Senior Manager, Content Security Engineering

The Sr Manager, Content Security Engineering reports into the Vice President of Content Security at The Walt Disney Studios based in Glendale, CA and is responsible for the management of all 3rd party security assessment programs (application, cloud, facilities) in support of Studio Content Security objectives.  The modern filmmaking process is highly complex with a dependencies on an entire eco-system of 3rd party strategic partners, suppliers and vendors.  We provide assessment, consulting and advisory services to ensure the entire supply chain remains robust and resilient and allows The Walt Disney Studios’ to securely create films, features and series seen across the world.

Overall Responsibilities

• Develop strategy and manage key programs including, but not limited to:

  • Application & Cloud Security for the 3rd party supply chain

  • Security assessment services for 3rd party supply chain

  • Physical security assessment capabilities for facilities handling sensitive content

• Serve as a Subject Matter Expert providing technical guidance around security best practices encompassing both application and cloud environments, and facilities

• Provide technical solutions to internal and external business units with an emphasis around secure network architecture and hardening best practices

• Drives the continued improvement of existing program-based documentation (e.g. standards, process, and communications)

• Development and management of security controls and associated risks

• Socialize programs internally, including the development of executive-level presentations, and externally with key partners

Specific Responsibilities

• Lead security programs with an emphasis on digital security, physical security, reliability, information assurance, and related processes

• Formally define baseline Studio Content Security requirements by leading development of Application, Cloud and Facility Security frameworks

• Manage all aspects of the evaluation lifecycle, including planning, fieldwork, reporting and archiving

• Evaluate and test business processes / controls and identify areas of risk, and develop mitigation plans

• Oversee day-to-day­­ teams' operation and performance

• Monitor team performance and report on metrics to the Vice President

• Delegate tasks and set project deadlines

• Provide high quality, comprehensive and accurate reports to assess, document, and communicate results of security evaluations

• Work with internal assurance teams and business unit stakeholders to assess vendor evaluation strategy, cloud strategy, define objectives, and address technology-related controls risks and issues

• Act as Application / Cloud Information Security subject matter expert to vendors and in-house personnel

• Develop and deliver training materials and perform general security awareness and specific security technology training

• Evaluate and recommend new and emerging security products and technologies

• Willingness to travel up to 25% domestically and internationally

Experience and Qualification

• 7+ years of experience in information security and/or the following areas: security architecture, security engineering, system and network security, authentication and protocols, cryptography, and application security

• 5+ years of experience with cloud technologies

• Advanced knowledge of cloud security and infrastructure environments for top tier cloud providers (AWS, Azure, GCP)

• Prior experience in an architecture, development, engineering, or senior technical role

• Prior experience in the entertainment industry preferred

• Ability to work in a highly distributed matrixed environment

• Ability to adapt to new technologies and trends

Required Skills

• Broad technical skills in conducting security assessments

• Broad technology expertise with application, system integration, data, and/or infrastructure knowledge

• Strong understanding of secure network principles of perimeter devices, servers, and workstations

• Working knowledge of configuring and maintaining firewalls and network switching / routing devices (e.g., Palo Alto, Sonicwall, Fortinet, Brocade, Cisco, HP)

• Network architecture and layer 2 and Layer 3 routing principles

• Vulnerability scanning, SIEM and common methods of exploiting vulnerabilities

• Endpoint protection and Data Loss Prevention solutions

• Secure configuration of Linux, Windows, and Mac based servers and endpoints

• LAN, WAN, TCP/IP connectivity and security protocols (Point-to-Point, MPLS, VPN)

• Wireless authentication standards (802.1x)

• Directory Services (e.g., Active Directory, Open Directory, LDAP)

• Storage solutions (e.g., SAN, NAS, encrypted storage mechanisms)

• Digital transfer tools (e.g., Aspera, Signiant)

• OS hardening best practices for both servers and workstations

• Computer investigation processes and techniques

• Experience in the following are desired:

• Knowledge of studio IT systems, including production and post-productions environments

• Knowledge of feature film production and post-production industries, services, and workflows (e.g., DI, editing, visual/audio effects, encoding, on-set support)

• Must have strong communication (written and verbal, including presentation) and listening skills

• Experience in technical project management/leading large scale technology initiatives

• Strong analytical, organizational and decision-making skills

• Strong negotiation skills

Education

Bachelor's degree in Computer Science, Information Systems, IT Engineering, or a related field

CISSP, CISA/CISM, or CEH designations desired

DISNEYTECH