Lockheed Martin has flagged the Staff Application Security Engineer or Collaboration Security Engineer job as unavailable. Let’s keep looking.

Job ID 10076020 Location Orlando, Florida, United States Business The Walt Disney Company (Corporate)

Job Summary:

What We Do:

We Are Hiring a Security Engineer, Application Security!

This is an estimated 12-month project hire placement, with no guarantee of permanent placement.

At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance and protect these exciting experiences.

The Global Information Security (GIS) group provides services and solutions to protect the value and use of Disney’s information through risk evaluation, collaboration, standardization, enforcement, and education across the enterprise. We protect the brand and reputation while enabling and supporting business objectives.

Disney Entertainment's Product Security Team is looking for a team member to help ensure that our products are secure and aligned with industry-wide security standards. The ideal candidate should have a good understanding of web and mobile application security, and focus on delivery, prioritizing data-driven decisions, continuous learning, passion about information security and love their work.

If you meet these requirements and are excited for the opportunity to join a great, dynamic Team who are dedicated to SECURING THE MAGIC!, we'd love to hear from you.

What You Will Do:

  • Work within a collaborative team of security engineers to improve existing product security service offerings and security testing capabilities
  • Perform web application testing, mobile application testing, IoT device testing, network penetration testing and source code reviews
  • Collaborate with developers, partners, and leadership to address security risks and provide mitigation recommendations
  • Develop solutions to drive remediation burndown and validation of security issues discovered through Product Security tests, Bug Bounty and Vulnerability Disclosure Programs
  • Stay ahead of emerging cybersecurity threats, vulnerabilities, and standard processes to continually improve testing methodologies and techniques
  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences
  • Regularly collaborate with internal and external customers on security-related projects and operational tasks
  • Evaluate and recommend new security testing tools

Must Have:

  • Minimum of 3+ years of related work experience
  • Knowledge of general security threats, attack vectors, and vulnerabilities
  • Experience in penetration testing web, mobile, IoT and network devices/applications
  • Proven experience with common tools associated with red teaming, penetration testing, and vulnerability assessments (Metasploit, Burp Suite Pro, Cobalt Strike, Kali, Nessus, and/or Accunetix)
  • Security+, CISSP, or other general information security certifications

Nice to Have:

  • Experience developing applications (web, mobile, api) and scripting (Python preferred)
  • Understanding for the need and appropriate use of application security testing tools like SAST, DAST, IAST, MAST, and Open-Source Vulnerability Scanning and the identified findings and remediation
  • Knowledge of API security standard methodologies and public cloud services (AWS, Azure, GCP, etc.)
  • Experience with using knowledge management and code repositories, including GitHub, GitLab, Jira, and Confluence
  • Specialized security certifications: OSCP, GPEN, GXPN, OSCE, GWAPT

Education:

Bachelor’s degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience.

The hiring range for this remote position is $97,580 to $150,590 per year, which factors in various geographic regions. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.

Read Full Description
Confirmed 9 hours ago. Posted 28 days ago.

Discover Similar Jobs

Suggested Articles