Content Security Principal Architect chez DISNEY Skip Navigation
EN
Rechercher des emplois
The Walt Disney Company: Be Part of the Story

Be Part of the Story

Content Security Principal Architect

Postuler maintenant Postuler ultérieurement Identifiant de l’offre d’emploi 762920BR Emplacement Burbank, Californie, États-Unis Entreprise The Walt Disney Studios Date de publication 14/07/2020

Résumé du poste:

The Content Security Architect - Studio Content & Information Security, based in Glendale, CA, will be responsible for designing, architecting, assessing and securing solutions to enable content production for the Walt Disney Studios.

The candidate must possess the necessary verbal and written skills to effectively communicate detailed risk management related updates and results to executive leadership, peers, and stakeholders. The role will also serve as a direct point of contact to all Walt Disney Studio groups for security events, concerns, guidance or consultation.

Responsabilités:

  • Develop core strategies for the protection of The Walt Disney Studios intellectual property and pre-release content.
  • Work with Studios stakeholders to find effective security solutions that balance business requirements with cyber security needs to improve overall security posture
  • Conduct security assessments and provide leadership, insight and guidance to internal and 3rd party technology teams to enable the secure transfer, editing and deliver of content assets
  • Develop technical security guidance based on the evaluation of cloud and SaaS services and their capabilities
  • Develop, mature and maintain security architecture strategy, principles, models, standards, guidelines, and configurations
  • Research, model and track secure system standards, industry trends, market technology, threat group threats, tactics and procedures for ecosystem applicability and reference
  • Responsible for influencing the strategies of peer organizations ensuring that their strategic plans are enabled through defined partnership amongst peer organizations
  • Create and amend Studio Security standards and processes to ensure optimized risk management services at all times
  • Accountable for developing and socializing solution and process based strategies for functions within defined roles and responsibilities
  • Responsible for team mentorship, training and annual goals and objectives aligned with Studio leadership
  • Acquires appropriate level of ongoing training in order to stay abreast of risk landscape and emerging technologies to effectively participate in the identification and response to known threats and vulnerabilities and regulatory compliance requirements
  • Key contributor to continually improve and/or update existing program-based documentation (e.g. standards, process, and communications)

Qualifications Nécessaires:

  • At least ten years of progressive experience in cybersecurity and cloud infrastructure engineering/architecture with MS/BS degree in Information System management / Computer Science / Information Security or a related technical discipline
  • Team oriented with extensive experience working in small close-knit teams with little supervision
  • Extensive experience working in a distributed team model with teammates located throughout the world
  • Excellent presentation, verbal and written communication skills
  • Identify areas in need of process documentation and work with the teams to create, document and train on processes
  • Create detailed and clear functional/technical requirements for Studio Security Operations engagement and interaction, ensuring stakeholders clearly understand how to engage Content Security services
  • Significant penetration testing experience and offensive capabilities in numerous core competency areas including web applications, mobile applications, networks, cloud infrastructure
  • Experience and hands-on expertise in tuning of network sensors like IDS/IPS, DDOS, WAF Technologies.
  • Domain expertise of network security sensors such as IDS/IPS, cloud security access broker, DDOS protections, Open DNS, Cloud9, CDN’s etc.
  • Detailed understanding of Network Technologies Routers, switches, Load Balancers, firewalls, proxy etc.
  • Detailed proficiency with Linux and Windows.
  • In depth understanding of TCP/IP protocols.
  • Experience with PKI, SSL, SSH, HTTPS etc.
  • Knowledge of RESTful web services (client – server application).
  • Hands on knowledge of Automation skills, Dev Ops skills etc.
  • System admin - Red Hat Linux/Unix, Windows – Experience and knowledge is mandatory.
  • Software development domain and principles, including design patterns, code structure, programming languages, continuous integration (Git), continuous deployment (Travis/Jenkins), and deployment orchestration (Chef, puppet, or equivalent).
  • Experience with open-source software security sensors (Bro IDS, Suricata, Snort, Molach etc.).
  • Experience with network protocols and deep packet inspection.
  • Experience with micro services.
  • Experience with container technologies such as Kubernetes and Docker.
  • Proven experience delivering large scale, highly available security solutions.
  • In-Depth Knowledge of Public Cloud such as AWS, Azure and GCP.
  • Relevant security certifications such as OSCP, ISC2 CISSP, SANS, CEH, etc. are a major plus.

Formation Requise:

  • Bachelor's degree in Computer Science, Information Systems, IT Engineering, or a related field
  • CISSP or other technical certifications are a plus

Sur The Walt Disney Studios:

Depuis plus de 90 ans, The Walt Disney Studios représentent la base sur laquelle The Walt Disney Company s’est construite. Aujourd’hui, le Studio propose des films, de la musique et des mises en scène de qualité aux consommateurs du monde entier. Les longs métrages sont publiés sous les enseignes suivantes : Disney, y compris Walt Disney Animation Studios et Pixar Animation Studios, Disneynature, Marvel Studios et Lucasfilm. The Disney Music Group englobe les labels Walt Disney Records et Hollywood Records, ainsi que Disney Music Publishing. The Disney Theatrical Group produit et autorise des événements en direct, notamment Disney on Broadway, Disney on Ice et Disney Live!. Notre culture est une culture d’innovation, d’inspiration et de collaboration qui rassemble des artistes visionnaires, des technologues talentueux et des esprits d’entreprise astucieux pour donner naissance à des expériences de divertissement magiques pour un public mondial.

Sur The Walt Disney Company:

The Walt Disney Company, avec ses filiales et ses sociétés affiliées, est une grande société internationale et diversifiée de divertissement familial et de médias couvrant les secteurs d’activités suivants : réseaux de médias, parcs et centres de vacances, studio de divertissements, produits de consommation et médias interactifs. Depuis ses modestes débuts en tant que studio de dessins animés dans les années 20 jusqu’à son statut de référence dans l’industrie du divertissement d’aujourd’hui, Disney poursuit fièrement sa tradition de création d’histoires et d’expériences exceptionnelles pour tous les membres de la famille. Les histoires, les personnages et les expériences de Disney touchent les consommateurs et les visiteurs du monde entier. À travers nos activités présentes dans plus de 40 pays, nos employés et cast members collaborent pour créer des expériences de divertissement appréciées à la fois au niveau universel et local.

Le poste est rattaché à Walt Disney Pictures , qui fait partie du secteur d’activité que nous appelons The Walt Disney Studios.

Walt Disney Pictures est un employeur qui souscrit au principe d’égalité des chances. Les candidat(e)s seront pris(es) en considération pour l’emploi sans considération de race, de couleur, de religion, de sexe, d’origine nationale, d’orientation sexuelle, d’identité sexuelle, de handicap ou de statut d’ancien combattant protégé. Disney favorise une culture commerciale où les idées et décisions de tous et toutes nous aident à grandir, innover, créer les meilleures histoires et être pertinents dans un monde en évolution rapide.

Postuler maintenant Postuler ultérieurement