Skip to main content

Sr Cybersecurity Tech Spec

Apply NowApply Later Job ID 10037032 Location Lake Buena Vista, Florida, United States Business Disney Parks, Experiences and Products Date posted Feb. 28, 2023

Job Summary:

The Attractions Operational Technology (AOT) Cybersecurity team at Walt Disney World Resort in Orlando Florida is responsible for the security and reliability of the control networks that run our rides and shows.  These are in the form of ride controls, show controls, animated figure controls, lighting controls, audio controls, projection, video, and interactive controls. Our work frequently brings us into the parks and behind the scenes as we build out secure networks and manage connectivity for all the hardware and software responsible for the guest experiences. We have an immense social circle of interaction - our closest partners are those in Disney Enterprise Technology, Disney Global InfoSec, Walt Disney Imagineering, Sustaining Engineering and all the Controls Engineering teams. This team is the global leader for Attractions-based, OT Cybersecurity. Our offices are located inside a park berm and therefore we get to see and hear guest excitement on a daily basis.

Primary Responsibilities:

  • Utilize Threat Intelligence and Threat Models to create threat hypotheses and then plan and implement verification
  • Manage and analyze event data (millions+ events/day) provided by existing logging infrastructure
  • Identify anomalies and take steps to validate whether or not they are a true threat
  • Proactively and iteratively search through systems and networks to detect advanced threats
  • Prepare and report risk analysis and threat findings to appropriate stakeholders
  • Partner with our SIEM developer to build threat hunting detections and dashboards
  • Partner with our SOAR developer to enrich the data and automate the response and acknowledgement
  • Find misconfigurations through inspection of data and then lead correction efforts to increase reliability of our rides and shows
  • Drive improved automation detections for system alarms – and then help trigger response
  • Develop intuitive dashboards that show cyber health of each of our attractions
  • Manage tools and data that detect network changes
  • Coordinate with different teams to improve threat detection and response, and improve the overall security posture of the environment
  • Manage and triage security incidents, perform analysis, and perform initial investigations
  • Keep up to date with cyber threats and security technologies
  • Review and analyze data from a variety of cyber defense tools, including network traffic logs, intrusion detection or prevention system alerts, firewall or system logs, and open-source information to identify threat activity
  • Due to the onsite nature and scope of work, this role is onsite 4 days a week, plus a 5th flex work day that may be from home

Basic Qualifications:

  • Intermediate understanding of Ethernet networking technology.
  • Experience in cyber data analyst role or equivalent,  5+ years.
  • Elastic Stack (preferred) or Splunk SIEM experience.
  • Knowledge of “Blue Team” role and responsibilities
  • Understanding and ability to discuss the difference between information technology and operational technology.
  • Experience parsing and working with aggregated log indexes.
  • Experience building detections from published IOCs.

Preferred Qualifications:

  • Security Operation Center team experience.
  • Operational Technology (industrial control system) experience.
  • SOAR experience.
  • Experience building integrations using APIs between tools like messaging apps and Active Directory.
  • Understanding of VMware related technologies including vsphere, vcenter and ESXi.
  • Understanding of Active Directory structure including group policy, users, groups.
  • Intermediate knowledge of a programming language such as Python.
  • Membership in industry related knowledge-sharing organizations.

Required Education:

  • BS in Comp Sci, Cybersecurity, IT or related field.
  • One or more general security certifications.

Preferred Education:

  • MS in Comp Sci, Cybersecurity, IT or related field.
  • One or more SIEM, SOAR, or incident handling certifications.

The hiring range for this position in Florida is $107,256.00-$143,880.00 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.

About Disney Parks, Experiences and Products:

The Disney Parks, Experiences and Products segment includes Disney’s iconic travel and leisure businesses, which include six resort destinations in the United States, Europe and Asia, a top-rated cruise line, a popular vacation ownership program, and an award-winning guided family adventure business. Disney’s global consumer products operations include the world’s leading licensing business across toys, apparel, home goods, digital games and apps; the world’s largest children’s publisher; Disney store locations around the world; and the shopDisney e-commerce platform.

About The Walt Disney Company:

The Walt Disney Company, together with its subsidiaries and affiliates, is a leading diversified international family entertainment and media enterprise with the following business segments: Disney Entertainment, ESPN, Disney Parks, and Experiences and Products. From humble beginnings as a cartoon studio in the 1920s to its preeminent name in the entertainment industry today, Disney proudly continues its legacy of creating world-class stories and experiences for every member of the family. Disney’s stories, characters and experiences reach consumers and guests from every corner of the globe. With operations in more than 40 countries, our employees and cast members work together to create entertainment experiences that are both universally and locally cherished.

This position is with Walt Disney Parks and Resorts U.S., Inc., which is part of a business we call Disney Parks, Experiences and Products.

Walt Disney Parks and Resorts U.S., Inc. is an equal opportunity employer. Applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Disney fosters a business culture where ideas and decisions from all people help us grow, innovate, create the best stories and be relevant in a rapidly changing world.

Apply NowApply Later

Watch Our Jobs

Sign up to receive new job alerts and company information based on your preferences.

For Disney Job Alerts to work, JavaScript must be enabled in your browser.