Experienced Full Stack Cybersecurity Specialist – Governance, Risk, and Compliance (GRC) Professional for Web and Cloud Application Development
About Us
At Disney, we're not just a company – we're a global leader in the entertainment industry, bringing magic to millions of people around the world. Our commitment to innovation, creativity, and excellence has made us a household name, and we're always looking for talented individuals to join our team. As a Disney Data Entry Specialist, you'll be part of a dynamic and collaborative environment that values diversity, inclusion, and growth.Job Summary
We're seeking an experienced Full Stack Cybersecurity Specialist to join our Governance, Risk, and Compliance (GRC) team. As a key member of our team, you'll be responsible for guiding GRC-related activities, ensuring the smooth execution of various tasks, and contributing to the development of our cybersecurity framework. If you're passionate about cybersecurity, have a strong understanding of GRC principles, and are looking for a challenging and rewarding role, we encourage you to apply.Key Responsibilities
As a Full Stack Cybersecurity Specialist, you'll be responsible for the following key duties:- Third-Party Risk Management (TPRM) Software: Assist the Walt Disney Agency's TPRM software in managing internal safety compliance requirements and implementing regulations, tactics, and frameworks at Disney Star.
- Third-Party Risk Management (TPRM) Software: Help the Walt Disney Organization's (TWDC) global third-party risk management method for wearing out cyber risk-related due diligence exams.
- Validate incoming third-party risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement.
- Coordinate the distribution of due diligence questionnaires to internal stakeholders/third-party, review submitted questionnaires for completeness, and decide risks arising from the current design and operational effectiveness of the internal/third-party's security controls.
- File responses, associated findings, and remediation plans in the TWDC systems.
- Draft/review reviews for the checks performed and ensure respective business stakeholders finalize critiques.
- Be a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required.
- Carry out continuous tracking of the third-party via TWDC systems for current/new findings and report any findings to closure.
- Perceive opportunities of improvement within the TWDC systems and strategies.
- Work intensely with Chance Lead/Supervisor to time-table and execute a range of different assisting activities related to the chance management program.
Governance, Threat, and Compliance
As a Full Stack Cybersecurity Specialist, you'll also be responsible for the following governance, threat, and compliance-related duties:- Lead and assist the improvement of cybersecurity risk and compliance-related strategies to ensure treatment of cybersecurity risk consistent with the agency's threat urge for food.
- Maintain and document compliance towards information safety associated guidelines and processes through planning, checking out, remediating, tracking, and reporting on manipulate critiques and threat checks.
- Lead development and shipping of compliance and danger education and ongoing communications that assist power tradition of protection and compliance.
- Retaining abreast of regulatory changes, new guidelines, technology, and internal policy modifications on the way to further pick out new key chance regions.
- Lead the team to preserve and guide ISO 27001 popular.
Competencies & Attributes for Fulfillment
To be successful in this role, you'll need to possess the following competencies and attributes:- Understanding and competencies in GRC principles, cybersecurity risk management, and information security.
- Outstanding stakeholder management skills.
- Working understanding of information security-related quality practices and requirements, including ISO 2700x, SOC 2 requirements, SSAE 16/18 requirements, and others.
- Experience in the control of risk, controls, and compliance.
- Expertise of risk evaluation methodologies – qualitative/quantitative.
- Super analytical and problem-solving abilities.
- Super presentation making and delivery abilities.
Personal Attributes
As a Full Stack Cybersecurity Specialist, you'll need to possess the following personal attributes:- Robust interpersonal skills.
- Ability to navigate rapid-paced environments and be flexible with working hours.
- Fantastic communication skills, both verbal and written.
- Adapt quickly to changing conditions and power high-quality change.
Preferred Qualifications & Experience
While not required, we prefer candidates with the following qualifications and experience:- Applicable Bachelor's/Master's degree from an accredited university or equivalent experience.
- 4 years of experience throughout third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit).
- Preferred experience with a large company and/or large four accounting company.
- One or more credentials – CISA, CRISC, ISO27001 L./LI, CISSP.
- Experience in AI/ML is a plus.
About Disney Careers
At Disney, we're passionate about creating a workplace that's inclusive, diverse, and supportive. We believe that our employees are our greatest asset, and we're committed to providing opportunities for growth, development, and success.How to Apply
If you're a motivated and experienced Full Stack Cybersecurity Specialist looking for a challenging and rewarding role, we encourage you to apply. Please submit your resume, cover letter, and any relevant certifications or experience. We can't wait to hear from you!Compensation & Benefits
As a Disney Data Entry Specialist, you'll enjoy a competitive salary of $80,000 per year, plus a range of benefits, including:- Comprehensive health insurance.
- Retirement savings plan.
- Flexible work arrangements.
- Professional development opportunities.
- Access to Disney's world-class entertainment and attractions.