WAF)

  • Network Firewalls (Cisco / Palo Alto)

  • Endpoint Protection (NGAV/EDR)

  • Email Security (O365 / Proofpoint)

  • Scripting (Python)

Nice to Have:

• Experience with Development, AI, and/or Content Security

• Any of the following security certifications:

  • CISSP

  • CySA+

  • GIAC GCIA

  • GIAC GCIH

  • GIAC GCFA

  • GIAC GMON

Education:

• ·Bachelor’s degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience