Experienced GRC Professional for Disney's Cybersecurity Team - Remote Data Entry Specialist

Join the Magical World of Disney as a Remote Data Entry Specialist

Are you a seasoned GRC (Governance, Risk, and Compliance) professional with a passion for cybersecurity? Do you want to be part of a team that is shaping the future of Disney's cyber protection? We're looking for an experienced Data Entry Specialist to join our Cybersecurity Crew as a remote team member. As a key player in our team, you will be responsible for guiding GRC-related activities, ensuring the seamless execution of various tasks, and contributing to the enchanting world of Disney from the comfort of your own home.

About Our Cybersecurity Crew

Our Cybersecurity Crew is a team of green cybersecurity specialists who formulate and implement techniques and recommendations to help the organization align with its business dreams while dealing with dangers correctly and meeting industry guidelines and standards. We work on cutting-edge technology and toward new innovations in the area of cybersecurity to ensure the magic of Disney remains secure.

Key Responsibilities

• Assist in the management of the Walt Disney Organization's (TWDC) Global Third-Party/Internal Risk Method for carrying out cyber danger-related due diligence exams.
• Validate incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement.
• Conduct kick-off sessions with business stakeholders and any related third-party for conducting the Third-Party Assessment (TPA).
• Coordinate the distribution of due diligence questionnaires to internal stakeholders/third-party, review submitted questionnaires for completeness, and determine dangers springing up from the contemporary design and operational effectiveness of the internal/third-party's security controls.
• File responses, associated findings, and remediation plans in the TWDC systems.
• Draft/review reviews for the checks performed and ensure respective business stakeholders finalize critiques.
• Be a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required.
• Carry out continuous tracking of the third parties via TWDC systems for current/new findings and track any findings to closure.
• Identify opportunities for improvement inside the TWDC systems and strategies.
• Work intently with the Risk Lead/Manager to schedule and execute a range of different assisting activities related to the risk management program.

Governance, Risk, and Compliance

• Lead and help the development of cybersecurity risk and compliance-related strategies to ensure the treatment of cybersecurity risk consistent with the agency's risk urge for food.
• Maintain and document compliance towards information safety-associated guidelines and processes through planning, checking out, remediating, tracking, and reporting on control critiques and risk checks.
• Lead development and shipping of compliance and risk education and ongoing communications that assist in powering a tradition of protection and compliance.
• Retain abreast of regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk regions.
• Lead the sports to preserve and guide ISO 27001 standard.

Essential Qualifications and Skills

To be successful in this role, you will need to possess:

• Outstanding stakeholder management skills.
• A working understanding of information security-related best practices and requirements, including ISO 2700x, SOC 2 requirements, SSAE 16/18 standards, and many others.
• Experience in the management of risk, controls, and compliance.
• Expertise in risk assessment methodologies - qualitative/quantitative.
• Super analytical and problem-solving abilities.
• Super presentation making and delivery abilities.

Personal Attributes

• Robust interpersonal abilities.
• Ability to navigate a rapid-paced environment and be flexible with working hours.
• Fantastic communication abilities, both verbal and written.
• Adapt quickly to changing conditions and power high-quality change.

Preferred Training and Experience

To be considered for this role, you will need to have:

• An applicable Bachelor's/Master's diploma from an accepted university or equivalent experience.
• A minimum of 4 years of experience throughout third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/Internal Audit).
• Preferred experience with a massive company and/or large four accounting company.
• One or more credentials - CISA, CRISC, ISO27001 L. /LI, CISSP.
• Experience in AI/ML is a plus.

What We Offer

As a Disney team member, you will have access to a range of benefits, including:

• A competitive salary of $80,000 per year.
• Opportunities for career growth and professional development.
• A dynamic and supportive work environment.
• A chance to be part of a team that is shaping the future of Disney's cyber protection.

Why Work with Disney?

At Disney, we're passionate about delivering exceptional experiences that bring joy to our guests and customers. We're committed to creating a culture of innovation, inclusivity, and respect, where everyone can thrive. As a team member, you'll have the opportunity to be part of a talented and dedicated group of professionals who are driven by a shared sense of purpose.

How to Apply

If you're a motivated and experienced GRC professional looking for a new challenge, we want to hear from you. To apply, simply click on the link below to register as a candidate and submit your application.

Apply Now!

Preparing for the Interview

To help you prepare for the interview, here are some common questions and tips:

• Tell me about yourself. Provide a brief precis of your professional heritage, capabilities, and reviews. Focus on relevant info and your enthusiasm for the role.
• Why do you want to work for this organization? Speak about the agency's values, project, or popularity that align along with your profession desires. Point out specific elements of the business enterprise that attracted you.
• What's your best electricity? Highlight a relevant energy, including problem-fixing, management, or a technical skill. Support your solution with an example.
• What's your greatest weakness? Talk about a weak point, but emphasize how you're operating to improve it.
• Tell me about a hard situation you've got confronted at work and how you handled it. Use the STAR approach (situation, task, action, result) to provide a detailed response, showcasing your problem-solving talents.
• Why should we hire you for this role? Highlight your relevant qualifications, experiences, and how they make you the best match for the position. Mention your enthusiasm for the organization and the job.
• Where do you see yourself in 5 years? Share your career aspirations and how they align with the organization's growth. This demonstrates long-term commitment.
• What do you understand about our products/services? Research the employer's services and point out specific services or products. Explain how you believe they benefit customers.
• How do you handle working under stress? Describe your capacity to stay calm, prioritize tasks, and communicate effectively in high-stress situations. Provide an example.
• Tell me about a time you worked in a team. Describe a successful team project. Emphasize your collaboration, communication, and problem-solving abilities.
• What is your preferred work style or work environment? Share your preferences, but be adaptable. Point out that you can work effectively in different settings.
• Do you have any questions for us? Always have questions prepared. Ask about the organization's culture, team dynamics, expectations, or upcoming initiatives. It demonstrates your interest.

We look forward to receiving your application and discussing this opportunity further!