Job Posting Title:

Senior Security Analyst

Req ID:

10097569

Job Description:

JOB SUMMARY:

The Senior Security Analyst will execute information security control assessments for compliance programs. They will coordinate with stakeholders to confirm scope, conduct assessments, and report findings.

Key duties include supporting Third-Party Risk Management by assessing third-party vendors across Disney business units and improving assessment processes. The role also supports other compliance programs like Sarbanes-Oxley, ISO27001, and PCI DSS.

KEY RESPONSIBILITIES:

Support the Third-Party Risk Management Function:

• Execute third-party due diligence assessments.
• Manage assessment activities with internal business stakeholders and vendors.
• Provide ongoing KPIs.
• Create and maintain documentation related to the planning, execution, reporting of assessments, correspondence, findings, and remediation plans in TWDC systems.

Assist with various enterprise-wide information security compliance efforts, including but not limited to:

• Evaluate internal control design and operating effectiveness testing.
• Review Service Organization Controls (SOC) report for key vendors.
• Support ISO27001 / K-ISMS via risk assessment and consulting with control/process owners on remediation and monitoring.
• Support PCI DSS through annual QSA audit management.
• Perform ad-hoc customized control risk assessments to analyze information security and compliance risks. Collaborate with various process/control owners to plan, execute, and report assessment results, including documentation and monitoring of treatment and mitigation measures.

Job Posting Segment:

Corporate Global Information Security

Job Posting Primary Business:

Network - Global Information Security

Primary Job Posting Category:

Security Governance

Employment Type:

Full time

Primary City, State, Region, Postal Code:

Mumbai, India

Alternate City, State, Region, Postal Code:

Date Posted:

2024-08-13