VP, Guest Data Protection

Disney Seattle , WA 98113

Posted 4 months ago

Job Description:

At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the worlda passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences and we're constantly looking for new ways to enhance and protect these exciting experiences.

The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney's information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.

Job Type

Full Time

Segment

The Walt Disney Company (Corporate)

Category

Technology

Basic Qualifications

  • 7+ years in IT with 4-6 years in an information security role

  • 3+ years of information security audit experience

  • Extensive knowledge of information security principles and functions

  • Extensive knowledge and experience with diverse IT architectures and enterprise IT data centers, external hosted services and cloud computing environments. Knowledge and experience with physical and virtual server configurations and implementations.

  • Extensive knowledge of NIST Special Publication 800-53 security and privacy controls, the NIST Cybersecurity Framework and other information security and privacy laws and regulations.

Business

The Walt Disney Company (Corporate)

Required Education

  • BA/BS in business or computer science or appropriate work experience

  • One of the following certifications: CISSP, CISM, CISA PCIP, ITIL V3 Foundations

Postal Code
98104

Responsibilities

In order to ensure that our services keep TWDC secure, we follow an ongoing, iterative process, including continued reevaluation of our services over time to address emerging threats as well as changes in business and technology. This process includes:

  • Analysis of known and emerging threats to determine risks against TWDC assets

  • Creation, maintenance, governance and communication of security policies and standards across TWDC

  • Assessment and audit of compliance against the security policies and standards

  • Assurance that TWDC assets are effectively managed and monitored to meet TWDC security criteria

We look add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work.

The Information Security Operations Team provides operational and engineering services, security operations consulting assistance, oversight of server and appliance based compliance tools, and security operations center services in support of the enterprise security program.

The VP will be responsible for creating a vision, strategy, and leading a team to communicate, evaluate and optimize the security of guest data throughout TWDC.

The VP will lead a highly skilled and focused team providing a comprehensive, global data protection strategy that protects guest data throughout the data life cycle. This includes leading the development, measurement, and enforcement of data security/privacy policies and standards which exist to mitigate operational risks associated with guest data in use, in motion and at rest.

The VP will have a deep understanding of guest data identity and access management threats and mitigating controls. They will interact with TWDC technology decision makers to develop, enhance, and govern the security of guest facing authentication systems.

The VP will have a deep understanding of data protection threats and mitigating controls. They will interact with TWDC technology decision makers, privacy, records information management to develop, enhance, and govern a global guest data protection program.

The VP will provide advisory-based consulting to TWDC technology decision makers relating to all guest facing authentication and data protection matters.

The VP will act as an independent reviewer of technical security programs to ensure they are strategically aligned with TWDC policies, standards, and guidelines for the protection of guest data.

Job Description

At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the worlda passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences and we're constantly looking for new ways to enhance and protect these exciting experiences.

The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney's information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives. GIS teams are located in Seattle, Burbank, and Orlando.

Basic Qualifications

  • 7+ years in IT with 4-6 years in an information security role

  • 3+ years of information security audit experience

  • Extensive knowledge of information security principles and functions

  • Extensive knowledge and experience with diverse IT architectures and enterprise IT data centers, external hosted services and cloud computing environments. Knowledge and experience with physical and virtual server configurations and implementations.

  • Extensive knowledge of NIST Special Publication 800-53 security and privacy controls, the NIST Cybersecurity Framework and other information security and privacy laws and regulations.

Required Education

  • BA/BS in business or computer science or appropriate work experience

  • One of the following certifications: CISSP, CISM, CISA PCIP, ITIL V3 Foundations

Responsibilities

In order to ensure that our services keep TWDC secure, we follow an ongoing, iterative process, including continued reevaluation of our services over time to address emerging threats as well as changes in business and technology. This process includes:

  • Analysis of known and emerging threats to determine risks against TWDC assets

  • Creation, maintenance, governance and communication of security policies and standards across TWDC

  • Assessment and audit of compliance against the security policies and standards

  • Assurance that TWDC assets are effectively managed and monitored to meet TWDC security criteria

We look add people to our team who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work.

The Information Security Operations Team provides operational and engineering services, security operations consulting assistance, oversight of server and appliance based compliance tools, and security operations center services in support of the enterprise security program.

The VP will be responsible for creating a vision, strategy, and leading a team to communicate, evaluate and optimize the security of guest data throughout TWDC.

The VP will lead a highly skilled and focused team providing a comprehensive, global data protection strategy that protects guest data throughout the data life cycle. This includes leading the development, measurement, and enforcement of data security/privacy policies and standards which exist to mitigate operational risks associated with guest data in use, in motion and at rest.

The VP will have a deep understanding of guest data identity and access management threats and mitigating controls. They will interact with TWDC technology decision makers to develop, enhance, and govern the security of guest facing authentication systems.

The VP will have a deep understanding of data protection threats and mitigating controls. They will interact with TWDC technology decision makers, privacy, records information management to develop, enhance, and govern a global guest data protection program.

The VP will provide advisory-based consulting to TWDC technology decision makers relating to all guest facing authentication and data protection matters.

The VP will act as an independent reviewer of technical security programs to ensure they are strategically aligned with TWDC policies, standards, and guidelines for the protection of guest data.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Systems Development Engineer Amazon Dynamodb Continuous Data Protection

Amazon.Com, Inc.

Posted 1 week ago

VIEW JOBS 10/7/2019 12:00:00 AM 2020-01-05T00:00 Want to work on a product that can do the following?: * Back up hundreds of terabytes of customer tables in seconds * Replicate tables across continents * Encrypt petabyes of data with no performance degradation Amazon DynamoDB is a fully managed NoSQL serverless database that does all this and more. DynamoDB provides fast and predictable performance (millisecond latencies for reads and writes) with seamless scalability. DynamoDB receives tens of millions of read and write requests per second to databases that are hundreds of terabytes in size. We are already one of the biggest distributed database systems in the world. That being said, we believe it is still Day 1 for DynamoDB, and our aspirations are to grow this product by ten times in the next two years. We are looking for deeply technical, team-first-mentality individuals who are willing to commit themselves to this goal. We need a systems development engineer to help us scale quickly to new AWS Regions and to automate the build of our massive infrastructure using various internal infrastructure-as-code technologies. As a systems development engineer working on DynamoDB, you will work with a team of SDEs and system SDEs to: * Automate infrastructure setup for operating DynamoDB across various AWS Regions. * Automate test, release, and deployment processes. * Build and track metrics to ensure high quality. * Drive operational excellence. Amazon.Com, Inc. Seattle WA

VP, Guest Data Protection

Disney