Cloud Security Engineer

Overview

The Cloud Security Engineer is a hands‑on technical security professional responsible for designing, implementing, and operating cloud security controls across Warner Bros. Discovery’s public cloud environments, with a primary focus on Google Cloud Platform (GCP). As a key member of the Cloud Security team, this role partners closely with engineering, Dev Ops, and platform teams to integrate security into cloud‑native architectures, automate vulnerability management processes, and continuously improve WBD’s cloud security posture.

Knowledge of AWS and Azure environments is considered a plus.

• Serve as a hands‑on Cloud Security Engineer focused on securing enterprise‑scale GCP environments.
• Implement and operate cloud vulnerability management processes across compute, container, serverless, and platform services.
• Leverage and manage CSPM/CNAPP platforms (e.g., Wiz, Orca, Prisma Cloud) to identify misconfigurations, prioritize risk, and drive remediation efforts with engineering teams.
• Develop automation and security tooling using Python (preferred) or similar scripting languages to improve detection, remediation, and reporting capabilities.
• Partner with engineering and Dev Ops teams to integrate security controls into CI/CD pipelines and infrastructure‑as‑code workflows.
• Review and harden GCP configurations, including IAM, networking, logging, storage, and container environments.
• Support security assessments of AI/ML workloads and cloud‑native data platforms; contribute to proof‑of‑concept initiatives related to AI/ML security where applicable.
• Collaborate with cross‑functional teams to remediate vulnerabilities identified through CSPM tools, scanners, and cloud‑native security services.
• Contribute to the development and maintenance of cloud security standards, configuration baselines, and operational documentation.
• Support multi‑cloud security initiatives, including AWS and Azure environments where required.

• 3+ years of experience in Cloud Security, Cloud Engineering, or a related discipline.
• Bachelor’s degree in Computer Science, Information Security, a related technical discipline, or equivalent practical experience.
• Demonstrated hands‑on experience securing Google Cloud Platform (GCP) environments in production.
• Strong knowledge and practical experience in Cloud Vulnerability Management, including vulnerability identification, prioritization, risk assessment, and remediation coordination across cloud workloads and services.
• Experience with at least one CSPM/CNAPP platform (e.g., Wiz, Orca, Prisma Cloud, Lacework, or equivalent).
• Proficiency in Python (preferred) or similar programming/scripting languages, with experience developing automation or security tooling.
• Strong understanding of cloud IAM concepts, least‑privilege access, and identity governance in GCP.
• Understanding of cloud networking fundamentals, including VPC design, routing, segmentation, and secure connectivity patterns.
• Experience securing containerized workloads and Kubernetes environments.
• Familiarity with Infrastructure‑as‑Code (Terraform preferred) and secure configuration management practices.
• Strong understanding of security principles, risk management, and compliance considerations in public cloud environments.
• Excellent written and verbal communication skills with the ability to collaborate effectively with engineering and security stakeholders.

• Cloud security certifications such as:
  • GCP Professional Cloud Security Engineer
  • AWS Security Specialty or Solutions Architect
  • Azure Security Engineer or Solutions Architect
• Experience with AI/ML platforms and securing machine learning workloads; prior proof‑of‑concept or project experience is a plus.
• Knowledge of AWS and/or Azure security services and architecture.
• Familiarity with Oracle Cloud Infrastructure (OCI).
• Experience integrating security tooling with platforms such as Slack, Jira, and CI/CD pipelines.
• Experience with SIEM and observability platforms (e.g., Splunk).

Warner Bros. Discovery embraces the opportunity to build a workforce that reflects a wide array of perspectives, backgrounds, and experiences. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, genetic information, marital status, citizenship status, military status, protected veteran status, or any other category protected by law.

If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit the accessibility page for instructions to submit your request.