The Walt Disney Company has flagged the Information Security Analyst job as unavailable. Let’s keep looking.

The Information Security Analyst will identify and assess security risks, analyze security data, and develop and implement security strategies to protect an organization’s technology infrastructure and data. Duties and responsibilities include scanning and monitoring computer networks, systems, and applications for security vulnerabilities, to anticipate and protect against potential threats. This Analyst will create and maintain protocols, processes, and procedures to guard against cyber threats, unauthorized access, and data breaches. In addition, will collaborate with IT, security team, and business members to architect and deploy new information security technologies. The Security Analyst will also assist in supporting the Compliance and Audit Program by responding to external security questionnaires and gathering required evidence.

Responsibilities: 

  • Assist in the execution of information security strategies.
  • Perform API, Web Service, Web Application and Microservice security testing.
  • Perform manual code reviews for Java, JavaScript, GWT, .NET, C#, SQL.
  • Write requirements for vulnerability remediation.
  • Develop and maintain security threat models.
  • Assist in responding to external security assessments and customer security questions.
  • Formulate, implement and monitor security technologies and controls.
  • Perform architecture security assessments and vulnerability scans, and work with IS teams to ensure remediation.
  • Perform third party and open source software security reviews and maintain approved software inventory.
  • Assist in all areas of security during security incident response including maturing people, process and technology.
  • Assist in the coordination and delivery of security awareness training as required.
  • Make recommendations for enhancing data systems security.
  • Monitor security systems (i.e. IDS/IPS, SIEM, AV, WAF, etc.) and ensure proper escalation and resolution of alerts are met.
  • Make recommendations on how to mature information security systems and controls for increased monitoring, alerting, and prevention.
  • Make recommendations for enhancing information security systems and solutions such as multi-factor authentication, vulnerability management, and endpoint protection.

Education Requirements:

  • Four-year college degree or greater from an accredited institution in Computer Science, MIS, or a similar field, or equivalent experience

Position Requirements:

  • 3-5 years of Information Security experience
  • ISO 27001 and HITRUST framework experience is required
  • Thorough knowledge of OWASP Top 10 and SANS Top 25
  • Experienced in Secure SDLC implementation and best practices
  • Previous experience as a DBA, Developer, System Administrator, Web Server Administrator
  • Current information security certification (e.g., CISSP, Security +, CEH, OSCP, GCIA etc.)
  • HIPAA Privacy and Security Rule knowledge required
  • Experience with Windows and Linux Operating Systems
  • Experience with OS, Database and Web server hardening best practices
  • Experience in Oracle, AWS and Azure Cloud Architecture and security controls
  • Experience in performing secure code reviews for C#, .Net, SQL, Java, JavaScript, GWT
  • Experience with using Ansible, Python, JIRA and Confluence
  • Experience in using Veracode, Inspector, Tenable or similar code and vulnerability scanning tools
  • Experience in reviewing findings from vulnerability scans, identifying false positives or recommending remediation steps
  • Experience in performing vulnerability assessments for new technologies and creating security requirements
  • Experienced in Network, API, Web Service, Web Application and Microservice security assessments and testing

Professional Competencies:

  • Strong written and verbal communication skills
  • Proven ability to interact with all levels of users and management
  • Ability to work independently
  • Excellent analytical and problem-solving skills are required

Location Requirements:

  • Hybrid at the Tampa, Florida, office or Remote with quarterly travel to the Tampa office.

COMMITMENT TO DIVERSITY & INCLUSION:

We are committed to cultivating and preserving a culture of inclusion and connectedness through collaboration. We grow and learn better together with a diverse team of employees. We welcome the unique contributions and the different perspectives of a diverse team. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.

If you need a reasonable accommodation for any part of the employment process, please contact us by email at careers@mhk.com and let us know the nature of your request and your contact information. Requests for accommodation will be considered on a case-by-case basis. Please note that only inquiries concerning a request for reasonable accommodation will be responded to from this email address. 

For more information, please visit Know Your RightsPay Transparency, and MHK EEO/AA Statement 

Benefits Snapshot:

  • Medical, vision, and dental plans for full time employees
  • 401(k) offered with a generous match
  • Benefits begin on first day of the month following employment 
  • Exercise/Health Club reimbursement opportunity 
  • Monthly dependent care reimbursement opportunity 
  • Short Term and Long Term disability 
  • Basic Term Life and AD&D Insurance 

Paid Time Off

  • 15 days Paid Time Off 
  • 13 Company Paid Holidays 
  • 3 Personal Days 
  • 2 Community Service days
Read Full Description
Confirmed 7 hours ago. Posted 30+ days ago.

Discover Similar Jobs

Suggested Articles