Job Summary:

At Disney, we’re storytellers. We make the impossible possible. The Walt Disney Company (TWDC) is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.

The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.

The Global Information Security (GIS) organization strives to secure the magic by employing best-in-class services to assess, prevent, detect, and respond to cyber threats that present risk to The Walt Disney Company. We enable the business by integrating enterprise and business segment-specific supported services to create a robust, efficient, and adaptable cybersecurity program. Our key objectives are to:

Secure the Magic by protecting information systems and platforms.Reduce Risk by proactively assessing, preventing, and detecting to prevent harm to the Company and our Guests.Strengthen the business through optimizing execution, application, and technology used to protect the Company.Innovate by investing in core capabilities to enhance operational efficiency.

Work within the Security Engineering DevOps team that is responsible for protecting the network and company assets from any security threats or attacks through the development of security automation capabilities. This team designs, develops and implements security automation tools and sites to help our customers focus on areas of risk. This role involves taking ownership of technical projects, collaborating with team members, and contributing to security automation initiatives.

Responsibilities:

Architect and implement code deployment pipelines using GitLab or similar CI/CD processesDesign and optimize security tool deployments, introducing scalable processes across Cyber Security capabilitiesCollaborate effectively with cross-functional teams and contribute to Information Security team efforts across the broad spectrum of information security programsDesign, develop, and implement reliable platforms needed to host Applications with security requirementsBuild, maintain, and improve runbooks for application support and incident response proceduresDesign and implement monitoring solutions for all aspects of applications, including alerting capabilitiesCommunicate effectively with stakeholders and contribute to technical decision-makingTake ownership of security automation projects and contribute to team initiativesResearch and evaluate new technologies and security tools to enhance team capabilitiesMay perform other duties and responsibilities necessary to support and protect the business

Basic Qualifications:

Minimum of 3+ years experience with scripting languages (Python, Bash, PowerShell) for automationProficient with Infrastructure as Code tools (Terraform, CloudFormation, ARM templates) managing multi-environment deploymentsExperience with containerization and orchestration technologies (Docker, Kubernetes)Hands-on experience with CI/CD pipeline development and automated deployment processesKnowledge of configuration management and monitoring toolsExperience with at least one major cloud platform (AWS, Azure, or GCP)Strong troubleshooting skills in distributed systems and production environmentsExcellent communication and collaboration skills with ability to work independently 

Preferred Qualifications:

Strong expertise in major cloud platforms (AWS, Azure, GCP) with cloud architecture experienceAdvanced Terraform proficiency for complex, multi-environment infrastructure managementStrong Python development skills with experience in YAML/JSON and backend systemsExperience designing enterprise CI/CD pipelines using Jenkins, GitLab CI, GitHub Actions, or similar toolsExperience integrating security scanning tools and vulnerability management platforms into pipelinesProficiency with monitoring and observability stack (Prometheus, Grafana, ELK/EFK, Datadog)Understanding of network security concepts and implementation

Education:

Bachelor's degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience

The hiring range for this position in Seattle, WA is $109,500 to $146,800 per year and in Burbank, CA is $104,600 to $140,200 per year based on a 40 hour work week. The amount of hours scheduled per week may vary based on business needs. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.