The Walt Disney Company
Create the Tech Behind Our Magic
Greater LA Area

Sr Security Assurance Engineer at The Walt Disney Company (Greater LA Area)

| Greater LA Area
Sorry, this job was removed at 9:55 a.m. (CST) on Wednesday, January 19, 2022
Find out who's hiring in Los Angeles, CA.
See all Developer + Engineer jobs in Los Angeles, CA
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.
The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney’s information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle WA, Burbank CA, Bristol CT, and Orlando FL - and will consider any of these locations for this role.
The Product Security team exists to ensure that our guests are protected and have a magical experience. We protect our guests and the Disney brand by engaging with product development teams at every of the product development lifecycle. We assess and influence product design, we analyze applications for flaws that may lead to security issues, and we provide penetration testing to ensure our products are secure.
We are looking to add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work.
Responsibilities :
  • Build, own, and operate enterprise service(s) in support of the program
  • Lead and mentor junior engineers by setting a high bar for technical and operational excellence
  • Review architecture designs to identify security risks and flaws and provide security architectural recommendations and design best practices for IT and software development projects that cross multiple platforms, and ensure alignment with DMED security architecture
  • Review application and infrastructure architecture that covers cloud, container, network, IAM:
    • Containerized micro-service and serverless architecture with various storage technologies
    • Client side web and mobile applications
    • Media (transport, DRM, watermark, etc.)
    • CI/CD process
    • Cloud infrastructure architecture and cloud resources configurations
    • Multi-cloud and on-prem architecture, including networking and firewall requirements and design
  • Review threat model and provide threat modeling service as part of security architecture review process
  • Summarize and articulate risks identified in security architecture review and threat modeling in business and technical contexts and log in DMED risk register
  • Develop security standards and reference architecture documents for relevant technologies and platforms as security best practices and references for IT and software engineering teams
  • Assist in the planning, development, implementation, and update of the company's information security strategy

Basic Qualifications :
  • Prior experience working within product/application security or prior development team experience with a security focus
  • Ability to break down and communicate technically complex security situations and impacts for a non-technical audience
  • Knowledge of public cloud services (AWS, Azure, GCP, etc.)
  • Knowledge of IaC (Infrastructure as Code) and supporting technologies (Cloud Formation, Terraform, etc.)
  • Demonstrated ability to analyze security events, threats and other related data
  • Demonstrated knowledge of general security threats, attack vectors, and vulnerabilities
  • Scripting experience (Python, Perl, PowerShell, Yara)
  • Effective communication skills across all organization and technological levels
  • Demonstrated ability to work in a challenging, dynamic, and fast-paced environment with limited supervision. Candidate should be able to succeed in both independent and collaborative work scenarios

Preferred Qualifications:
  • Experience developing applications (Web, mobile, api)
  • Understanding of infrastructure and application architecture with emphasis on security by design
  • Demonstrate strong technical capability and experiences across a broad range of technical disciplines
  • Proven experience and in-depth knowledge with software development methodologies, CI/CD, and DevSecOps
  • Cloud infrastructure architecture and cloud resources configurations
  • Multi-cloud and on-prem architecture, including networking and firewall requirements and design
  • Experience building, owning, and operating an enterprise service pertaining to product security

Required Education :
  • BA/BS in Computer Science, Computer Engineering, Information Systems or Information Security preferred, or equivalent experience
  • Security+, CISSP, or other general information security certifications

Preferred Education :
  • MS in Computer Science, Computer Engineering, Information Systems or Information Security
  • Specialized security certifications (GIAC, OSCP, CSSLP, etc.)

Additional Information :
See More
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • .NETLanguages
    • C++Languages
    • JavascriptLanguages
    • PHPLanguages
    • PythonLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • AngularJSFrameworks
    • Backbone.jsFrameworks
    • DjangoFrameworks
    • HadoopFrameworks
    • JSFFrameworks
    • MeteorFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks

What are The Walt Disney Company Perks + Benefits

The Walt Disney Company Benefits Overview

Because our employees and cast members are at the heart of everything we do, Disney offers a competitive total rewards package that includes pay, health and savings benefits, time-off programs, educational opportunities and more. Together, these rewards make up a comprehensive package that help you live your best life, grow personally and professionally and take advantage of the special extras that only Disney can provide.

Eligibility for certain reward programs will vary based on your job status, work location and/or the terms of any applicable collective bargaining agreement.

Volunteer in local community
Partners with Nonprofits
Dedicated Diversity/Inclusion Staff
Diversity Employee Resource Groups
Hiring Practices that Promote Diversity
Health Insurance & Wellness Benefits
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Mental Health Benefits
Retirement & Stock Options Benefits
401(K) Matching
Match charitable contributions
Child Care & Parental Leave Benefits
Child Care Benefits
Generous Parental Leave
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Paid Sick Days

An Insider's view of The Walt Disney Company

How does the company support your career growth?

Over my 13 years with the company, I’ve had passionate leaders and colleagues with diverse backgrounds who have taught me and given me opportunities to expand into areas I never thought possible. You have the freedom to take career risks and apply your previous experience in ways you may not anticipate.


Product Management Director

What is your vision for the company?

Disney has always been at the heart of the evolution of the media industry, and technology is an essential part of that. The way that we tell and consume stories in the future is going to be completely different than it is today, and The Walt Disney Company is uniquely positioned to shape and create that future.


SVP/Chief Technology Officer, The Walt Disney Studios

More Jobs at The Walt Disney Company