Lead Security Engineer (Project Hire)

Who We Are

We are defenders of the magic, waging an epic battle to safeguard our franchises, protect our people, and ensure the world's most admired entertainment company is not disrupted by cybersecurity threats. The Walt Disney Company is scouring the known talent universe to find security engineers desiring to join our Studios Cyber Team. This position builds and operates systems which provide the stay secure capabilities to our Studio customers. We are partners in protecting Disney's highly respected portfolio including Marvel Studios, Pixar Animation Studios, Lucasfilm, Disney Live Action Films, Walt Disney Animation Studios, Searchlight Pictures, and 20th Century Studios.

To exceed the expectations of our talented, creative partners, we need highly motivated, customer focused professionals who are inspired by finding new ways to deliver world class cybersecurity capabilities. We're looking to build a team of proactive engineers with a self-starter attitude who can be comfortable with little supervision to meet agreed upon deliverables. Taking initiative and providing viable solutions to problems is critical to being a highly effective team member as we help enable the great content engine of our company.

What You Will Do

We Are Hiring! We need a Lead Security Engineer (Project Hire) to join our Team!

*This is an estimated 30-month project hire placement, with no guarantee of permanent placement.

Responsibilities :

• Strengthen our overall security posture by implementing best-practice configurations, improving monitoring, and integrating security tools - all to help our Studio customers stay focused on producing outstanding content.
• Act as a hands-on technical leader who blends deep security expertise with engineering know-how to deliver on our security roadmap.
• Partner closely with our Studio teams and Content Security stakeholders to align roadmaps and onboard new security capabilities across Studio environments.
• Work with various technical teams to design, implement, and mature security technologies and operational processes.
• Identify opportunities to streamline and enhance our security operations, tooling, and incident response processes.
• Support the tuning and optimization of security platforms owned by the Studios Cyber Team, including vulnerability management and endpoint protection solutions.
• Maintain clear documentation of system architectures, automation scripts, and iterative design choices to support scalability and handoffs.
• Conduct technical assessments and advise internal and external partners on new security features or integrations, especially around tools like Qualys/Tenable, CrowdStrike, Splunk, Wiz.IO, and others.
• Participate in regular security reporting to maintain transparency and accountability within the team.
• Provide mentorship and technical guidance to engineers and analysts, ensuring secure design and operational excellence.

Must Have

• Minimum of 7 years in a hands-on technical security role, with a track record of delivering security capabilities and improvements.
• Strong problem-solving mindset, with the ability to develop practical automation solutions.
• Experience with at least one major cloud provider (AWS, Azure, or Google Cloud Platform).
• Familiarity with one or more of the following security tool platforms: CrowdStrike, Qualys, Tenable, Wiz.io, Splunk, Axonius.
• Detail-oriented, able to build solutions to completion, but also comfortable delivering MVPs when required.
• Working knowledge of frameworks and platforms including NIST CSF, CIS Controls, Git/GitHub, SCCM, JAMF, and major OS platforms (Windows, macOS, Linux).
• Familiar with IAM integrations like Active Directory, Okta, Auth0, SAML, and OIDC.
• Broad technical understanding of security technologies such as DLP, MDM/MAM, firewalls, VPNs, endpoint protection, PKI, RBAC, IAM.
• Experience with Jira and familiarity with Scrum or Kanban methodologies.

Nice To Have

• Ability to translate technical cybersecurity concepts into business value and compelling narratives around customer and risk impacts.
• Customer-focused and curious - always looking for innovative ways to advance threat and vulnerability management, monitoring, and incident response.
• Comfortable configuring operating systems, databases, security platforms, and handling system integrations.
• Experience with scripting or programming languages such as Python, PowerShell, C#, and/or VBA.

Education and Certifications

• Bachelor's degree in Computer Science, Engineering, a related field, or equivalent experience.
• Holds (or actively pursuing) relevant security certifications (CISSP, GIAC, Security+, etc.) and/or cloud security certifications (AWS, Azure, Google Cloud Platform, CCSP).

#DISNEYTECH

.

The hiring range for this position in New York, NY and Seattle, WA is $145,400 - $195,000 per year and in Burbank/Glendale, California is $138,900 - $186,200 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate's geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.