Staff Content Security Engineer

Staff Content Security Engineer at The Walt Disney Company

The Walt Disney Studios Content Security organization is chartered with the securing and protection of all creative content throughout the production lifecycle. We do this by relying on deep technical expertise, strong and authentic partnerships and leveraging knowledge and best practices of the world of cybersecurity, technology and production. The Content Security organization is a part of the broader Studio Technology organization, reporting into the Studio’s Chief Technology Officer (CTO).

This role, Staff Content Security Engineer, reports into Director, Content Security Engineering and is a Monday to Thursday in the office in-person role based in Glendale, CA. Fridays are remote.

This Engineer will be part of a strong technical consulting team of seasoned Engineers. This role is best suited for someone who is a curious and driven professional, excited to grow in the intersection of technology and entertainment. The successful candidate is someone who brings a strong understanding in security and cloud infrastructure and a passion for working alongside creative technologists. In this role, they will have the opportunity to learn, contribute to meaningful assessment and protection efforts, assist in identifying for opportunities to automate and assess AI tools, and help safeguard Disney’s content.

Responsibilities

• Demonstrate subject matter expertise of the design and security integration of complex systems across platforms and cloud-native tools.
• Serve as a key technical partner for high-risk or high-visibility assessments across AppSec, CloudSec, and media infrastructure.
• Advocate and advise secure workflows that enable remote editing, cloud post-production, and real-time asset delivery.
• Drive technical testing efforts for custom or vendor-supplied tooling, APIs, and third-party integrations.
• Define and standardize repeatable security patterns, reusable controls, and hardening baselines used across assessments and vendor engagements.
• Mentor engineers across levels and domains to improve security acumen and solution delivery.
• Contribute to threat modeling, framework development, and control selection for Studio-wide initiatives.
• Stay ahead of new technologies, emerging attack techniques, and cloud security trends relevant to creative pipelines.
• Research and grow knowledge in AI technology and security implications.

Required Qualifications

• 7+ years of experience in cybersecurity, software engineering, or infrastructure roles with architecture design and assessment experience.
• Demonstrated ability to drive security improvements across multiple teams and disciplines.
• Comfortable translating threat models, abuse cases, and technical risk into clear recommendations and architectural input.
• Strong communication and collaboration skills.
• Passion for innovation, and the curiosity to dive deep into new tools, workflows, or risks, particularly in content creation and generative AI.

Desired Qualifications

• Entertainment/media industry experience preferred.
• CISSP, CISM, or equivalent security certifications preferred.
• Demonstrate thorough knowledge of feature film production and post-production industries, services, and workflows (e.g., DI, editing, visual/audio effects, encoding, on-set support).
• Understand the security considerations of systems that leverage AI/ML, including generative AI.
• Experience working with or assessing media specific systems and content protection solutions (DRM, watermarking, encryption, streaming protocols, etc.).

Job Related Education

Bachelor's degree in computer science, Information Systems, IT Engineering, or equivalent work experience. Certifications are not required, but any of the following would be considered a plus: AWS, CCNP, CISSP, CISM, CISA, GIAC, CEH, ITIL, VCP, VCAP.

Key skills/competency

• Cybersecurity Architecture
• Cloud Security (CloudSec)
• Application Security (AppSec)
• Content Protection
• Threat Modeling
• Media Infrastructure
• AI Security
• Secure Workflows
• System Integration
• Risk Assessment