Manager, Information Security

Company: Disneyland Hong Kong
Location: Orlando
Posted on: May 4, 2025

Job Description:

At Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the world-a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences - and we're constantly looking for new ways to enhance and protect these exciting experiences.The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:Secure the Magic by protecting information systems and platforms.Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.Strengthen the business through optimizing execution, application, and technology used to protect the Company.Innovate by investing in core capabilities to enhance operational efficiency.What You Will DoWe are hiring a Manager, Information Security to join our Team!The Manager, Information Security, will lead a talented team of Security Solution Architects to design, implement, and manage robust security strategies that protect systems, data, and applications. This managerial role requires expertise in cybersecurity frameworks, cloud security, and risk mitigation, with the added responsibility of mentoring team members, driving security initiatives, and collaborating with stakeholders to ensure that security solutions align with business objectives. The successful candidate will have both technical depth and leadership capabilities, ensuring the team's success while maintaining a high standard of security excellence.ResponsibilitiesLead and mentor a diverse team of Security Solution Architects, ensuring a high level of performance, growth, and professional development.Oversee the design and development of comprehensive security solutions that meet business and regulatory requirements across a variety of technologies.Collaborate with Technology teams and business stakeholders to ensure security solutions are fully integrated into new and existing infrastructures, applications, and cloud platforms.Drive the development and execution of long-term security strategies, including architecture reviews, mitigation planning, and policy creation.Build strong relationships with business leaders, project managers, and technical teams to ensure security measures and compliance requirements are factored into all technology projects.Oversee security architectural reviews to identify vulnerabilities and control gaps in complex system architectures.Develop and implement strategies to mitigate risks and integrate solutions into the broader security architecture.Ensure compliance with company policies, relevant laws, standards, and frameworks (e.g., PCI, GDPR, NIST, ISO27001).Must HaveMinimum of 8+ years of experience in CybersecurityMinimum of 5+ years leading and managing a technical teamDemonstrated experience in a security program for a large and complex organizationExperience in designing and developing security solutionsStrong leadership skills with the ability to inspire and mentor a team of security professionalsProven ability to collaborate with cross-functional teams and senior business leaders to develop security strategiesProven experience evaluating security architectures for large-scale solutions across a range of technologiesDeep knowledge of cybersecurity frameworks, security tools, and security-related legislation/regulationsStrong understanding of security controls and best practices for cloud platforms (e.g., AWS, Azure, GCP)Working knowledge of security related legislation/regulations with emphasis on PCI and privacyNice To HaveSecurity accreditation (e.g., CISSP, GCIH, CISM, etc.)EducationBachelor's degree in Cyber Security, Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience#DISNEYTECH------------:Who We AreAt Disney, we're storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt's passion was to continuously envision new ways to move audiences around the world-a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences - and we're constantly looking for new ways to enhance and protect these exciting experiences.The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:

• Secure the Magic by protecting information systems and platforms.
• Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.
• Strengthen the business through optimizing execution, application, and technology used to protect the Company.
• Innovate by investing in core capabilities to enhance operational efficiency.What You Will DoWe are hiring a Manager, Information Security to join our Team!The Manager, Information Security, will lead a talented team of Security Solution Architects to design, implement, and manage robust security strategies that protect systems, data, and applications. This managerial role requires expertise in cybersecurity frameworks, cloud security, and risk mitigation, with the added responsibility of mentoring team members, driving security initiatives, and collaborating with stakeholders to ensure that security solutions align with business objectives. The successful candidate will have both technical depth and leadership capabilities, ensuring the team's success while maintaining a high standard of security excellence.Responsibilities
  • Lead and mentor a diverse team of Security Solution Architects, ensuring a high level of performance, growth, and professional development.
  • Oversee the design and development of comprehensive security solutions that meet business and regulatory requirements across a variety of technologies.
  • Collaborate with Technology teams and business stakeholders to ensure security solutions are fully integrated into new and existing infrastructures, applications, and cloud platforms.
  • Drive the development and execution of long-term security strategies, including architecture reviews, mitigation planning, and policy creation.
  • Build strong relationships with business leaders, project managers, and technical teams to ensure security measures and compliance requirements are factored into all technology projects.
  • Oversee security architectural reviews to identify vulnerabilities and control gaps in complex system architectures.
  • Develop and implement strategies to mitigate risks and integrate solutions into the broader security architecture.
  • Ensure compliance with company policies, relevant laws, standards, and frameworks (e.g., PCI, GDPR, NIST, ISO27001).Must Have
    • Minimum of 8+ years of experience in Cybersecurity
    • Minimum of 5+ years leading and managing a technical team
    • Demonstrated experience in a security program for a large and complex organization
    • Experience in designing and developing security solutions
    • Strong leadership skills with the ability to inspire and mentor a team of security professionals
    • Proven ability to collaborate with cross-functional teams and senior business leaders to develop security strategies
    • Proven experience evaluating security architectures for large-scale solutions across a range of technologies
    • Deep knowledge of cybersecurity frameworks, security tools, and security-related legislation/regulations
    • Strong understanding of security controls and best practices for cloud platforms (e.g., AWS, Azure, GCP)
    • Working knowledge of security related legislation/regulations with emphasis on PCI and privacyNice To Have
      • Security accreditation (e.g., CISSP, GCIH, CISM, etc.)
      • Major cloud provider platform certification (e.g. AWS Solution Architect, Google Cloud Engineer, Microsoft Solution Architect, etc.)Education
        • Bachelor's degree in Cyber Security, Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience#DISNEYTECH------------:DISNEYTECHDisability Accommodation for Employment ApplicationsThe Walt Disney Company and its Affiliated Companies are Equal Employment Opportunity employers and welcome all job seekers including individuals with disabilities and veterans with disabilities. If you have a disability and believe you need a reasonable accommodation in order to search for a job opening or apply for a position, visit the Disney candidate disability accommodations FAQs Link opens in new window . We will only respond to those requests that are related to the accessibility of the online application system due to a disability.
          #J-18808-Ljbffr

Keywords: Disneyland Hong Kong, Pine Hills , Manager, Information Security, Executive , Orlando, Florida