-
Security Specialist II - Vulnerability Management
- The Walt Disney Company (Seattle, WA)
-
Who We Are
At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.
The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.
The **Global Information Security (GIS) Organization** strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:
+ Secure the Magic by protecting information systems and platforms.
+ Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.
+ Strengthen the business through optimizing execution, application, and technology used to protect the Company.
+ Innovate by investing in core capabilities to enhance operational efficiency.
What You Will Do
We need a **Security Specialist II** **– Vulnerability Management** to join our Team!
_Responsibilities:_
+ Lead enterprise vulnerability management processes with focus on automation, risk analysis, and stakeholder communication across business segments.
+ Provide 24/7 urgent security response as part of on-call rotation, leading rapid assessment and coordination of remediation efforts during critical security events and zero-day vulnerability discoveries.
+ Develop and maintain automated solutions including scripts, tools, and processes to streamline vulnerability validation, prioritization, and remediation tracking.
+ Conduct in-depth vulnerability research and risk assessment to evaluate real-world impact of security findings within Disney's specific technology environments and business context.
+ Perform advanced data analysis of vulnerability scanning outputs to identify trends, prioritize remediation efforts, and optimize resource allocation.
+ Create and deliver comprehensive reports to diverse audiences, translating technical vulnerability data into actionable insights for both technical teams and executive stakeholders.
+ Coordinate remediation campaigns across multiple asset owners, operating systems, applications, and business units, including patch management and off-cycle remediation efforts.
+ Serve as technical liaison between segment asset owners and Disney management for vulnerability reporting, exception requests, extension approvals, and risk acceptance decisions.
+ Drive process improvement initiatives by identifying automation opportunities, establishing performance metrics, and implementing solutions that enhance the efficiency of vulnerability management operations.
+ Collaborate with cross-functional teams including suppliers, support groups, and subject matter experts to establish remediation expectations, provide process training, and ensure consistent vulnerability handling practices.
Must Have
+ Minimum 3+ years of experience in vulnerability management, threat assessment, or information security with demonstrated experience in enterprise environments.
+ Hands-on experience with enterprise vulnerability management platforms such as Tenable, Qualys, Rapid7, Wiz, or similar tools for scanning, assessment, and remediation tracking.
+ Strong technical systems knowledge including infrastructure, operating systems, public cloud platforms (AWS, Azure, GCP), and application architectures to assess remediation impact and feasibility.
+ Scripting and automation capabilities with proficiency in languages such as Python, PowerShell, Bash, or similar, including ability to read, write, debug, and maintain code solutions.
+ Proven analytical and research skills with ability to rapidly assess complex vulnerabilities across diverse technology stacks and translate technical findings into business risk context.
+ Excellent written and verbal communication skills with experience creating technical documentation, security advisories, and executive-level reports for varied audiences.
+ Experience working in high-pressure, time-sensitive environments with demonstrated ability to prioritize and coordinate response efforts during security incidents.
Preferred Qualifications
+ Industry certifications such as CISSP, OSCP, GCIH, GIAC Security Essentials (GSEC), or equivalent security credentials
+ Experience with vulnerability management platforms (Qualys, Rapid7, Tenable, etc.) and security orchestration tools
+ Previous experience in media, entertainment, or large enterprise environments
+ Familiarity with compliance frameworks (PCI-DSS, etc.)
Education
+ Bachelor’s degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience
\#DISNEYTECH
.
The hiring range for this position in Seattle, WA is $109,500 - $146,800 per year and in Burbank, California is $104,600 - $140,200 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.
**Job ID:** 10126673
**Location:** Seattle,Washington
**Job Posting Company:** The Walt Disney Company (Corporate)
The Walt Disney Company and its Affiliated Companies are Equal Employment Opportunity employers and welcome all job seekers including individuals with disabilities and veterans with disabilities. If you have a disability and believe you need a reasonable accommodation in order to search for a job opening or apply for a position, email [email protected] with your request. This email address is not for general employment inquiries or correspondence. We will only respond to those requests that are related to the accessibility of the online application system due to a disability.
-
Recent Searches
- Application Engineering Chapter Lead (King Of Prussia, PA)
- Network Engineer Tier II (Lisle, IL)
- Sr Application Engineer Remote (Puerto Rico)
- Falcon 900 2000 Instructor (Fort Worth, TX)
Recent Jobs
-
Security Specialist II - Vulnerability Management
- The Walt Disney Company (Seattle, WA)
-
Director - Compliance
- American Express (New York, NY)
-
CNA-Acute Care PRN
- Clark Fork Valley Hospital (Plains, MT)
-
Field Service Engineer (Texas)
- ManpowerGroup (Allen, TX)