Experienced Full Stack Cybersecurity Risk Management Professional – Web & Cloud Application Development, Governance, Threat, and Compliance Specialist

About Us

The Walt Disney Company is a global leader in the entertainment industry, renowned for its enchanting stories, memorable characters, and innovative technologies. As a company that has been a part of people's lives for generations, we take pride in our commitment to excellence, creativity, and innovation. Our team of talented professionals is dedicated to delivering exceptional experiences to our customers, while fostering a culture of inclusivity, diversity, and respect.

Job Description

We are seeking an experienced Full Stack Cybersecurity Risk Management Professional to join our team as a Governance, Threat, and Compliance Specialist. This is a unique opportunity to contribute to the development of our cybersecurity risk management program, ensuring the protection of our digital assets and the trust of our customers. As a key member of our Cybersecurity team, you will play a critical role in guiding our GRC-related activities, ensuring the effective execution of various tasks, and collaborating with stakeholders to identify and mitigate potential risks.

Key Responsibilities

• Third Party Risk Management (TPRM) Software: Assist the Walt Disney Agency's 3rd Party/ Internal Risk Control Software in managing the internal safety compliance requirements and implementation of regulations, tactics, and frameworks at Disney Star.
• Help the Walt Disney Organization's (TWDC) Global 3rd Party/ Internal Risk Method for wearing out Cyber Danger Related Due Diligence Exams.
• Validate incoming 3rd Party/ Internal Risk Assessment Requests, working with business stakeholders to confirm the details of the request and the scope of the engagement.
• Coordinate the distribution of Due Diligence Questionnaires to the internal stakeholders/3rd Party, review submitted questionnaires for completeness, and decide risks arising from the current design and operational effectiveness of the internal/3rd Party's security controls.
• File responses, associated findings, and remediation plans in the TWDC Systems.
• Draft/review reviews for the checks performed and ensure respective business stakeholders finalize critiques.
• Be a strong liaison to ensure any queries are responded concerning the Risk Control Technique and Evaluation to the business or 3rd parties as required.
• Carry out continuous tracking of the 3rd parties via TWDC Systems for current/new findings and report any findings to closure.
• Perceive opportunities of improvement within the TWDC Systems and strategies.
• Work intensely with Chance Lead/Supervisor to time table and execute a spread of different assisting activities related to the Chance Management Program.

Governance, Threat, and Compliance

• Lead and help the improvement of Cybersecurity Risk and Compliance related strategies to ensure treatment of Cybersecurity Risk consistent with the Agency's Risk Appetite.
• Maintain and document compliance towards Information Security related guidelines and processes through planning, checking out, remediating, tracking, and reporting on manipulate critiques and threat checks.
• Lead development and shipping of Compliance and Risk Education and ongoing communications that assist power tradition of protection and compliance.
• Retaining abreast of Regulatory Changes, new guidelines, technology, and internal policy modifications on the way to further pick out new key risk regions.
• Lead the team to preserve and guide ISO 27001 popular.

Competencies & Attributes for Fulfillment

• Understanding and Competencies: Strong understanding of Cybersecurity Risk Management, Governance, and Compliance principles, as well as experience in the control of risk, controls, and compliance.
• Outstanding Stakeholder Management: Ability to navigate rapid-paced environments and be flexible with working hours.
• Working Understanding of Information Security related Quality Practices and Requirements: Including ISO 2700x, SOC 2 requirements, SSAE 16/18 requirements, and many others.
• Experience in the Control of Risk, Controls, and Compliance: Expertise of risk evaluation methodologies – qualitative/quantitative.
• Super Analytical and Problem-Solving Abilities: Strong presentation making and delivery abilities.
• Personal ATTRIBUTES: Robust interpersonal abilities, ability to navigate rapid-paced environments and be flexible with working hours, fantastic communication abilities, both verbal and written.

Preferred Qualifications & Experience

• Applicable Bachelor's/ Master's Diploma from an accepted University or equivalent experience.
• 4 Years of experience throughout 3rd Party Risk Control, Records Security and Audit & Compliance Tracking (Minimum Of 2-3 Years In TPRM/Internal Audit).
• Preferred experience with a large company and/or large four accounting company.
• One or greater credentials - CISA, CRISC, ISO27001 L./LI, CISSP.
• Experience in AI/ML is a plus.

Career Growth Opportunities and Learning Benefits

As a member of our team, you will have the opportunity to grow and develop your skills in a dynamic and supportive environment. We offer a range of training and development programs, including mentorship, coaching, and online courses, to help you achieve your career goals. Our team is passionate about innovation and continuous improvement, and we encourage our employees to share their ideas and suggestions for improving our processes and services.

Work Environment and Company Culture

Our team is a collaborative and inclusive group of professionals who share a passion for cybersecurity and risk management. We work in a fast-paced environment, and we are committed to delivering exceptional results. Our company culture is built on the values of innovation, creativity, and respect, and we strive to create a work environment that is supportive, flexible, and fun. We offer a range of benefits, including flexible working hours, remote work options, and a comprehensive benefits package.

Compensation, Perks, and Benefits

We offer a competitive salary of $80,000 per year, as well as a range of benefits and perks, including:

• Flexible working hours and remote work options.
• A comprehensive benefits package, including health insurance, retirement savings, and paid time off.
• Opportunities for professional development and career growth.
• A fun and supportive work environment.
• Access to the latest technologies and tools.

How to Apply

If you are a motivated and experienced professional with a passion for cybersecurity and risk management, we encourage you to apply for this exciting opportunity. Please submit your resume and a cover letter outlining your qualifications and experience. We look forward to hearing from you!

Why Join Our Team?

At The Walt Disney Company, we are committed to delivering exceptional experiences to our customers, while fostering a culture of inclusivity, diversity, and respect. Our team is a collaborative and inclusive group of professionals who share a passion for innovation and continuous improvement. We offer a range of benefits, including flexible working hours, remote work options, and a comprehensive benefits package. Join our team and be part of a dynamic and supportive environment that is dedicated to delivering exceptional results.

Apply Now

To apply for this exciting opportunity, please click on the link below:

For More Information

For more information about this opportunity, please contact us at [insert contact information]. We look forward to hearing from you!