Senior Manager, Architecture - Content & Information Security
The Senior Manager, Architecture - Studio Content & Information
Security, based in Glendale, CA, will be responsible for designing,
architecting, assessing and securing solutions to enable content
production for the Walt Disney Studios.
The candidate must possess the necessary verbal and written
skills to effectively communicate detailed risk management related
updates and results to executive leadership, peers, and
stakeholders. The role will also serve as a direct point of contact
to all Walt Disney Studio groups for security events, concerns,
guidance or consultation.
Develop core strategies for the protection of The Walt Disney
Studios intellectual property and pre-release content.
Work with Studios stakeholders to find effective security
solutions that balance business requirements with cyber security
needs to improve overall security posture
Conduct security assessments and provide leadership, insight and
guidance to internal and 3rd party technology teams to enable the
secure transfer, editing and deliver of content assets
Develop technical security guidance based on the evaluation of
cloud and SaaS services and their capabilities
Develop, mature and maintain security architecture strategy,
principles, models, standards, guidelines, and configurations
Research, model and track secure system standards, industry
trends, market technology, threat group threats, tactics and
procedures for ecosystem applicability and reference
Responsible for influencing the strategies of peer organizations
ensuring that their strategic plans are enabled through defined
partnership amongst peer organizations
Create and amend Studio Security standards and processes to
ensure optimized risk management services at all times
Accountable for developing and socializing solution and process
based strategies for functions within defined roles and
Responsible for team mentorship, training and annual goals and
objectives aligned with Studio leadership
Acquires appropriate level of ongoing training in order to stay
abreast of risk landscape and emerging technologies to effectively
participate in the identification and response to known threats and
vulnerabilities and regulatory compliance requirements
Key contributor to continually improve and/or update existing
program-based documentation (e.g. standards, process, and
At least ten years of progressive experience in cybersecurity
and cloud infrastructure engineering/architecture with MS/BS degree
in Information System management / Computer Science / Information
Security or a related technical discipline
Team oriented with extensive experience working in small
close-knit teams with little supervision
Extensive experience working in a distributed team model with
teammates located throughout the world
Excellent presentation, verbal and written communication
Identify areas in need of process documentation and work with
the teams to create, document and train on processes
Create detailed and clear functional/technical requirements for
Studio Security Operations engagement and interaction, ensuring
stakeholders clearly understand how to engage Content Security
Significant penetration testing experience and offensive
capabilities in numerous core competency areas including web
applications, mobile applications, networks, cloud
Experience and hands-on expertise in tuning of network sensors
like IDS/IPS, DDOS, WAF Technologies.
Domain expertise of network security sensors such as IDS/IPS,
cloud security access broker, DDOS protections, Open DNS, Cloud9,
Detailed understanding of Network Technologies Routers,
switches, Load Balancers, firewalls, proxy etc.
Detailed proficiency with Linux and Windows.
In depth understanding of TCP/IP protocols.
Experience with PKI, SSL, SSH, HTTPS etc.
Knowledge of RESTful web services (client – server
Hands on knowledge of Automation skills, Dev Ops skills etc.
System admin - Red Hat Linux/Unix, Windows – Experience and
knowledge is mandatory.
Software development domain and principles, including design
patterns, code structure, programming languages, continuous
integration (Git), continuous deployment (Travis/Jenkins), and
deployment orchestration (Chef, puppet, or equivalent).
Experience with open-source software security sensors (Bro IDS,
Suricata, Snort, Molach etc.).
Experience with network protocols and deep packet
Experience with micro services.
Experience with container technologies such as Kubernetes and
Proven experience delivering large scale, highly available
In-Depth Knowledge of Public Cloud such as AWS, Azure and
Relevant security certifications such as OSCP, ISC2 CISSP, SANS,
CEH, etc. are a major plus.
Bachelor's degree in Computer Science, Information Systems, IT
Engineering, or a related field
CISSP or other technical certifications are a plus
Walt Disney Pictures é um empregador que dá oportunidades
iguais. Os candidatos serão selecionados para emprego independente
de raça, cor, religião, sexo, nacionalidade, orientação sexual,
identidade de gênero, necessidade especial ou status de veterano
protegido. A Disney promove uma cultura de negócios em que ideias e
decisões de todas as pessoas nos ajudam a crescer, inovar, criar as
melhores histórias e ser relevantes em um mundo de rápidas
Disability Accommodation for Employment Applications The Walt
Disney Company and its Affiliated Companies are Equal Employment
Opportunity employers and welcome all job seekers including
individuals with disabilities and veterans with disabilities. If
you have a disability and believe you need a reasonable
accommodation in order to search for a job opening or apply for a
position, email Candidate.Accommodations@Disney.com with your
request. This email address is not for general employment inquiries
or correspondence. We will only respond to those requests that are
related to the accessibility of the online application system due
to a disability.