DISNEYのSr Cybersecurity Tech Spec Skip Navigation
Be you. Be here. Be part of the story.

Be Part of the Story

Sr Cybersecurity Tech Spec

応募後で応募 Job ID 10037032 勤務地-都市 Lake Buena Vista, フロリダ州, アメリカ合衆国 勤務地-国 Disney Parks, Experiences and Products 掲載日 2023/02/28


The Attractions Operational Technology (AOT) Cybersecurity team at Walt Disney World Resort in Orlando Florida is responsible for the security and reliability of the control networks that run our rides and shows.  These are in the form of ride controls, show controls, animated figure controls, lighting controls, audio controls, projection, video, and interactive controls. Our work frequently brings us into the parks and behind the scenes as we build out secure networks and manage connectivity for all the hardware and software responsible for the guest experiences. We have an immense social circle of interaction - our closest partners are those in Disney Enterprise Technology, Disney Global InfoSec, Walt Disney Imagineering, Sustaining Engineering and all the Controls Engineering teams. This team is the global leader for Attractions-based, OT Cybersecurity. Our offices are located inside a park berm and therefore we get to see and hear guest excitement on a daily basis.

Primary Responsibilities:

  • Utilize Threat Intelligence and Threat Models to create threat hypotheses and then plan and implement verification
  • Manage and analyze event data (millions+ events/day) provided by existing logging infrastructure
  • Identify anomalies and take steps to validate whether or not they are a true threat
  • Proactively and iteratively search through systems and networks to detect advanced threats
  • Prepare and report risk analysis and threat findings to appropriate stakeholders
  • Partner with our SIEM developer to build threat hunting detections and dashboards
  • Partner with our SOAR developer to enrich the data and automate the response and acknowledgement
  • Find misconfigurations through inspection of data and then lead correction efforts to increase reliability of our rides and shows
  • Drive improved automation detections for system alarms – and then help trigger response
  • Develop intuitive dashboards that show cyber health of each of our attractions
  • Manage tools and data that detect network changes
  • Coordinate with different teams to improve threat detection and response, and improve the overall security posture of the environment
  • Manage and triage security incidents, perform analysis, and perform initial investigations
  • Keep up to date with cyber threats and security technologies
  • Review and analyze data from a variety of cyber defense tools, including network traffic logs, intrusion detection or prevention system alerts, firewall or system logs, and open-source information to identify threat activity
  • Due to the onsite nature and scope of work, this role is onsite 4 days a week, plus a 5th flex work day that may be from home

Basic Qualifications:

  • Intermediate understanding of Ethernet networking technology.
  • Experience in cyber data analyst role or equivalent,  5+ years.
  • Elastic Stack (preferred) or Splunk SIEM experience.
  • Knowledge of “Blue Team” role and responsibilities
  • Understanding and ability to discuss the difference between information technology and operational technology.
  • Experience parsing and working with aggregated log indexes.
  • Experience building detections from published IOCs.

Preferred Qualifications:

  • Security Operation Center team experience.
  • Operational Technology (industrial control system) experience.
  • SOAR experience.
  • Experience building integrations using APIs between tools like messaging apps and Active Directory.
  • Understanding of VMware related technologies including vsphere, vcenter and ESXi.
  • Understanding of Active Directory structure including group policy, users, groups.
  • Intermediate knowledge of a programming language such as Python.
  • Membership in industry related knowledge-sharing organizations.

Required Education:

  • BS in Comp Sci, Cybersecurity, IT or related field.
  • One or more general security certifications.

Preferred Education:

  • MS in Comp Sci, Cybersecurity, IT or related field.
  • One or more SIEM, SOAR, or incident handling certifications.

The hiring range for this position in Florida is $107,256.00-$143,880.00 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.

Disney Parks, Experiences and Products について:

Disney Parks, Experiences and Products部門は、テーマパークやリゾートをはじめ、クルーズやバケーションなどの体験、トイやアパレル、書籍、ゲームなどのあらゆる商品を通じて、ディズニーのストーリーやキャラクター、フランチャイズに生命を吹き込むビジネスとしてグローバルに展開されています。

The Walt Disney Company について:

The Walt Disney Companyおよびその子会社・関連会社は、世界をけん引する多様性に溢れた、ファミリー向けエンターテインメントとメディアの国際企業です。当社は、Disney Entertainment、ESPN、Disney Parks, Experiences and Productsを主要ビジネスセグメントとしています。1920年代に小さなアニメ・スタジオとしてスタートしたDisneyは、今日のエンターテインメント業界において卓越した存在となりました。Disneyは今後もご家族の一人一人に一流の物語と体験を提供できるような作品作りを継承していきます。Disneyのストーリーやキャラクター、体験は、世界中のあらゆる場所の消費者やお客様に届けられています。当社は40カ国以上で、従業員とキャストメンバーが一丸となり、世界的にも地域的にも歓迎されるエンターテインメント体験を創出しています。

このポジションは Walt Disney Parks and Resorts U.S., Inc. という事業部門の一つである Disney Parks, Experiences and Productsでのお仕事です。

Walt Disney Parks and Resorts U.S., Inc. は雇用において均等な機会を提供しています。人種、肌の色、宗教、性別、国籍、性的指向、性自認、障害、又は保護を受けている退役軍人であるという立場に関わらず、応募者を選考します。Disneyは、企業が成長し、革新を生み、最高のストーリーを創出し、急速に変化する世界に対応できるよう、あらゆる人のアイデアや決定を尊重する企業文化を育みます。





  • テクノロジー, Lake Buena Vista, フロリダ州, アメリカ合衆国削除