Staff Cloud Security Engineer
About the role
Welcome to Warner Bros. Discovery… the stuff dreams are made of. Our role is to ensure the security of cloud services and infrastructure, implementing best practices for secure deployments, and proactively identifying and mitigating security risks across multiple cloud environments.
Responsibilities
- Engineering Responsibilities:
- Design, deploy, and maintain security measures to safeguard our cloud infrastructures across AWS, GCP, and Azure.
- Achieve the security of containerized applications through the implementation of Kubernetes and microservices security best practices.
- Architect secure container environments, including Kubernetes clusters, Docker setups, and orchestration solutions, emphasizing vulnerability reduction and compliance.
- Develop and enforce security policies, standards, and procedures for cloud environments and containerized workloads.
- Collaborate with cross-functional teams to integrate security best practices into the software development lifecycle (SDLC) and continuous integration/continuous deployment (CI/CD) pipelines.
- Work with the incident response team to investigate and remediate cloud security incidents, providing expertise on cloud-specific attack vectors and mitigation strategies.
- Automate security operations and workflows using scripting languages like Python.
- Develop and implement security automation solutions to continuously monitor cloud environments for compliance, threats, and performance anomalies.
- Conduct regular security assessments, vulnerability scans, and threat modeling for cloud environments. Identify, evaluate, and mitigate risks in cloud infrastructure using automated and manual methods.
- Partner closely with DevOps teams to fortify container orchestration platforms and containerized workloads.
- Evaluate and recommend new tools, technologies, and methodologies to improve the security posture of the organization’s cloud environments.
- Maintain comprehensive documentation on cloud security processes, security controls, architecture diagrams, and risk assessments.
- Report security risks, incidents, and findings to leadership and relevant stakeholders.
- Collaborate with stakeholders to define project scope, deliverables, and expectations, ensuring alignment with business objectives.
- Innovation and Creative Problem Solving:
- Leverage creativity and technical expertise to design novel security solutions that address complex cloud security challenges.
- Think outside the box to solve unique security issues that arise as the company scales and adopts new cloud services.
- Take a proactive approach to identifying potential vulnerabilities and threats.
- Use advanced tools, AI, machine learning, or custom-built scripts to anticipate future risks and mitigate them before they affect the infrastructure.
- Investigate and implement innovative solutions such as AI-driven threat detection, security automation tools, and machine learning models to enhance security operations and reduce manual workloads.
- Collaborate with cross-functional teams, including security architects, engineers, and developers, to explore new ideas and develop innovative ways to automate, monitor, and improve security at scale across cloud platforms.
- Stay at the forefront of cloud security trends and emerging technologies (e.g., zero-trust architecture, Quantum Cryptographs, Extended Detection & Response (XDR), User Behavior Analytics, Cloud Security Posture Management (CSPM), Cloud Workload Protection (CWP), Serverless Security, etc.) and creatively incorporate these into security practices as appropriate.
- Identify gaps in existing security tools and services, and, when necessary, collaborate with development teams to create custom security solutions that better meet the company’s unique needs.
Qualifications & Experiences
- Bachelor’s degree in computer science, Information Security, or related field.
- Minimum of 7 years of experience working as a Cloud Security Engineer or a similar role.
- In-depth knowledge of cloud computing platforms such as AWS, GCP, and Azure.
- Proficiency in writing scripts and automation using Python.
- Strong understanding of DevSecOps principles and practices.
- Demonstrated experience working with any of the CSPM Platforms like Wiz, Divvy Cloud, Prisma Cloud, Orca, etc. (Wiz is preferred).
- Experience with containerization technologies such as Docker and Kubernetes, including securing Kubernetes clusters and containerized workloads.
- Strong knowledge of work productivity tools like Office 365, Atlassian, etc. is required.
- Excellent communication, presentation, and collaboration skills.
- Relevant security certifications such as AWS Security Engineer, GCP Security Engineer or Azure Security Engineer is a plus.
Benefits
Hybrid work environment. Must be based in the WBD’s office, a minimum of three days/week.
We are an equal opportunity employer and welcome diversity in our workplace. If you are a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.
In compliance with local law, we are disclosing the compensation, or a range thereof, for roles in locations where legally required. Actual salaries will vary based on several factors, including but not limited to external market data, internal equity, location, skill set, experience, and/or performance. Base pay is just one component of Warner Bros. Discovery’s total compensation package for employees. Pay Range: $115,780.00 - $215,020.00 salary per year. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Warner Bros. Discovery provides a variety of benefits to employees, including health insurance coverage, an employee wellness program, life and disability insurance, a retirement savings plan, paid holidays and sick time and vacation.