Senior Director - Product, Application and Cloud Vulnerability Management

Job Description

Overview
Our Team/

As Warner Bros. Discovery (WBD) portfolio continues to grow – around the world and across platforms – the Global Technology & Operations team is building media technology and IT systems that meet the world class standard for which WBD is known. ET&O builds, implements, and maintains the business systems and technology that are critical for delivering WBD products and content while articulating the long-term technology strategy that will enable WBD's growth.

The Role

The Senior Director of Application and Cloud Vulnerability Management is an important member of WB's Global Information and Content Security (GISC) team and will oversee all security remediation efforts for Warner Bros. Discovery's application and cloud infrastructure. The person taking this exciting position will be part of building the next evolution in vulnerability management across a diverse set of technologies and talented people. This role will report directly to the SVP of Product, Application and Cloud Security.

Responsibilities
• Attract, retain and grow high performing and diverse global security vm analysts teams.
• Stay current with the latest vulnerabilities in the areas of application security, container and
cloud infrastructure.
• Establish and enable a high security bar and hold engineering teams accountable against the
SLAs.
• Grow and nurture relationships with engineering executives and DevOps teams to build trust
and provide practical solutions and guidance around security mitigation and remediations.
• Evolve VM reporting metrics with an ability to pivot based on executive sponsor, business
area, product area, technology stacks, and technical owner in real time and trends over
time.
• Identify areas of risk that appear to be systemic and partner with peers in infosec and
engineering teams to address the root problems by developing holistic solutions.

Qualifications
• Bachelor's degree in related field, such as Business, IT, Computer Science, or equivalent
work experience
• 10+ years of work experience in Information technology fields with 5+ years of experience
focused on public cloud or application security.
• Minimum 5+ years leadership experience including leading multiple functional teams.
• Strong understanding of cloud-based infrastructure components with specific understanding
of the security risks presented by large and complex hybrid cloud environments including
AWS, GCP and Azure.
• Technical leadership background in one or more of the the following areas (in AWS, GCP,
Azure for Cloud):
• Cloud security administration
• Cloud security architecture
• Cloud engineering
• Cloud governance
• Container security or engineering
• Application security
• Product architecture
• Familiar with security tools such as BurpSuite, SAST, DAST, etc.
• Experience managing programs that support secure coding and software deployment in a
variety of current languages (e.g. Python, Node.js, C#, .NET, JavaScript, Go, Ruby, GraphQL,
SDK and RESTful API design/development).
• Experience working with Agile development/Scrum methodologies, and incorporation of
security requirements into SDLC (CI/CD) with product owners/managers
• Active learner with a thirst for knowledge and constantly driven to stay current with evolving
cloud technologies and related security landscapes.
• Outstanding strategic planning and management skills, ability to think creatively, and strong
quantitative and qualitative analysis skills.
• Able to interact, communicate and partner with executives and engineers. Excellent
interpersonal and communications skills and proven ability to work effectively at all
organizational levels.
• Experience working in an international business environment, supervising a geographically
dispersed team.
• Available for global business travel.
• Ability to manage and influence across time zones and virtual/in-office teams.

Must have the legal right to work in the United States

Discovery requires vaccination for employment consideration, except where prohibited by law. Discovery will consider requests for exemption from this requirement upon an offer of employment. Employees with approved exemptions due to health or religious reasons must abide by weekly rigorous COVID-19 testing protocols.

Discovery Communications, Inc. is an equal opportunity employer. Discovery is committed to being an employer of choice, not just a good place to work, but a great and inclusive place to work. To that end, we strive to recruit and maintain a workforce that meaningfully represents the diverse and culturally rich communities that we serve. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, sexual orientation, gender identity, protected veteran status or disabled status or, genetic information.

We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including but not limited to all local Fair Chance Ordinances.

EEO is the Law

Pay Transparency Policy Statement

California Job Applicant Privacy Policy

Transparency In Coverage

If you are an individual with a disability and need an accommodation during the application process, please send an email request to HR@discovery.com

Jobcode: Reference SBJ-ro58n6-216-73-216-177-42 in your application.