Job Posting Title:

Manager, Information Security

Req ID:

10111886

Job Description:

Who We Are

At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.

The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:

• Secure the Magic by protecting information systems and platforms.

• Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.

• Strengthen the business through optimizing execution, application, and technology used to protect the Company.

• Innovate by investing in core capabilities to enhance operational efficiency.

What You Will Do

We are hiring a Manager, Information Security to join our Team!

The Manager, Information Security, will lead a talented team of Security Solution Architects to design, implement, and manage robust security strategies that protect systems, data, and applications. This managerial role requires expertise in cybersecurity frameworks, cloud security, and risk mitigation, with the added responsibility of mentoring team members, driving security initiatives, and collaborating with stakeholders to ensure that security solutions align with business objectives. The successful candidate will have both technical depth and leadership capabilities, ensuring the team’s success while maintaining a high standard of security excellence.

Responsibilities

• Lead and mentor a diverse team of Security Solution Architects, ensuring a high level of performance, growth, and professional development.

• Oversee the design and development of comprehensive security solutions that meet business and regulatory requirements across a variety of technologies.

• Collaborate with Technology teams and business stakeholders to ensure security solutions are fully integrated into new and existing infrastructures, applications, and cloud platforms.

• Drive the development and execution of long-term security strategies, including architecture reviews, mitigation planning, and policy creation.

• Build strong relationships with business leaders, project managers, and technical teams to ensure security measures and compliance requirements are factored into all technology projects.

• Oversee security architectural reviews to identify vulnerabilities and control gaps in complex system architectures.

• Develop and implement strategies to mitigate risks and integrate solutions into the broader security architecture.

• Ensure compliance with company policies, relevant laws, standards, and frameworks (e.g., PCI, GDPR, NIST, ISO27001).

Must Have

• Minimum of 8+ years of experience in Cybersecurity

• Minimum of 5+ years leading and managing a technical team

• Demonstrated experience in a security program for a large and complex organization

• Experience in designing and developing security solutions

• Strong leadership skills with the ability to inspire and mentor a team of security professionals

• Proven ability to collaborate with cross-functional teams and senior business leaders to develop security strategies

• Proven experience evaluating security architectures for large-scale solutions across a range of technologies

• Deep knowledge of cybersecurity frameworks, security tools, and security-related legislation/regulations

• Strong understanding of security controls and best practices for cloud platforms (e.g., AWS, Azure, GCP)

• Working knowledge of security related legislation/regulations with emphasis on PCI and privacy

Nice To Have

• Security accreditation (e.g., CISSP, GCIH, CISM, etc.)

• Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.)

Education

• Bachelor’s degree in Cyber Security, Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience

#DISNEYTECH

Job Posting Segment:

Enterprise Technology

Job Posting Primary Business:

Corporate Global Information Security

Primary Job Posting Category:

Security Operations

Employment Type:

Full time

Primary City, State, Region, Postal Code:

Orlando, FL, USA

Alternate City, State, Region, Postal Code:

Date Posted:

2025-02-18