- Research, innovate, and design cloud first security solutions.
- Identify opportunities to reduce cloud security risk for WBD and lead the team in implementation of those solutions.
- Collaborate with senior management and department leaders to assess near- and long-term cloud security needs and report on progress of vulnerability remediation.
- Lead partnerships with external DevOps and SRE teams to consult on secure cloud development practices and develop artifacts to help them integrate cloud security automation into their pipelines.
- Create, maintain, and present documentation as it relates to cloud security operation's designs/configurations, processes, standards, and recommendations.
- Provide guidance for security remediation to business and IT partners by demonstrating real, practical risk and value.
- Maintain an awareness of cloud-costs and the cost implications of the security controls implemented.
- Interface with Public Cloud providers to improve the security feature set of their products.
- Interface with cloud security vendors to evaluate features and determine proof-of-value.
- Staying current with the latest cloud threat mitigation tools and techniques.
- Ability to work a hybrid model (3 days onsite) out of our Atlanta, DC, or Silver Spring office
- Bachelor's or master's degree in computer science, Information Security, or related field. required.
- 10+ years of experience in the Information Security space.
- 4+ years of experience directly leading technical teams in an Agile environment.
- 2+ years of experience in threat assessment and reporting security posture to leadership.
- Strong understanding of cloud-based infrastructure components with specific understanding of security risks presented in decentralized and hybrid environments.
- Comfortable automating processes start to finish and can work closely with internal architecture and external product teams.
- Demonstrated knowledge of OWASP and SANS testing methodologies
- Superior analytical and problem-solving skills.
- Excellent written and verbal communication skills; strong attention to detail.
- Strong executive reporting and narrative based presentation skills.
- Hands-on experience with some of the following:
- Docker and Kubernetes
- Developing & securing Serverless applications
- Security administration in AWS/GCP/Azure
- CI/CD and DevOps Tooling (Git, Jenkins, CircleCI)
- Infrastructure as Code tools (CloudFormation, Terraform)
- Command Line experience (Bash, Powershell, AWS-CLI)
- Cloud native security related tools (AWS Guard Duty, AWS WAF, GCP Security Center)
- Cloud Network (VPC) engineering
- Remains productive while rapidly switching context.
- Thirst for knowledge and constantly driven to stay current with evolving threat landscapes.
- Certifications in related areas (e.g. SANS GPEN/GWAPT/GXPN, OSCP, CEH) are a plus
- AWS Certifications - AWS Solutions Architect (Associate), AWS Security Specialty
- GCP Certifications - Associate Cloud Engineer, Professional Security Engineer
- Security Engineer Certifications - CISSP, CompTIA Security+
- Proficient in at least one scripting language (Python, Nodejs, Golang)
- Core understanding of IP Networking, routing, VPNs.
- Some visualization tool knowledge (i.e. Tableau, Power BI)
- Familiarity with tools such as Wiz, Qualys, Splunk, AlertLogic, Burp, nmap, Metasploit, etc.
-
Senior Security Engineer
2 weeks ago
3M Consultancy washington, United StatesThis is a remote position. · Job Title: Senior Security Engineer. · Location: Washington, DC (Remote) · Duration: Full-Time. · Role Specific Duties: · Provide network IDS monitoring, cyber threat intelligence, security log analysis and forensics, and web application security ...
-
Security Engineering Manager, Investigations
2 days ago
Meta Washington, United StatesAre you interested in solving complex problems that lead to safer experiences for people using Meta's family of apps? Do you have an adversarial mindset and are excited about investigating and analyzing potential threats? Come join us at Meta Meta is seeking a security engineerin ...
-
IT Security Engineer
3 weeks ago
Crimson Enterprises Arden on the Severn, United StatesWith more than 1,500 stores in 19 European countries, C&A is one of the leading fashion companies in Europe. C&A welcomes over two million visitors daily to its stores and offers high-quality fashion at affordable prices for the whole family. We embrace the digital transformation ...
-
Security Engineer
3 weeks ago
NovaWorks Solutions Germantown, United StatesWe want to make a difference - are you with us? We ensure that over 80 million people in Germany can benefit from digital healthcare. Join us in shaping the healthcare system of tomorrow. · Your work area · DEMIS is the digital platform for Germany and the healthcare sector, prov ...
-
Calloway & Associates, Inc. Washington, United StatesCONGRESSIONAL BUDGET OFFICE · Security Operations Engineering Pre-solicitation: · Scope of work: · - _Ensure compliance with security policies, develop and update IT security documentation, provide related status_ _reports, briefings, schedules, and project plans in written form. ...
-
Application Security Engineer
5 days ago
EagleBank Silver Spring, United StatesOverview: · We are a values driven organization putting · Relationships FIRST . EagleBank is focused on being · Flexible, Involved, Responsive, Strong , and · Trusted . By prioritizing meaningful connections with our customers, employees, and shareholders, we relentlessly deli ...
-
Application Security Engineer
2 weeks ago
TEKsystems Silver Spring, MD, United StatesDescription: · As the Application Security Engineer you will be providing application security expertise throughout the Software Development LifeCycle (SDLC) as well as being responsible for managing and driving forwards the Application Security Analytics practices. A key part of ...
-
Application Security Engineer
1 week ago
TEKsystems Silver Spring, United States*Description:* · As the Application Security Engineer you will be providing application security expertise throughout the Software Development LifeCycle (SDLC) as well as being responsible for managing and driving forwards the Application Security Analytics practices. A key part ...
