Previous Job
Previous
Senior Security & Compliance Specialist
Ref No.: 17-15658
Location: Chantilly, Virginia
Position Type:Contract
Start Date: 04/20/2017
Senior Security & Compliance Specialist
Work Location: Orlando FL
8 Months
 
Job Description "It takes people to make the dream a reality.”  Walt was on to something when he said that, and it continues to ring true today.  No matter the stage in your career, being a part of Walt Disney Parks & Resorts means being a part of a team where you help bring innovation to life through unsurpassed products, services and most importantly remarkable experiences.  As a Cast Member, you are the steward and connection to our legacy and the backbone of our thriving innovations.  Join our team and watch your dreams come true.
 
The Senior Security and Compliance Specialist will provide security consulting to ensure projects, existing systems and third party service providers have the appropriate level of security, privacy, and compliance controls.  They will coordinate periodic security assessments, assist in the development of remediation plans for identified findings or coordinate the security exception process (when needed).  They will provide periodic review and feedback for all new and existing security standards. The Specialist is also expected to educate our partners and customers to ensure security and compliance is something that everyone values and supports.
 
Responsibilities:             
•             Evaluate application compliance with information security policies and standards and prepare appropriate documentation.
•             Evaluate third party service provider compliance with information security policies and standards and prepare appropriate documentation.
•             Provide oversight of security remediation projects ensuring timely completion and validation of completion.
•             Support the Compliance Team on all internal/external audit engagements for all in scope Parks & Resorts applications.
•             Work closely with business partners, key stakeholders, and internal departments to evaluate current and future security and compliance strategies.
•             Execute security strategies, evaluating efforts to ensure the effectiveness and efficiency of the organization's IT Controls.
•             Contribute in developing an execution plan to implement short and long term security goals.
•             Stay informed about information security trends, directions, and technologies in the technology industry.
•             Monitor industry trends and identify best practices and/or methodologies to implement in-house.
 
Basic Qualifications:      
•             Experience with security assessment methods and penetration testing techniques.
•             Demonstrated experience in identifying risk and development of mitigation plans.
•             Demonstrated experience in a security program for a large and complex organization.
•             Knowledge of security related legislation/regulations with emphasis on PCI, Safe Harbor and privacy.
•             Demonstrated problem solving skills with an ability to develop creative alternatives to complex problems, as well as, continuous improvement process skills
•             Demonstrated ability to handle confidential information.
•             Ability to establish credibility and working relationships with a wide range of personnel, including operations, management, executive, and legal staff.
•             Demonstrated professional written, verbal, and presentation communications skills.
•             Solid understating of project management principles.
•             Proven ability to work effectively in a fast-paced environment as part of a high performance team.
 
Preferred Qualifications:             
•             Experience working for a public company.
•             Experience working in a multi-national and multicultural environment.
•             Ability to be flexible with work schedule and travel requirements.
•             Demonstrated strong organizational and time management skills.
 
Preferred Education:     
•             Master's Degree or equivalent
 
Required Education:      
•             Bachelor's degree or equivalent experience in Computer Science, Management Information Systems, or related field.
•             Security accreditation (i.e., CISSP, GCIH, or CISM) plus at least eight years of related IT experience