Welcome to Warner Bros. Discovery… the stuff dreams are made of.

Who We Are…

When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next…

From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.

Your Role Accountabilities:

Expand Product Security Programs: Lead the growth of product security initiatives, focusing on security architecture engagement strategies, scalable threat modeling, and the implementation of a security technical champions program.

Strategic Security Roadmaps: Develop and deliver comprehensive security roadmap plans, ensuring timely and high-quality completion of initiatives.

Security Analysis and Automation: analyze security systems, identify vulnerabilities, and recommend solutions. This includes understanding both security and the specific business context; Oversee scripting, automation, and integration with security tools in consumer products, to further reduce and remediate security risk(s) and vulnerabilities.

Secure Application Development & DevSecOps Integration: Lead the adoption and integration of DevSecOps principles into the product development lifecycle, including continuous integration, continuous delivery, automation, and collaboration. Utilize cloud security best practices and tools to secure products and platforms on AWS, GCP, and Azure through automation and CI/CD pipelines.

Security Standards and Regulatory Compliance: Establish and maintain product security standards, policies, and best practices for product development teams, ensuring compliance with industry regulations and customer expectations (e.g., PCI, GDPR, CCPA, Financial Fraud, etc.).

Security Metrics and Reporting: Develop and implement security metrics and dashboards to measure and report on the security posture and performance of products and platforms.

Thought Leadership: Stay informed about emerging security threats, trends, and technologies. Provide thought leadership and innovative solutions for security practices.

Stakeholder Collaboration: Collaborate with product, engineering, and business stakeholders to identify and prioritize security risks and requirements. Provide guidance on security architecture, design, testing, and remediation.

Relationship Management: Effectively manage relationships by advocating for business and external customers during security-related discussions.

Qualifications & Experiences:

Hybrid Work Environment: Must be based in the Warner Bros. Discovery office for a minimum of three (3) days per week.

Educational Background: Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent work experience.

Experience:  13+ years of experience in Information Security, with at least 5-7 years in Product Security and/or Application Security. Experience in Cloud Security is preferred.

Consumer Behavior Insight: Understanding direct-to-consumer behavior and expectations regarding digital services, with experience balancing security needs with user experience considerations.

Leadership and Project Management: Proven track record of leading and managing security teams and projects in fast-paced, dynamic, and agile environments.

Secure Coding and DevSecOps Initiatives: Experience in implementing and leading DevSecOps initiatives, frameworks, and tools (e.g., Burp Suite, Nmap, Metasploit) used for SCA, SAST, DAST, etc.

Agile Methodologies: Experience with Agile development/Scrum methodologies and incorporating security requirements into the SDLC (CI/CD) with product owners.

Programming and Deployment: Experience in managing programs supporting secure code and software deployments in various languages (Python, Node.js, C#, .NET, JavaScript, Go, Ruby, GraphQL, SDK, and RESTful API design/development).

Threat Modeling: Proficiency in threat modeling techniques and tools such as STRIDE, DREAD, and CVSS. Familiarity with tools like Microsoft Threat Modeling Tool, OWASP Threat Dragon, and/or ThreatModeler to conduct comprehensive threat assessments, identify potential threats, vulnerabilities, and attack vectors, and develop effective mitigation strategies

Technical Expertise and Industry Standards Knowledge: Extensive experience in secure code reviews, business logic assessments, and application security testing. Deep understanding of network, data, and cloud security principles; and Expert knowledge of security principles, standards, and best practices, such as OWASP, NIST, ISO, etc.

Cloud Security Management and Solutions: Experience in deploying cybersecurity solutions in public cloud environments (IaaS, PaaS, SaaS) and securing cloud environments and services on AWS, GCP, and Azure, using automation and CI/CD pipelines. Successfully implemented security measures in AWS, GCP, and Azure environments.

Technical Skills: Advanced technical skills and hands-on experience with security tools and technologies, such as web application firewalls, vulnerability scanners, penetration testing tools, encryption, and authentication.

Communication Skills: Excellent communication and presentation skills, with the ability to effectively communicate with both technical and non-technical audiences.

Industry Experience: Experience in the media and entertainment industry, or with direct-to-consumer products and platforms, is a plus.

Professional Certifications: CISSP, OSCP, GPEN, GIAC/SANS  or other relevant certifications are desired.

How We Get Things Done…

This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/ along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview.

Championing Inclusion at WBD

Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.

If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.

In compliance with local law, we are disclosing the compensation, or a range thereof, for roles in locations where legally required. Actual salaries will vary based on several factors, including but not limited to external market data, internal equity, location, skill set, experience, and/or performance. Base pay is just one component of Warner Bros. Discovery’s total compensation package for employees. Pay Range: $177,170.00 - $329,030.00 salary per year. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Warner Bros. Discovery provides a variety of benefits to employees, including health insurance coverage, an employee wellness program, life and disability insurance, a retirement savings plan, paid holidays and sick time and vacation.

If you’re a qualified candidate with an arrest or conviction record, please know that your application will be considered in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act.