Sr Security Specialist, Corrective Action
The Walt Disney Company
Job Posting Title:
Sr Security Specialist, Corrective ActionReq ID:
10125210Job Description:
At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.
The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.
The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:
- Secure the Magic by protecting information systems and platforms.
- Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.
- Strengthen the business through optimizing execution, application, and technology used to protect the Company.
- Innovate by investing in core capabilities to enhance operational efficiency.
Responsibilities of the Role:
- Review reports, assessments, and findings to develop appropriate remediation or corrective action plans.
- Coordinate with IT and business partners to provide remediation education and facilitate necessary action.
- Develop and document risk mitigation strategies when compliance cannot be achieved.
- Analyze business areas and develop improvement plans to strengthen security posture.
- Drive improvement to security baselines, policies and standards.
- Document open items in status reports, including next steps, dependencies, and stakeholders.
- Regularly communicate portfolio health results to stakeholders, including technical and non-technical audiences.
- Validate implemented remediation and corrective action activity achieves compliance with TWDC policies and standard
- Stay updated on evolving security guidelines and incorporate them into IT and business practices. -
- Stay informed on emerging threats and vulnerabilities.
Must Haves (Years of Experience, languages, programs, tools, etc.):
- 5+ Years of related cybersecurity experience
- Demonstrated experience facilitating corrective action.
- Working knowledge of industry compliance programs such as PCI, SOX, etc. - Ability to work well with individuals and teams with varying technical and business backgrounds.
- Understanding of security frameworks and standards.
- Analytical thinking and attention to detail.
- Established problem-solving skills with an ability to develop creative alternatives to complex problems, as well as continuous process improvement skills - Demonstrated ability to handle confidential information.
- Experience in a security program for a large and complex organization.
Education:
- Bachelor's degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience
Job Posting Segment:
Enterprise TechnologyJob Posting Primary Business:
Corporate Global Information SecurityPrimary Job Posting Category:
Security GovernanceEmployment Type:
Full timePrimary City, State, Region, Postal Code:
Orlando, FL, USAAlternate City, State, Region, Postal Code:
Date Posted:
2025-07-09