Senior Security Engineer
New York City
Warner Music Group
Technology is one of the most important parts of our business. Whether it’s signing up new artists; ensuring we provide the right data to Spotify, YouTube, and other digital service providers; or helping artists use the latest AI tools and make thoughtful decisions with data-driven insights – technology plays an invaluable role in our success. The engineering team at Warner Music Group makes all of it a reality.
A little bit about our team:Global team of dynamic, creative and collaborative problems solvers working together to build highly secure and scalable solutions to drive innovation and operational excellence. This represents a technical and experienced position in the IT organization. This position will be called upon to represent IT organizations by internal and external organizations. An individual in this position is responsible for making the production systems more reliable by performing day-to-day operations including system monitoring, troubleshooting, problem identification, resolution and restore the following established and documented procedures and with minimal direction. This group is the digital thought and technology collective working with world class creative Media & Entertainment executives and their teams; acting as the trusted operators and strategic partners with them to deliver the best possible outcomes.
Why this could be your next big break:This is an opportunity to move the needle and make a significant impact within a large global enterprise. Responsibilities include coordinating projects and resources as new business offerings and technologies are developed and implemented within Warner Music Group. Requires excellent communication and technical skills, while working closely with all business units within Warner Music Group in determining design criteria and proof of concept as they relate to each business offering. Other functionality includes acting as engineering liaison to outside engineering entities, project budget management, and vendor management. Collaborate, design and implement ideas with business leaders from whiteboard to digital delivery and be a true partner with our business leaders. Recognize that as a Service Organization we’re there to partner and steward the organization to operate efficiency, drive revenue and manage risk.
Here you’ll get to:Develop and maintain a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat driversDevelop security strategy plans and roadmaps based on sound enterprise architecture practicesParticipate in application and infrastructure projects to provide security-planning adviceWork on DLP rules and tuningInvestigate DLP issues Integrate threat intelligence into day to day processesValidate security configurations, including firewalls, IPSs, WAFs and anti-malware/endpoint protection systemsPerform regular vulnerability testing of enterprise services and applications, assess results, prioritize, and coordinate remediation efforts with colleaguesAbility to leverage SIEM platform for conducting forensic security investigations and identifying potential indicators of compromise (IOCs). Develop and use advanced, customized tools and scripts to enhance security assessments and proactive alertingReview all security reports and logs for unusual or anomalous activities Review all existing and new security technologies, tools and services, and make recommendations to the broader infrastructure teamCollaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycleParticipate in all information security related incident response activitiesStay abreast of information security events, news, trends and evolving legislative/regulatory changes
Rockstar candidates will be able to:10+ years previous hands-on network administration using the following skills:Direct, hands-on experience or strong working knowledge of managing security infrastructure — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM, DLP (Data Loss Prevention) and log management technologyExperience managing and working with Security Operations CentersImplemented DLP solutionsImplemented threat intelligence process and programVerifiable experience reviewing application code for security vulnerabilitiesDirect, hands-on experience or a strong working knowledge of vulnerability management toolsDocumented experience and a strong working knowledge of the methodologies to conduct threat-modeling exercises on new applications and servicesModern Authentication Protocols- SAML, OAUTHCryptography - Asymmetrical/Symmetrical encryption, hashingScripting – PowerShell, Python, Bash, etc.Experience leading high profile security projects
It would be music to our ears if you also had:CI/CD pipeline DEVSECOPS experienceCloud experience (AWS/Azure)Regulations, Standards and FrameworksPayment Card Industry Data Security Standard (PCI-DSS)Sarbanes-OxleyGeneral Data Protection Regulation (GDPR)NIST Cybersecurity Framework (CSF)
Why join us? Warner Music Group is all about our people. We are one global company made up of the most knowledgeable, passionate, and creative people in our business.It is the mission of every member of the WMG team around the world to create a nurturing environment for artists, songwriters, and the people behind the music, every stage of their career. We strive to set WMG apart from the rest of the industry by embracing a philosophy of innovation that is part of our company's DNA. Consider a career at WMG and be a part of one of the biggest forces in music today.
About us: As the home to 300 Elektra, Asylum, Atlantic, East West, FFRR, Fueled by Ramen, Nonesuch, Parlophone, Rhino, Roadrunner, Sire, Warner Records, Warner Classics, and several other of the world’s premier recording labels, Warner Music Group champions emerging artists and global superstars alike. And our renowned publishing company, Warner Chappell Music, represents genre-spanning songwriters and producers through a catalogue of more than one million copyrights worldwide. We’re the home to WMX – the next generation services division that connects artists with fans and amplifies brands in creative, immersive, and engaging ways – and Alternative Distribution Alliance (ADA) – the ground-breaking global distribution company for independent artists and labels. Together, we are Warner Music Group: Music With Vision & Voice.
WMG is committed to inclusion and diversity in all aspects of our business. We are proud to be an equal opportunity workplace and will evaluate qualified applicants without regard to race, religious creed, color, age, sex, sexual orientation, gender, gender identity, gender expression, national origin, ancestry, marital status, medical condition as defined by state law (genetic characteristics or cancer), physical or mental disability, military service or veteran status, pregnancy, childbirth and related medical conditions, genetic information or any other characteristic protected by applicable federal, state or local law.
Copyright © 2023 Warner Music Inc.
Love this job and want to apply?
Click the “Apply” link at the top of the page, or apply directly with your LinkedIn. Applying with LinkedIn will import all of the information you put in your profile, but will still allow you to upload a resume and cover letter. Don’t be discouraged if you don’t hear from us right away. We’re taking our time to review all resumes, and to find the best people for WMG. Thanks for your interest in working for WMG. We love it here, and think you will, too.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Azure Bash CI/CD DevSecOps Encryption Firewalls GDPR Incident response Intrusion prevention Malware Monitoring NIST PowerShell Python SAML Security assessment Security strategy SIEM Strategy Threat intelligence Vendor management Vulnerability management
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs