Job Description
*Must be able to work a hybrid model (3 days onsite) at our office in Atlanta, DC, or Silver Spring.*
As senior security engineer, ideal candidate is expected to:
Implement design reviews to evaluate security controls
• Identify and communicate opportunities to enhance the security posture of WBD
• Build and / or manage enterprise security platforms effectively
Splunk Focused Responsibilities:
Design and Architecture:
Lead the design, deployment, and maintenance of Splunk infrastructure across multiple environments Develop and implement best practices for scaling and optimizing Splunk deployments.
Architect complex Splunk solutions tailored to the organization's needs, ensuring data integrity and optimal performance.
Data Ingestion and Management:
Integrate and ingest data from various sources (applications, network devices, security tools) into Splunk, ensuring data normalization and enrichment.
Create and manage data models, field extractions, lookups, and accelerations.
Dashboard and Alerting:
Design, develop, and maintain custom dashboards, reports, and alerts for different stakeholders (IT, Security, Compliance).
Implement real-time monitoring and alerting solutions to detect and respond to critical incidents.
Security and Compliance:
Work closely with the Security Operations Center (SOC) to support security monitoring, threat detection, and incident response efforts.
Ensure Splunk deployments meet compliance requirements and are aligned with industry standards (e.g., PCI, HIPAA, GDPR).
Collaboration and Support:
Collaborate with cross-functional teams (developers, network engineers, security analysts) to ensure seamless integration of Splunk with other systems.
Provide mentoring and training to junior Splunk engineers and other IT staff.
Troubleshoot and resolve complex Splunk-related issues, ensuring minimal downtime and service disruption.
Automation and Scripting:
Develop scripts and automation tools to streamline Splunk administration, data ingestion, and reporting tasks.
Utilize Splunk's REST API for advanced integrations and custom solutions.
Documentation and Reporting:
Maintain detailed documentation of Splunk architecture, configurations, processes, and procedures.
Generate periodic reports on Splunk performance, usage, and incidents for management review.
Your Role Accountabilities:
• Plan, design, engineer and implement security-related technologies (15%)
• Understanding technical security issues, their implications within WBD business units and able to effectively communicate them to management and other business leaders. (10%)
• Configure, troubleshoot, and maintain Splunk infrastructure (40%)
• Conduct security audits and assessments to regularly determine the effectiveness of security platforms and identify areas of improvement. (10%)
• Host and operating systems hardening, auditing, monitoring and logging with appropriate security controls and best practices while meeting security best practices and business goals (15%)
• Research and explore emerging security technologies and determine their appropriate use within the company. (5%)
• Prepare, document, and create standard operating procedures and protocols. Cross-train and mentor other team members as needed (5%)
Qualifications & Experiences:
• A minimum of 5+ years of hands-on experience in building, designing, and maintaining enterprise security tools such as SIEM and SOAR.
• Minimum of 5 years of experience working with Splunk in a large-scale environment.
• Proven experience in designing and managing Splunk Enterprise, and Splunk Cloud
• 5+ years of successfully implementing advanced cyber security technology in a complex environment
• Bachelor's degree in computer science, engineering, or other related discipline or 5+ years of previous technical security experience
• Strong knowledge of Splunk SPL (Search Processing Language) and regular expressions
• Experience with cloud platforms (AWS, Azure, GCP) and their integration with Splunk.
• Hands on technical experience with networking and computing system architectures, specifically, the security aspects thereof.
• Hands on technical experience with compliance and regulatory frameworks and how they affect architecture designs and reviews.
• Must have 5+ scripting experience (using Python or other equivalent languages)
Not Required but preferred experience:
• Security and Cloud certifications are a plus. (CISSP, etc.)
• Splunk Advance certification (Splunk Cloud Certified Admin, Enterprise Certified Admin, Enterprise Certified Architect, etc.) is a plus.
Championing Inclusion at WBD
Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.
In compliance with local law, we are disclosing the compensation, or a range thereof, for roles in locations where legally required. Actual salaries will vary based on several factors, including but not limited to external market data, internal equity, location, skill set, experience, and/or performance. Base pay is just one component of Warner Bros. Discovery's total compensation package for employees. Pay Range: $86,030.00 - $159,770.00 salary per year. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Warner Bros. Discovery provides a variety of benefits to employees, including health insurance coverage, an employee wellness program, life and disability insurance, a retirement savings plan, paid holidays and sick time and vacation.
Jobcode: Reference SBJ-r16nye-34-239-150-167-42 in your application.