Sr Information Security Engineering Specialist

Job Description

As a Senior Information Security Engineering Specialist, you will play a key role in strengthening the product security posture at Warner Bros. Discovery. You'll support the implementation of security controls, tools, and processes across the development lifecycle, ensuring secure-by-design practices within modern software delivery pipelines. You'll collaborate closely with Engineering, DevOps, and cross-functional Security teams to integrate robust security strategies without disrupting innovation.
To s/ucceed in this role, you should be hands-on, technically proficient, proactive, and passionate about modern application security, cloud infrastructure, and automation.
Your Role Accountabilities:
• Collaborate with development and DevOps teams to integrate security into CI/CD workflows and product delivery pipelines.
• Support the growth of Product Security programs through scalable threat modeling, architecture reviews, and secure design practices.
• Define, implement, and maintain security standards, policies, and best practices across product teams, ensuring alignment with regulatory frameworks (PCI, GDPR, CCPA).
• Assist in developing and tracking the product security roadmap - ensuring on-time, high-quality delivery of initiatives.
• Design and deploy metrics and dashboards to monitor security posture, performance, and risk.
• Leverage hands-on experience with SAST, DAST, and penetration testing tools to identify and remediate vulnerabilities.
• Drive adoption of DevSecOps practices and automation in public cloud environments (AWS, GCP, Azure).
• Partner with UI/UX, product, and business stakeholders to assess risks and deliver secure digital experiences at scale.
• Advocate for secure development by contributing to secure coding initiatives, training, and awareness.
• Stay up to date with industry trends, new attack vectors, and security technologies to enhance overall product protection.

Qualifications & Experiences:
• 5–8 years of experience in Information Security, with at least 3 years in Product, Application, or Cloud Security roles.
• Strong command of security testing tools and methodologies: SAST, DAST, SCA, threat modeling, and penetration testing.
• Hands-on experience implementing DevSecOps pipelines and secure development practices in Agile environments.
• Deep technical expertise in securing cloud-native services (AWS, GCP, Azure), CI/CD tooling, and infrastructure as code.
• Solid understanding of industry standards and frameworks: OWASP, NIST, ISO, etc.
• Proficiency with secure coding across multiple languages and stacks (e.g., Python, Node.js, C#, JavaScript, Go).
• Experience with tools such as Burp Suite, Nmap, Metasploit, GHAS, and other vulnerability management platforms.
• Strong interpersonal and communication skills to collaborate with both technical and non-technical audiences.
• Proven ability to lead security projects in dynamic, fast-paced environments.
• Preferred: CISSP, OSCP, CEH, GPEN or other security certifications.
• Bonus: Experience in media & entertainment or securing large-scale consumer-facing platforms.

Championing Inclusion at WBD
Warner Bros. Discovery embraces the opportunity to build a workforce that reflects a wide array of perspectives, backgrounds and experiences. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, regardless of sex, gender identity, ethnicity, union status, age, sexual orientation, religion or belief, marital status, pregnancy, parenthood, disability or any other category protected by law.
If you're a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.

Jobcode: Reference SBJ-23ozz5-216-73-216-117-42 in your application.