Build Your Career in Cybersecurity -
YOUR WAY

Who We Are

​

At Disney, we’re storytellers. We make the impossible, possible. The Walt Disney Company is a world-class entertainment and technological leader. Walt’s passion was to continuously envision new ways to move audiences around the world—a passion that remains our touchstone in an enterprise that stretches from theme parks, resorts and a cruise line to sports, news, movies and a variety of other businesses. Uniting each endeavor is a commitment to creating and delivering unforgettable experiences — and we’re constantly looking for new ways to enhance these exciting experiences.

​

The Enterprise Technology mission is to deliver technology solutions that align to business strategies while enabling enterprise efficiency and promoting cross-company collaborative innovation. Our group drives competitive advantage by enhancing our consumer experiences, enabling business growth, and advancing operational excellence.

​

The Global Information Security (GIS) group provides services to protect the value and use of Disney’s information through collaboration, standardization, enforcement, and education across The Walt Disney Company. The main focus areas of this group are:

​

• Reduce the risk of both accidental and malicious data disclosure
• Identify, monitor, engage with complete inventory of information
• Establish appropriate policies and procedures to be followed
• Educate user community to minimize risk

​

Team Description

​

The GIS Red Team performs real world threat emulation with the continual goals of improving organizational readiness, providing advanced simulation for defensive teams, and assessing current control performance for critical TWDC assets. The goal of the Red Team is to continually drive prioritized improvements across TWDC enhancing the cyber security posture of the organization as well as that provide the most accurate insight into the effectiveness of cyber security controls intended to protect TWDC’s most valuable assets.

• Red Team Operations: Participate in all phases of RTO execution life cycle: (recon, initial access, lateral movement/privilege escalation, scenario objective, exfiltration).
• Offensive Security Tools & Techniques: Leverage a variety of offensive security tools, including but not limited to Metasploit, Cobalt Strike, and custom scripts.
• Documentation & Reporting: Create and maintain documentation of attack methodologies, findings, and vulnerabilities identified during operations.
• Continuous Improvement: Participate in post-engagement reviews to identify lessons learned, contribute to refining attack techniques and defensive strategies, and stay up to date with emerging threats, tools, and attack methodologies to enhance the team’s capabilities.

Must Have

• 5+ years of experience in a Red Team/Penetration Testing activities
• Experience with web application and network penetration testing
• Experience working with assessments tools/frameworks like Burp, Nessus, Metasploit, Mimikatz, and Cobalt Strike
• Experience customizing/developing in-house scripts and tooling
• Experience working with scripting and development languages like Bash, Powershell, Python, Perl, Ruby, PHP, C/C++, C#, and Java
• In-depth knowledge of operating systems (Unix/Linux, Windows, and Mac)
• In-depth knowledge of networking protocols and systems administration
• One or more of the following certifications:
• OSCP – Offensive Security Certified Professional
• GPEN – GIAC Penetration Tester
• GIAC – GIAC Web Application Penetration Tester

​

Education

• Bachelor’s degree in Computer Science, Information Systems, Software, Electrical or Electronics Engineering, or comparable field of study, and/or equivalent work experience

We Are Hiring! We need a Senior Security Engineer, Red Team Operations to join out Team!

​

#DISNEYTECH

​

The hiring range for this position in Burbank, California is $126,400.00-$169,500.00 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate’s geographic region, job-related knowledge, skills, and experience among other factors. A bonus and/or long-term incentive units may be provided as part of the compensation package, in addition to the full range of medical, financial, and/or other benefits, dependent on the level and position offered.

We are seeking a dedicated and vigilant Cybersecurity Analyst to join our dynamic team. In this crucial role, you will be the frontline of defense, ensuring the integrity, confidentiality, and availability of our client's digital assets. Your expertise in identifying, evaluating, and mitigating cyber threats will play a pivotal part in safeguarding our client organization's information systems and networks. Join us in our mission supporting our prestigious client to create and maintain a secure digital environment where innovation and service can thrive without interruption.

• Develop plans to safeguard computer files against accidental or unauthorized modification, destruction, or disclosure and to meet emergency data processing needs.
• Monitor current reports of computer viruses to determine when to update virus protection systems.
• Encrypt data transmissions and erect firewalls to conceal confidential information as it is being transmitted and to keep out tainted digital transfers.
• Perform risk assessments and execute tests of IT system to ensure functioning of data processing activities and security measures.
• Modify computer security files to incorporate new software, correct errors, or change individual access status.
• Implement comprehensive cybersecurity policies and procedures.
• Participate in vulnerability assessments and penetration testing to identify security weaknesses.
• Collaborate with IT teams to ensure appropriate security controls are integrated into technological environments.
• Stay current on cyber threats and security best practices.
• Assist with incident response activities and security breach investigations.
• Assist with providing cybersecurity awareness training for employees across the organization.
• Assist with the implementation of security technologies such as firewalls, anti-virus software, and intrusion detection systems.
• Monitor security access and control systems to prevent unauthorized access, modifications, or destruction.
• Work with the Cybersecurity Advisor to assist with compliance with relevant laws and regulations.
• Assist with data protection, privacy, and IT risk management.
• Other duties as assigned Qualifications

Required Qualifications:

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field
• Minimum of 2 years of experience in cybersecurity roles such as security analyst, security engineer, or similar
• Knowledge of current cybersecurity threats, attack techniques, and landscape
• Familiarity with incident response procedures and forensics
• Understanding of network architecture and data communication protocols
• Excellent analytical and problem-solving skills
• Strong communication and interpersonal abilities
• Ability to work in a fast-paced, ever-changing environment
• Detail-oriented with a proactive approach to threat detection and mitigation
• Track record of providing exemplary customer service.
• U.S. Citizen (required by contract)
• Able to obtain and maintain a security clearance
• Must be able to obtain and maintain CompTia Security + Certification
• Able to work onsite in Annapolis, MD

