About this role
Security Engineer focusing on architecture and engineering to secure Disney's enterprise by designing scalable security architectures, enforcing controls, and aligning with compliant standards.
Key Responsibilities
- Design, develop, and implement secure solutions and reference architectures that align with business objectives, enterprise standards, and evolving threats
- Provide guidance during solution design
- Translate security requirements into scalable controls across systems, applications, and cloud environments
- Execute advanced risk and threat analysis activities
- Create and maintain security architecture artifacts
Technical Overview
Involves cloud security across AWS/Azure/GCP, IAM, AD, Kerberos, NTLM, risk assessment, threat modeling, and compliance with NIST, CIS, and DISA frameworks.
Ideal Candidate
The ideal candidate is a mid-level security architect/engineer with 3+ years' experience securing workloads in cloud environments and designing security controls. Strong understanding of compliance frameworks and threat modeling is essential.
Must-Have Skills
3+ years' experience in Security Architecture & Engineering3+ years' experience securing workloads and services in public cloud environments (e.g.AWSAzureGoogle Cloud Platform)Experience in designing and implementing security controlsincluding information protectionidentity and access managementand networking technologiesProven ability to create conceptuallogicaland physical security architecture diagramsFamiliarity with NIST 800-53NIST 800-30MITRE ATT&CKSTRIDECIS BenchmarksNIST 800-53DISA STIGsKnowledge of KerberosNTLMActive Directory
Nice-to-Have Skills
3+ years of experience in at least 2 domains: Security and Risk ManagementAsset SecurityCommunications and Network SecurityIdentity and Access Management (IAM)Security Assessment and TestingSecurity OperationsSoftware Development Security (including DevSecOps or secure coding practices)Familiarity with TOGAFKnowledge in applying cybersecurity principles in AI implementationsSecurity Certifications: CISSPCCSPAWS Certified Public Cloud ArchitectCISMCRISCCISAMCSE CloudVMWare VCP6 CloudEMCCA cloud computing ArchitectGIAC
Tools & Platforms
Amazon Web ServicesAzureGoogle Cloud PlatformActive DirectoryKerberosNTLM
Required Skills
Security ArchitectureSecurity EngineeringCloud SecurityAWSAmazon Web ServicesAzureGoogle Cloud PlatformIdentity and Access ManagementKerberosNTLMActive DirectoryNIST 800-53NIST 800-30MITRE ATT&CKSTRIDECIS BenchmarksDISA STIGsthreat modelingvulnerability assessmentsrisk assessment
Hard Skills
Security ArchitectureSecurity EngineeringCloud SecurityAWSAmazon Web ServicesAzureGoogle Cloud PlatformIdentity and Access ManagementIAMKerberosNTLMActive DirectoryNIST 800-53NIST 800-30MITRE ATT&CKSTRIDECIS BenchmarksDISA STIGsVulnerability assessmentsThreat modelingRisk assessmentReference architecturesControl frameworks
Soft Skills
CommunicationLeadershipCollaborationProblem-solvingAnalytical thinkingStrategic thinkingPolicy interpretation
Certifications
Preferred
CISSPCCSPAWS Certified Public Cloud ArchitectCISMCRISCCISAMCSE CloudVMware VCP6 CloudEMCCA cloud computing ArchitectGIAC
Keywords for Your Resume
Security EngineerSecurity ArchitectureSecurity Engineeringcloud securityAWSAmazon Web ServicesAzureGoogle Cloud PlatformIdentity and Access ManagementIAMKerberosNTLMActive DirectoryNIST 800-53NIST 800-30MITRE ATT&CKSTRIDECIS BenchmarksDISA STIGsvulnerability assessmentsthreat modelingrisk assessmentreference architecturescontrol frameworksCloud SecurityThreat modeling
Deal Breakers
No cloud security experience, Lack of experience with NIST/MITRE/DISA standards, Lack of Active Directory/ Kerberos knowledge
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile