Protective Security Officer supporting information security and physical security processes at Telia. Collaborating with clients and team members for effective security management.
TC
Hybrid Security Engineer – Security Architecture, Engineering
Posted 11 hours ago
About the role
- Security Engineer designing and implementing secure architecture solutions for Disney's global technology ecosystem. Collaborating with teams to assess threats and secure AI/ML implementations and technologies.
Responsibilities
- Design and drive secure architecture solutions that protect Disney’s global technology ecosystem, developing reference architectures and patterns that scale across applications, cloud platforms, and enterprise services
- Lead and influence secure design decisions by partnering with engineers, architects, and business stakeholders to embed security early in the solution lifecycle using secure-by-design and secure-by-default principles
- Evaluate emerging cybersecurity technologies through Disney’s Security Solution Review Process, conducting deep technical assessments and shaping enterprise adoption strategies for next-generation capabilities
- Assess and secure AI/ML implementations across the enterprise, performing risk-based evaluations to identify threats such as model manipulation, data leakage, and adversarial attacks, and recommending practical mitigation strategies
- Conduct advanced threat modeling and architecture risk assessments, leveraging internal incident data and external threat intelligence to proactively identify gaps and strengthen enterprise defenses
- Identify capability gaps in existing security architectures and design forward-looking solutions that address evolving threats, including Zero Trust Architecture, cloud-native security, and distributed system protection
- Develop and maintain enterprise security configuration standards, establishing secure baselines that enable consistent, scalable protection across infrastructure, platforms, and applications
- Translate complex cybersecurity risks into clear, actionable guidance, enabling business and engineering teams to make informed, risk-based decisions that balance security, usability, and speed
- Lead or contribute to high-impact security initiatives and strategic projects that reduce enterprise risk, improve security maturity, and enable innovation across Disney’s diverse business segments
- Create and evolve reusable security artifacts such as reference architectures, control frameworks, and engineering patterns that drive consistency and efficiency across the organization
- Collaborate across enterprise teams to track, prioritize, and remediate risks, ensuring alignment between security strategy, engineering execution, and business objectives
- Support governance and compliance efforts by aligning solutions to industry frameworks (e.g., NIST, CIS, ISO 27001) while maintaining a strong focus on practical, risk-based implementation
- Document and communicate security decisions, designs, and outcomes to enable transparency, auditability, and knowledge sharing across the enterprise.
Requirements
- 3+ years of experience in Security Architecture & Engineering, with demonstrated ability to design and evaluate secure solutions in complex enterprise environments
- 3+ years of experience securing workloads and services in public cloud environments (e.g., AWS, Azure, Google Cloud Platform), including implementing native cloud security controls, identity and access management, and secure configuration of cloud services
- Experience securing modern cloud-native architectures, including containers, serverless technologies, and infrastructure-as-code (IaC) environments
- Proven ability to create conceptual, logical, and physical security architecture designs, with a strong understanding of system vulnerabilities, attack paths, and effective countermeasures
- Experience designing and implementing security controls, including those for information protection, identity and access management (e.g., Kerberos, NTLM, Active Directory), and networking technologies (e.g., routing, switching, SDN, segmentation)
- Strong working knowledge of risk analysis methodologies, with the ability to assess risk and design compensating controls in complex, distributed environments
- Experience applying threat modeling techniques (e.g., STRIDE, MITRE ATT&CK) to identify risks and inform secure architectural decisions
- Experience integrating security into the software development lifecycle (SDLC), including CI/CD pipelines and secure-by-design practices
- Familiarity with leading cybersecurity frameworks and methodologies, such as NIST 800-53, NIST 800-30, MITRE ATT&CK, STRIDE, and relevant regulatory or compliance programs (e.g., SOX, HIPAA, PCI DSS)
- Ability to make risk-based architectural decisions, balancing security, business requirements, cost, and operational constraints
- Strong communication skills, with the ability to translate complex security risks into clear, actionable guidance for both technical and non-technical stakeholders
- Exposure to emerging technologies and security challenges, such as AI/ML systems, Zero Trust Architecture, and evolving cloud security paradigms.
Benefits
- A bonus and/or long-term incentive units may be provided as part of the compensation package
- Full range of medical, financial, and/or other benefits
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Application Security Lead at Mastercard enhancing application security and collaborating with development teams. Leading initiatives, guiding secure coding practices, and fortifying cybersecurity posture.
Senior Cloud Security Architect for Texas state government project. Designing secure cloud architectures and integrating security in DevSecOps pipelines.
Linux Network Security Engineer at Booz Allen Hamilton architecting and deploying Endace packet capture systems across a distributed enterprise. Integrating with analytics ecosystems and ensuring optimal performance.
Product Manager responsible for managing Microsoft Security Services portfolio at Softchoice. Engaging with customers, Microsoft and stakeholders to drive market success and growth.
Information System Security Officer detecting and documenting security configurations for government solutions. Collaborating with teams to provide secure and effective solutions against advanced cyber threats.
IT Infrastructure and Security Administrator overseeing management and maintenance of IT systems at Avive Solutions. Focused on user devices, networks, and authentication systems.
Systems Administrator managing IT support and compliance activities in a tech - oriented company. Leading infrastructure design and security measures while collaborating with managed service providers.
Cyber Security Expert supporting project teams with structured risk assessments and compliance documentation at Nordex wind farms. Collaborating closely with Information Security to ensure secure operations.
OT Cybersecurity Engineer enhancing cybersecurity in industrial environments. Ensuring compliance with cybersecurity standards and collaborating across engineering, IT, and product teams.