Manager, Product Security Analytics

OVERVIEW

At Warner Bros. Discovery, you will be responsible for creating, driving, communicating, and presenting security metrics and KPIs. You will develop dashboards to support our product security organization—including digital consumer products, financial fraud operations, and other services targeting our global digital footprint. Your work will protect billions of viewers worldwide and normalize data across critical security programs such as Account Takeover prevention, Financial Fraud detection, Content Protection, Anti‑automation, and Security Architecture initiatives.

• Data Collection and Integration:
  Gather security data from various sources and tools—including Account Takeover prevention, Financial Fraud detection, Content Protection, Anti‑automation, and other security services—to build a comprehensive data set.
• Security Metrics and KPIs:
  Develop, implement, and manage security metrics and KPIs to measure the effectiveness of security programs and initiatives.
• Security Risk Assessment:
  Use security metrics to assess the organization’s overall cybersecurity risk profile and prioritize mitigation strategies.
• Dashboard Development:
  Create and maintain comprehensive security dashboards to provide real‑time visibility into the security posture of our products and services.
• Data Analysis:
  Analyze security data to identify trends, anomalies, and potential threats; provide actionable insights to improve security measures.
• Reporting and Communication:
  Prepare and present detailed security reports to senior management, highlighting key metrics, trends, and areas for improvement.
• Incident Response Support:
  Analyze security incident data to identify root causes, improve incident response processes, and inform future security strategies.
• Collaboration:
  
  Work closely with product, engineering, and business teams to ensure security metrics align with organizational goals and objectives.
• Compliance:
  Ensure compliance with industry regulations and standards, such as GDPR, CCPA, and others.
• Continuous Improvement:
  Stay abreast of emerging security threats, trends, and technologies; continuously improve security metrics and reporting processes.

• Bachelor’s degree in Computer Science, Engineering, Data Analytics, or a related field. A Master’s degree is preferred.
• Over 7 years of experience in information security, with at least 4 years in security analytics or a related field.
• Minimum of 3 years of experience in product security, application security, or cloud security.
• Proven track record of leading and managing security analytics teams and projects in a fast‑paced, dynamic environment.
• Proficiency in data analytics/visualization tools and technologies such as Splunk, ELK Stack, Tableau, Power BI, and others.
• Proficiency in programming languages like Python, R, and SQL, as well as SQL/No
  
  SQL databases.
• Strong understanding of secure coding practices, network security, data security, and cloud security principles, and experience with security tools—including web application firewalls, vulnerability scanners, penetration testing tools, encryption, and authentication.
• Knowledge of industry standards and best practices (e.g., OWASP, NIST, ISO) and regulatory compliance (e.g., PCI, GDPR, CCPA, etc.).
• Excellent verbal and written communication skills, with the ability to effectively communicate complex security concepts to both technical and non‑technical audiences.
• Exceptional analytical and problem‑solving skills to address security challenges and develop effective solutions.
• Demonstrated leadership skills to manage and guide security analytics teams and initiatives.
• Relevant certifications such as CISSP, CISM, CEH, CCSP, or GIAC certifications are highly desired.

Hybrid work environment:
Must be based in the WBD office, minimum three days per week.

• Excited to work in an international, fast‑paced, multi‑faceted media company.
• Comfortable ensuring timely escalation, responsiveness, and follow‑through to meet deadlines.
• Knowledgeable of and understanding the risk‑based business impact approach to cybersecurity.
• Actively questioning and influencing actions needed to…