​

Preferred Qualifications:

• NA

Job Type: Full-time

Benefits:

• Profit Sharing Plan
• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance
• Health Savings Account (for eligible health plan)
• Norton LifeLock Identity Protection Benefit
• Employee Assistance Plan Eligible for annual performance bonuses, spot bonuses and referral bonuses, consistent with policy

​

The wage range for this role factors the wide range of issues that are considered in making compensation decisions including but not limited to training, experience, certifications, licenses, and other organizational and business needs. At Coleman, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $88,804 - $114,207.

​

You may also be eligible to participate in a Coleman discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

​

The Coleman Group, Inc. is an equal opportunity employer and will not discriminate against any applicant for employment based on race, color, religion, national origin, gender, gender identity or expression, sexual orientation, disability or veteran status, political affiliation, or on any other basis prohibited by law.

​

E-Verify employer.

​

Reasonable accommodations are available to persons with disabilities during application and/or interview processes per the Americans with Disabilities Act. For accommodation requests or assistance with this form, contact The Coleman Group HR department.

Job Description

We’re looking for a Senior Technical Program Manager, Cybersecurity to join Procore’s Product & Technology Team. Procore software solutions aim to improve the lives of everyone in construction and the people within Product & Technology are the driving force behind our innovative, top-rated global platform. We’re a customer-centric group that encompasses engineering, product, product design and data, security and business systems.

​

In this role, you will drive the successful delivery of complex, cross-functional initiatives, ensuring enterprise-wide adoption of key information security solutions. You will manage program communications, including documentation, milestones, risks, timelines, and facilitate cross-functional collaboration. This role is located in Austin, TX.

​

About Us

Procore Technologies is building the software that builds the world. We provide cloud-based construction management software that helps clients more efficiently build skyscrapers, hospitals, retail centers, airports, housing complexes, and more. At Procore, we have worked hard to create and maintain a culture where you can own your work and are encouraged and given resources to try new ideas. Check us out on Glassdoor to see what others are saying about working at Procore.

​

We are an equal-opportunity employer and welcome builders of all backgrounds. We thrive in a diverse, dynamic, and inclusive environment. We do not tolerate discrimination against candidates or employees on the basis of gender, sex, national origin, civil status, family status, sexual orientation, religion, age, disability, race, traveler community, status as a protected veteran or any other classification protected by law.

​

If you'd like to stay in touch and be the first to hear about new roles at Procore, join our Talent Community.

• Drive continuous process improvement and collaborate with cross-functional teams to implement cybersecurity solutions across the enterprise.
• Manage multiple tracks of work to achieve program goals, overseeing dependencies and risks, and regularly communicate status to stakeholders.
• Partner with key stakeholders to align program objectives with the Cybersecurity strategy and implement mechanisms to measure program success.
• Coordinate teams to deliver on cybersecurity programs, driving the execution of initiatives to meet program goals.
• Lead all program activities, conduct quality reviews, manage risk mitigation and change control processes, and clearly communicate status to leadership and cross-functional stakeholders.
• Act as the communications hub for our teams, representing them in Program Management Group meetings, and driving collaboration and alignment with company objectives through internal and cross-team meetings.
• Provide clear and articulate executive-level reporting on program status, risks, and outcomes.

Required Qualifications:

• 5+ years experience managing enterprise-wide technology programs (e.g., software development, security implementations).
• Proven success in driving complex, cross-functional initiatives, including the ability to negotiate and create plans, secure commitments on deliverables, closely coordinate dependencies, and resolve blocking issues.
• Expertise in driving, tracking, and reporting on the adoption of key cybersecurity initiatives within an organization.
• Strong problem-solving skills, with the ability to lead through ambiguity and deliver incremental value to customers.
• Excellent communication and presentation skills.
• Familiarity with cybersecurity domains and knowledge of security fundamentals.
• Ability to effectively collaborate with cross-functional teams and build trusted relationships.
• Degree in Computer Science, Computer Engineering, or a related technical discipline, or equivalent work experience.

Base Pay Range $140,960 - $193,820. Eligible for Bonus Incentive Compensation. Procore is committed to offering competitive, fair, and commensurate compensation, and has provided an estimated pay range for this role. Actual compensation will be based on a candidate’s job-related skills, experience, education or training, and location.

​

Perks & Benefits

At Procore, we invest in our employees and provide a full range of benefits and perks to help you grow and thrive. From generous paid time off and healthcare coverage to career enrichment and development programs, learn more details about what we offer and how we empower you to be your best.

​

For Los Angeles County (unincorporated) Candidates:

Procore will consider for employment all qualified applicants, including those with arrest or conviction records, in accordance with the requirements of applicable federal, state, and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act.

​

A criminal history may have a direct, adverse, and negative relationship on the following job duties, potentially resulting in the withdrawal of the conditional offer of employment: 1. appropriately managing, accessing, and handling confidential information including proprietary and trade secret information, as well as accessing Procore's information technology systems and platforms; 2. interacting with and occasionally having unsupervised contact with internal/external customers, stakeholders, and/or colleagues; and 3. exercising sound judgment.

​

Alternative methods of applying for employment are available to individuals unable to submit an application through this site because of a disability. Contact our benefits team here to discuss reasonable accommodations.