VP, Direct-to-Consumer Product Security

Every great story has a new beginning, and yours starts here.

Welcome to Warner Bros. Discovery… the stuff dreams are made of.

Who We Are…

When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next…

From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.

Are you a leader in information security who loves to protect digital platforms, business systems, and customer data? Do you have a passion for streaming media and entertainment? Do you want to join a global team of security experts who work together to create secure and innovative products? If so, you might be the perfect fit for the VP of Product Security role at Warner Bros. Discovery!

As the VP of Direct-to-Consumer Product Security, you will be responsible for overseeing all aspects of information security for our direct-to-consumer (DTC) platforms and services, as well as our revenue-generating business systems across the world. You will ensure that our products and systems meet the highest standards of security and privacy, and that our customers' information is safeguarded from cyber threats.   You will collaborate with Global Direct-to-Consumer (DTC) teams on initiatives to design and deploy appropriate, risk-based security technical security controls to protect consumer data, services, and technology assets of Warner Bros. Discovery's portfolio. 

The role will focus on product security for our streaming media services and other supporting businesses. This leader will work closely with development and engineering teams to ensure secure architectures, patterns, and solutions are created and maintained. The person taking this position will strive to lead from the front, growing a strong team of engineers through fantastic communication and collaboration.   You will be part of the Global Information and Content Security team, reporting to the SVP of Product, Application and Cloud Security.

To succeed in this role, you will need to have:

• a strong background and expertise in information security, especially in DTC, web, TV, and mobile applications
• a proven track record of leading and mentoring a team of technical security engineers and professionals.
• a proactive and collaborative approach to security, with a focus on delivering value and quality to our customers and stakeholders.
• a keen interest and expertise of the streaming media and entertainment industry and its challenges and opportunities
• a willingness to work in a dynamic and international environment, with a large and diverse portfolio of products and services.

If this sounds like you, and you are ready to take on an exciting and rewarding challenge, apply now and join us at Warner Bros. Discovery!

Overview

Warner Bros. Discovery is the global leader in the creation, production, distribution, licensing, and marketing of all forms of entertainment across all current and emerging media and platforms. We are looking for a VP of Direct-to-Consumer Product Security to join our team and lead the security strategy, architecture, and implementation for our streaming products and platforms.

Responsibilities

• Lead a diverse global team, overseeing the implementation of a comprehensive program for conducting product security risk assessments, analysis, and monitoring on a large scale.
• Define and execute the security vision and roadmap for our direct-to-consumer products and platforms, including MAX, and other streaming services.
• Build and manage a team of product security engineers, architects, and analysts to deliver security solutions across the product development lifecycle, from design to deployment to operation.
• Drive the expansion of the Product Security program, focusing on areas such as security architecture engagement strategies, scalable product threat modeling, and the implementation of a security technical champion's program.
• Develop and deliver strategic quarterly roadmap plans, ensuring successful and timely completion of initiatives with high quality.
• Establish and enforce security standards, policies, and best practices for our product development teams, ensuring compliance with industry regulations and customer expectations.
• Partner with product, engineering, and business stakeholders to identify and prioritize security risks and requirements, and provide guidance and support on security architecture, design, testing, and remediation.
• Develop and implement security metrics and dashboards to measure and report on the security posture and performance of our products and platforms.
• Stay abreast of emerging security threats, trends, and technologies, and provide thought leadership and innovation on security solutions and practices.
• Lead the adoption and integration of DevSecOps principles and practices into the product development process, such as continuous integration, continuous delivery, automation, and collaboration.
• Leverage cloud security best practices and tools to secure our products and platforms on AWS, GCP, and Azure, using automation and CI/CD pipelines.
• Manage relationships effectively, advocating for business and external customers by engaging in security-related requirements conversations.
• Identify and advocate for best-of-breed security stack and controls for interactive consumer experiences across web and mobile devices.

Qualifications

• Hybrid work environment; must be based in the Warner Bros. Discovery office for a minimum of three (3) days/week.
• Bachelor’s degree in computer science, Engineering, or related field, or equivalent work experience.
• 8+ years of experience in information security, with at least 5 years of experience in product security, application security, DevSecOps. 
• Proven track record of leading and managing security teams and projects in a fast-paced, dynamic, and agile environment.
• Extensive experience in secure code reviews, business logic assessments and application security testing
• Expert knowledge of security principles, standards, and best practices, such as OWASP, NIST, ISO, etc.
• Experience in deploying cyber security solutions in public cloud environments (IaaS, PaaS, SaaS)
• Strong technical skills and hands-on experience with security tools and technologies, such as web application firewalls, vulnerability scanners, penetration testing tools, encryption, authentication, etc.
• Excellent communication and presentation skills, with the ability to communicate effectively with both technical and non-technical audiences.
• Experience in the media and entertainment industry, or with direct-to-consumer products and platforms, is a plus.
• Experience in implementing and leading DevSecOps initiatives, frameworks, and tools, such as Burp Suite, SAST, DAST, Nmap, Metasploit, etc.
• Experience with Agile development/Scrum methodologies and incorporation of security requirements into SDLC (CI/CD) with product owners.
• Experience in securing cloud environments and services on AWS, GCP, and Azure, using automation and CI/CD pipelines.
• Experiencing in managing programs supporting secure code and software deployments in various languages (Python, Node.js, C#, .NET, JavaScript, Go, Ruby, GraphQL, SDK, and RESTful API design/development).
• CISSP, CEH, GWEB, CWAPT, CCSP, CSSLP, CISSP-ISSAP, GPEN, GWAPT, GMOB, or OSCP certifications are highly desired, though not required.

How We Get Things Done…

This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/  along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview.

The Legal Bits…

In compliance with local law, we are disclosing the compensation, or a range thereof, for roles in locations where legally required. Actual salaries will vary based on several factors, including but not limited to external market data, internal equity, location, skill set, experience, and/or performance. Base pay is just one component of Warner Bros. Discovery’s total compensation package for employees. Pay Range: $197,050.00 - $365,950.00 salary per year. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Warner Bros. Discovery provides a variety of benefits to employees, including health insurance coverage, an employee wellness program, life and disability insurance, a retirement savings plan, paid holidays and sick time and vacation.

Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.

If you’re a qualified candidate and you require adjustments or accommodations to search for a job opening or apply for a position, please contact us at recruitadmin@wbd.com.