Sr. Cyber Security Engineer

Job Description

Overview
Our Team
As the Discovery portfolio continues to grow – around the world and across platforms – the Global Technology
& Operations team is building media technology and IT systems that meet the world class standard for which
Discovery is known. GT&O builds, implements and maintains the business systems and technology that are
critical for delivering Discovery's products, while articulating the long-term technology strategy that will enable
Discovery's growing pay-TV, digital terrestrial, free-to-air and online services to reach more audiences on more
platforms.

Within our Information Security team, there has never been a busier or more urgent time to obtain the best
talent we can for this critical function. In light of the constant threats and attacks occurring in companies
across the globe, and across all industries, the Information Security Team at Discovery is a growing group of
cyber security professionals, using the latest tools and resources to protect the assets from our
internal infrastructure to the shows we broadcast across the globe on Discovery Channel, Animal Planet,
Discovery ID, TLC, EuroSport, TVN, and more. From the US to Singapore, Poland, India to LA, we are tasked
with protecting, training, and implementing the best of the best in tools, resources, monitoring, threat
detection, and more.

The Role

The Senior Cyber Security Engineer is a critical technical role responsible for ensuring the secure design and
implementation of Discovery enterprise architecture to effectively and securely support the organization in
meeting specific business technology needs. This candidate will be expected to conduct security research,
planning, execution and maintenance of cyber security tools and functions. Additional tasks will include, but
not be limited to network monitoring, endpoint detection and a proactive approach to preventing cyber-
attacks across the Discovery networks infrastructure. The candidate should demonstrate extensive knowledge
of all common business-related IT functions, be able to identify potential online security risks, be proficient at
preparing detailed training procedures, have a solid understanding of various security software applications, a
strong work ethic and excellent internal and external communications skills.

Responsibilities
• Maintain and enhance cybersecurity tools and ensure full adoptions and peak operational
performance.
• As part of a team, ensure the adoption of security architecture and engineering initiatives in
order to effectively and securely support the organization in meeting specific business technology
needs.
• Collaborate with our corporate functions including Internal Audit, Legal and Compliance, Privacy,
and Sourcing to ensure that Discovery maintains a strong cybersecurity posture.
• Respond to cyber incidents, as escalated by the SOC and TOC.
• Evolve SOC run-books and SOPs through constant feedback and iterative improvement.
• Identify security vulnerabilities and guide developers and engineers in addressing these issues
• Improve architectural adoption through automation and efficiently use security tools to solve challenges at scale.

Qualifications
• Bachelor's Degree in Computer Science, Engineering, or other related discipline or comparable
previous technical experience, specifically security architecture or engineering experience.
• Security certifications are a plus. (CISSP, CISM, CISA, SANS, Security+, etc.)
• 5+ years of progressive experience with increasing responsibilities within a security operations,
engineering or architecture environment.
• Proven experience collecting and disseminating customer and engineering requirements and
architecting them into robust security solutions.
• Hands-on technical experience with SIEM & logging tools (Splunk, Kibana, Qradar) and the ability
to extract actionable intelligence from large volume aggregated log storage.
• Hands-on technical experience with cloud native, container, and application security concepts
and challenges.
• Hands-on technical experience with SOAR Platforms and the concepts of runbooks and
automation.
• Working knowledge of network TCP/IP protocols.
• Demonstrated ability to explain risks of threat, advantages of monitoring and SIEM to both
technical and non-technical audiences.
• High degree of familiarity with all aspects of the incident response lifecycle.
• Strong influencing skills to include negotiation, problem solving, and conflict resolution
• Must be able to work in a fast-paced organization.
• The ability to conduct complex technical conversations in English is required.
• Excellent communication and presentation skills required.

Certifications: GSEC, GCIH, SSCP, CCSP, CISSP-ISSEP, CEH, GCIA, GISF, Security Plus, Network Plus preferred but 7+ years of experience and demonstrated knowledge accepted

Frameworks/Standards: Extensive knowledge of NIST framework, CSC framework, CSF framework, ITIL, COBIT, PCI, HIPAA, SOX and ISO 2700x. Experience in referencing frameworks and developing requirements from the frameworks

Jobcode: Reference SBJ-d97m0z-3-138-114-38-42 in your application.