Sr. Security Application Specialist

Walt Disney Co. San Francisco , CA 94118

Posted 3 months ago

Job Summary:

Disney Streaming Services Information Security team's mission is to protect services, data, and technology assets of the organization, partners, and cast members. In concert with Disney's Global Information Security group, the DSS team works on initiatives that prevent, detect, and respond to malicious activity. Risk and threat assessment, incident response, security architecture, vulnerability management, governance and compliance, security awareness and training, security operations, among many other efforts make up the information security program.

This is a key role within the Information Security department that will be focused on application security for our streaming media service and other supporting applications. The application security engineer will be a valued partner to development and engineering teams to ensure secure architectures, patterns, and solutions are created and maintained. Creation and execution of a training and awareness program for secure development and best practice is a key component of the role. This person will work closely with Disney's application security team and will build a community of practice with developers within DSS to support effective communication and collaboration. This person will be the subject matter expert for secure code development and will work with various application engineering teams to develop alternatives for remediation of vulnerabilities.


  • Create and lead secure code working group with liaisons from various application and services engineering teams.

  • Utilize security tools for the appsec program such as static and dynamic code analysis tools and develop continual improvement program.

  • Coordinate red teams and penetration testers to facilitate exercises and work with application engineering teams on remediation. Oversee remediation efforts

  • Assist with code reviews and create secure reusable patterns.

  • Review application designs and solutions. Provide assessments.

  • Lead secure code training and awareness program.

  • Participate in information security operations duties, including occasional incident response escalations.

  • Perform risk and threat assessments.

Basic Qualifications:

  • 3+ years of relevant experience

  • Experience with application security

  • Experience in application development with at least one modern programming language.

  • Knowledge of OWASP

  • Knowledge of DevOps and Agile methods

  • Experience performing code reviews and with associated applications such as static code analysis tools (Checkmarx, Vericode) in several languages

  • Knowledge of web application architectures

  • Knowledge of threat modeling

  • Knowledge of dynamic code scanners such as AppScan or Qualys.

Preferred Qualifications:

  • Media industry experience

  • Other security experience such as incident handling (from appsec perspective), architecture, operations, GRC, etc.

  • Cloud technology, specifically AWS

Required Education

  • 4-year degree or work experience equivalent

  • CISSP, GIAC, or similar certification

About Disney Streaming Services:

Disney Streaming Services is responsible for developing and operating The Walt Disney Company's direct-to-consumer video businesses globally, including the ESPN+ premium sports streaming service; Disney+, the dedicated streaming home for entertainment from Disney, Pixar, Marvel, Star Wars, National Geographic and BAMTECH Media, a global leader in direct-to-consumer video streaming products and solutions. Our core mission is to deliver global audiences the freedom to access content on their terms across any connected device, time or location. We serve consumers by bringing the world's most beloved characters, timeless stories, legendary athletes, and epic sporting events to global audiences through best-in-class direct-to-consumer video services. We strive daily to imaginatively challenge convention with innovative technology that gives consumers the freedom to access content on their terms across any connected device, time or location.

About The Walt Disney Company:

The Walt Disney Company, together with its subsidiaries and affiliates, is a leading diversified international family entertainment and media enterprise with the following business segments: media networks, parks and resorts, studio entertainment, consumer products and interactive media. From humble beginnings as a cartoon studio in the 1920s to its preeminent name in the entertainment industry today, Disney proudly continues its legacy of creating world-class stories and experiences for every member of the family. Disney's stories, characters and experiences reach consumers and guests from every corner of the globe. With operations in more than 40 countries, our employees and cast members work together to create entertainment experiences that are both universally and locally cherished.

This position is with Disney Streaming Services, which is part of a business segment we call Disney Streaming Services.

Disney Streaming Technology LLC is an equal opportunity employer. Applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Disney fosters a business culture where ideas and decisions from all people help us grow, innovate, create the best stories and be relevant in a rapidly changing world.

Apply Now Apply Later

Explore Location

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sr GIS Application Specialist

Cognizant Technology Solutions

Posted 2 weeks ago

VIEW JOBS 2/7/2020 12:00:00 AM 2020-05-07T00:00 Role : GIS Software Developer Location: San Francisco, CA Job Description: Mandatory Skills: * 12+ years' experience in developing applications with ESRI products, 3+ years of experience with MS Visual Studio, Oracle 11g, SQL Server, JavaScript/HTML5/CSS3 * Over 3+ years of experience on developing GIS-related applications with ESRI ArcObjects and ArcFM objects * Over 2+ years of experience of ETL, FME * Having in depth knowledge and experience in performance tuning SDE Databases, Knowledge of utility company functions. * Knowledge and experience with editing scenarios in a multiuser Geodatabase, 3+ years of experience with ArcGIS Server installation, configuration and development using .NET, Silverlight, Java script API, Flex * Good knowledge for ESRI migration to AWS cloud. * Extensive knowledge in ESRI and ArcFM Product suite, Experience with ArcFM Auto Updaters and ArcFM configuration. * Proficient in Geoprocessing application with customization in Python using ESRI library. * Knowledge of client Data Migration, Implementation/Application upgrade" Preferred Skills: * Extensive Hands on experience with electrical distribution and transmission system's in the GIS space. * Demonstrated ability to support business end users and production issues * Advanced knowledge and experience with GIS industry. * Analyzing, identifying and resolving application performance challenges. * Experience in Requirement Gathering, Business co-ordination and maintaining traceability matrix. * Good knowledge for Designing and building web interfaces * Conducts performance, unit, system, integration, and quality assurance testing of applications * Excellent client facing and interaction in consulting and Architect roles. * Provides end user support and creates support documentation * Experience with general data manipulation/automation with GIS or database extract/translate/load tools, specifically Safe Software FME and ArcGIS Python" Job Roles/Responsibilities: * Assisting project manager regarding GIS matters. * Operating and maintaining GIS hardware and software, including developing and/or modifying applications software and/or related sub-system applications software. * Identifying, analyzing, and defining changes to GIS applications software and related systems and subsystem. * Developing, implementing, coordinating, and maintaining internal technical standards. * Designing, developing (implementing), customizing and maintaining (enhancing) the discipline specific GIS. * Provide support for GIS data conversion, systems integration and systems and application's development and implementation. * Developing, maintaining and updating GIS databases." Cognizant Technology Solutions San Francisco CA

Sr. Security Application Specialist

Walt Disney Co.