Experienced GRC Professional for Disney's Cybersecurity Team - Remote Data Entry Specialist

Join the Magical World of Disney as a Remote Data Entry Specialist

Are you a seasoned GRC (Governance, Risk, and Compliance) professional looking for an exciting opportunity to contribute to the enchanting world of Disney from the comfort of your own home? Do you have a passion for cybersecurity and a keen eye for detail? If so, we have an exceptional opportunity for you to join our team as a Disney Data Entry Specialist.

About Our Cybersecurity Crew

Our Cybersecurity Crew is a team of talented professionals who formulate and implement techniques and recommendations to help the organization align with its business dreams while dealing with risks effectively and meeting industry guidelines and standards. We work on cutting-edge technology and toward new innovations in the area of cybersecurity to ensure the magic of Disney remains secure.

Key Responsibilities

• Third-Party Risk Management (TPRM) Program: Assist in the execution of the Walt Disney Company's global third-party/internal risk method for carrying out cyber risk-related due diligence exams.
• Validate incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement.
• Conduct kick-off sessions with business stakeholders and any related third-party for conducting the TPRM.
• Coordinate the distribution of due diligence questionnaires to internal stakeholders/third-party, review submitted questionnaires for completeness, and determine risks arising from the current design and operational effectiveness of the internal/third-party's security controls.
• File responses, associated findings, and remediation plans in the TWDC systems.
• Draft/review reports for the checks performed and ensure respective business stakeholders finalize reviews.
• Be a strong liaison to ensure any queries are responded to concerning the risk management technique and evaluation to the business or third parties as required.
• Perform continuous tracking of third parties via TWDC systems for current/new findings and track any findings to closure.
• Identify opportunities for improvement within the TWDC systems and strategies.
• Work closely with the Risk Lead/Manager to schedule and execute a range of different assisting activities related to the risk management program.

Governance, Risk, and Compliance

• Lead and help the development of cybersecurity risk and compliance-related strategies to ensure treatment of cybersecurity risk consistent with the company's risk appetite.
• Maintain and document compliance towards information security-associated guidelines and processes through planning, testing, remediating, tracking, and reporting on control reviews and risk assessments.
• Lead development and delivery of compliance and risk education and ongoing communications that assist in fostering a culture of protection and compliance.
• Stay abreast of regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk areas.
• Lead the efforts to maintain and support ISO 27001 standard.

Essential Qualifications and Skills

To be successful in this role, you will need:

• Outstanding stakeholder management skills.
• A working understanding of information security-related best practices and standards, including ISO 2700x, SOC 2 requirements, SSAE 16/18 standards, and more.
• Experience in the management of risk, controls, and compliance.
• Knowledge of risk assessment methodologies - qualitative/quantitative.
• Super analytical and problem-solving abilities.
• Super presentation making and delivery abilities.

Personal Attributes

• Robust interpersonal skills.
• Ability to navigate a rapid-paced environment and be flexible with working hours.
• Excellent communication skills, both verbal and written.
• Adapt quickly to changing conditions and power positive change.

Preferred Training and Experience

• A relevant Bachelor's/Master's degree from an accredited university or equivalent experience.
• A minimum of 4 years of experience throughout third-party risk management, information security, and audit & compliance tracking (minimum of 2-3 years in TPRM/internal audit).
• Preferred experience with a large company and/or Big Four accounting firm.
• One or more credentials - CISA, CRISC, ISO27001 L/LI, CISSP.
• Experience in AI/ML is a plus.

What We Offer

As a Disney Data Entry Specialist, you will have the opportunity to work with a talented team of professionals who are passionate about cybersecurity and committed to protecting the Disney brand. You will enjoy a competitive salary of $80,000 per year, as well as a range of benefits and perks, including:

• A flexible remote work arrangement that allows you to work from the comfort of your own home.
• Opportunities for career growth and professional development.
• A dynamic and supportive work environment that encourages collaboration and innovation.
• Access to cutting-edge technology and tools.
• A range of wellness programs and employee benefits.

Why Work with Disney?

At Disney, we are passionate about creating a magical experience for our guests and employees alike. As a Disney Data Entry Specialist, you will be part of a team that is dedicated to protecting the Disney brand and ensuring the security of our systems and data. You will have the opportunity to work on exciting projects, collaborate with talented professionals, and develop your skills and expertise in a dynamic and supportive environment.

How to Apply

If you are a motivated and experienced GRC professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your application, including your resume and a cover letter, to be considered for this role.

To prepare for your application, here are some tips for answering common interview questions:

• Tell me about yourself: Provide a brief summary of your professional heritage, capabilities, and experiences. Focus on relevant information and your enthusiasm for the role.
• Why do you want to work for this organization? Discuss the company's values, mission, or reputation that align with your career goals. Mention specific aspects of the company that attracted you.
• What's your greatest strength? Highlight a relevant strength, such as problem-solving, leadership, or a technical skill. Support your answer with an example.
• What's your greatest weakness? Discuss a weakness, but emphasize how you're working to improve it.

We look forward to receiving your application and discussing this opportunity further.

Apply Now!

For more job openings, please visit our job board.