-
Application Security Engineer
2 weeks ago
EagleBank Silver Spring, United StatesOverview: · We are a values driven organization putting Relationships FIRST. EagleBank is focused on being Flexible, Involved, Responsive, Strong, and Trusted. By prioritizing meaningful connections with our customers, employees, and shareholders, we relentlessly deliver the mos ...
-
Security Engineer
1 week ago
ARK Solutions Inc Bethesda, United StatesJob: Security Engineer (Ping Federate) · Location: Bethesda, MD/Remote · Duration: Long Term · JOB DESCRIPTION · Supports the Identity & Access Management (IAM) function in Global Information Security organization. Ideal candidate will bring subject matter expertise (L3) on Web ...
-
Security Engineer
3 weeks ago
ARK Solutions, Inc. Bethesda, United StatesJob: Security Engineer · Location:Bethesda, MD/Remote · Duration: Long Term · This is Remote position, but candidate has to go onsite time to time. · Only looking for local candidate. · Only Open for W2 · JOB DESCRIPTION · Supports the Identity & Access Management (IAM) functio ...
-
SECURITY ENGINEER
4 weeks ago
Ark Solutions Bethesda, United StatesSECURITY ENGINEER (Identity & Access Management WAM/SSO) · DESCRIPTION · Supports the Identity & Access Management (IAM) function in Global Information Security organization. Ideal candidate will bring subject matter expertise (L3) on Web Access Management (WAM) and SSO technol ...
-
Security Engineer
2 weeks ago
Diverse Systems Group Bethesda, United StatesJob Description · Job Description · As a \ Security Engineer, you will be a key leader in maintaining the security posture of our systems and ensuring compliance with the Department of Defense (DOD) and Defense Health Agency (DHA) policies and requirements. Your extensive exper ...
-
Senior PKI Infrastructure Security Engineer
2 days ago
Fisher Investments Arlington, United States Full timeIt's an exciting time to be a member of the Fisher Investments Technology Department. We're investing in the future of our firm's technology and are building our team to achieve global growth. We are looking for a Senior PKI Security Engineer to support our Corporate Systems team ...
-
Security Engineer
2 weeks ago
Ark Solutions Bethesda, United StatesJob: Security Engineer · Location: · Bethesda, MD/Remote · Duration: Long Term · This is Remote position, but candidate has to go onsite time to time. · Only looking for local candidate. · Only Open for W2 · JOB DESCRIPTION · Supports the Identity & Access Management (IAM) fun ...
-
Cloud Security Engineer
1 day ago
Compass Pointe Consulting Vienna, United StatesCloud Security Engineer · Vienna, VA – Hybrid 2/3 days in office · Responsibilities encompass collaborating with other DevOps and SysOps teams to transition public facing, on-premises applications to the cloud; securing the configuration management of the cloud infrastructure; m ...
-
Security Engineer
2 weeks ago
Diverse Systems Group Bethesda, United StatesJob Description · Job DescriptionAs a \ Security Engineer, you will be a key leader in maintaining the security posture of our systems and ensuring compliance with the Department of Defense (DOD) and Defense Health Agency (DHA) policies and requirements. Your extensive experience ...
-
Cyber Security Engineer
1 week ago
JCS Solutions LLC Silver Spring, United StatesJob Description · Job DescriptionJCS Solutions LLC (JCS) is seeking a highly skilled Cybersecurity Specialist with a strong background in U.S. Government security standards and requirements. The ideal candidate will have experience working with NIST, OMB, and FISMA guidelines. Th ...
-
Senior Security Engineer
6 days ago
Addison Group Chevy Chase, United StatesThis postion requires a fully onsite presence for the 1st 30 days of employement and then a hybrid schedule is offered. · Information Security Engineer is responsible for supporting the security operations, including but not limited to threat identification, intrusion detection, ...
-
Director of Product Security Engineering
1 week ago
AstraZeneca Gaithersburg, United StatesAre you ready to be part of the future of healthcare? Are you able to think big, be bold, and harness the power of digital and AI to tackle longstanding life sciences challenges? Then Evinova, a new health tech business part of the AstraZeneca Group might be for you · **Key Respo ...
Director, Cloud Security Engineering - Silver Spring, United States - Warner Bros. Discovery
Description
Welcome to Warner Bros. Discovery... the stuff dreams are made of.
Who We Are...
When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD's vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what's next...
From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.
Your New Role...
The Director of Cloud Security Engineering will lead the evolution of a best-in-class cloud security operations program at Warner Bros. Discovery (WBD). Leveraging your significant experience in information security, cloud architecture and engineering, vulnerability management, and DevSecOps practices, you will be expected to broaden and sharpen our capability to manage the incoming security engineering needs while rapidly surfacing, driving down, and reporting on vulnerabilities across our AWS, GCP, and Azure environments.
Your Role Accountabilities...
• Lead and mentor teams of cloud security professionals providing technical guidance and support to ensure their success in WBD's InfoSec department.
• Act as a highly technical cloud security and pipeline automation subject matter expert.
• Lead, expand, and modernize WBD's Cloud Vulnerability Management program.
Qualifications & Experience...
The Nice to Haves
#LI-Hybrid
How We Get Things Done...
This last bit is probably the most important Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview.
Championing Inclusion at WBD
Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.
If you're a qualified candidate and you require adjustments or accommodations to search for a job opening or apply for a position, please contact us at