Experienced GRC Professional for Disney's Cybersecurity Team - Remote Data Entry Specialist

Join the Magical World of Disney as a Remote Data Entry Specialist

Are you a seasoned GRC (Governance, Risk, and Compliance) professional looking for an exciting opportunity to contribute to the enchanting world of Disney from the comfort of your own home? Do you have a passion for cybersecurity and a keen eye for detail? If so, we have an extraordinary opportunity for you to join our team as a Disney Data Entry Specialist.

About Our Cybersecurity Crew

Our Cybersecurity Team is a dynamic group of green cybersecurity specialists who formulate and implement techniques and recommendations to help the organization align with its business dreams while dealing with dangers correctly and meeting industry guidelines and standards. We work on cutting-edge technology and toward new innovations in the area of cybersecurity to ensure the magic of Disney remains secure.

Key Responsibilities

• Assist in the management of the Walt Disney Organization's (TWDC) Global Third-Party/Internal Risk Method for carrying out cyber danger-related due diligence exams.
• Validate incoming third-party/internal risk assessment requests, working with business stakeholders to confirm the details of the request and the scope of the engagement.
• Conduct kick-off sessions with business stakeholders and any related third-party for conducting the Third-Party Assessment (TPA).
• Coordinate the distribution of due diligence questionnaires to internal stakeholders/third-party, review submitted questionnaires for completeness, and determine dangers springing up from the contemporary design and operational effectiveness of the internal/third-party's security controls.
• File responses, associated findings, and remediation plans in the TWDC systems.
• Draft/review reviews for the checks performed and ensure respective business stakeholders finalize critiques.
• Be a strong liaison to ensure any queries are responded to concerning the risk control technique and evaluation to the business or third parties as required.
• Perform continuous tracking of third parties via TWDC systems for current/new findings and track any findings to closure.
• Identify opportunities for improvement inside the TWDC systems and strategies.
• Work intently with the Risk Lead/Manager to schedule and execute a range of different assisting activities related to the risk management program.

Governance, Risk, and Compliance

• Lead and help the development of cybersecurity risk and compliance-related strategies to ensure treatment of cybersecurity risk consistent with the agency's risk appetite.
• Maintain and document compliance towards information safety-associated guidelines and processes through planning, checking out, remediating, tracking, and reporting on control reviews and risk checks.
• Lead development and shipping of compliance and risk education and ongoing communications that assist in powering a tradition of protection and compliance.
• Retain abreast of regulatory changes, new guidelines, technology, and internal policy modifications to further identify new key risk regions.
• Lead the sports to preserve and guide ISO 27001 standard.

Essential Qualifications and Skills

To succeed in this role, you will need:

• Outstanding stakeholder management skills.
• A working understanding of information security-related best practices and requirements, including ISO 2700x, SOC 2 requirements, SSAE 16/18 standards, and many others.
• Experience in the management of risk, controls, and compliance.
• Expertise in risk assessment methodologies - qualitative/quantitative.
• Super analytical and problem-solving abilities.
• Super presentation making and delivery abilities.

Personal Attributes

• Robust interpersonal abilities.
• Ability to navigate a rapid-paced environment and be flexible with working hours.
• Fantastic communication abilities, both verbal and written.
• Adapt quickly to changing conditions and power high-quality change.

Preferred Training and Experience

To be considered for this role, you will ideally have:

• An applicable Bachelor's/Master's diploma from an accepted university or equivalent experience.
• A minimum of 4 years of experience throughout third-party risk control, records security, and audit & compliance tracking (minimum of 2-3 years in TPRM/Internal Audit).
• Preferred experience working with a massive company and/or large four accounting company.
• One or more credentials - CISA, CRISC, ISO27001 L. /LI, CISSP.
• Experience in AI/ML is a plus.

What We Offer

As a Disney Data Entry Specialist, you will be part of a dynamic team that is passionate about cybersecurity and committed to protecting the magic of Disney. You will have the opportunity to work on cutting-edge technology and contribute to the development of innovative cybersecurity solutions. We offer a competitive salary of $80,000 per year, as well as a range of benefits and perks that are designed to support your well-being and career growth.

Our company culture is built on a foundation of teamwork, collaboration, and mutual respect. We value diversity and inclusion, and we strive to create a work environment that is inclusive and supportive of all employees. As a remote worker, you will have the flexibility to work from the comfort of your own home, while still being connected to our team and contributing to our mission.

Career Growth Opportunities

As a Disney Data Entry Specialist, you will have opportunities for career growth and professional development. You will be able to develop your skills and expertise in cybersecurity, and you will have the opportunity to take on new challenges and responsibilities as you progress in your career. Our company is committed to supporting the career goals of our employees, and we offer a range of training and development programs to help you achieve your aspirations.

How to Apply

If you are a motivated and experienced GRC professional looking for a new challenge, we encourage you to apply for this exciting opportunity. Please submit your application, including your resume and a cover letter, to be considered for this role.

We can't wait to hear from you and discuss this opportunity further!