Cloud Security Architect; AWS

Position: Cloud Security Architect (AWS)
Welcome to Warner Bros. Discovery… the stuff dreams are made of.

Who We Are…

When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD's vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what's next…

From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.

* Must work a hybrid schedule (3 days onsite) out of our DC or Silver Spring office.
* The Cloud Security Architect (AWS) is a hands-on security leader with deep expertise in designing, securing, and assessing enterprise-scale public cloud environments. As a lead member of the Warner Bros. Discovery (WBD) Cloud Security team, this role partners closely with engineering and product teams to embed security into cloud architectures, platforms, and workflows across AWS, with a working knowledge and experience of Azure and GCP in case of emergency support/maintenance is required.

Role Responsibilities:

* Serve as a Cloud Security Subject Matter Expert (SME) for Warner Bros. Discovery's Information Security organization, providing authoritative guidance on public cloud security architecture and engineering.

* Proactively identify cloud security risks across AWS, Azure, and GCP environments, design pragmatic mitigation strategies, and lead or influence implementation efforts in partnership with engineering teams.

* Design and produce clear, actionable architecture and security design artifacts to enable the Cloud Security team to implement solutions, whether developed in-house or delivered via third-party vendors.

* Partner closely with product and platform engineering teams to design, review, and validate secure network, compute, container, and serverless architectures.

* Provide hands-on IAM guidance, including policy design and review, to ensure least-privilege access models are consistently implemented across cloud environments.

* Review cloud architecture and AI/ML workloads to advise development teams on secure design patterns, data protection, identity controls, and potential security gaps prior to deployment.

* Engage with public cloud service providers to evaluate and influence security features, roadmap capabilities, and best-practice implementations.

* Evaluate cloud security vendors and tools (including CSPM/CNAPP platforms), conduct proof-of-value assessments, and provide recommendations based on technical fit and risk reduction.

* Mentor and support junior cloud security team members through technical guidance, design reviews, and knowledge sharing.

* Develop and maintain cloud security documentation, including architectural standards, reference designs, configuration guidelines, and operational processes.

* Collaborate with senior leadership and cross-functional stakeholders to assess current and future cloud security requirements and align solutions with business and technology strategy.

* Continuously stay current with emerging cloud threats, attack techniques, and security tooling, applying this knowledge to improve WBD's cloud security posture.

Qualifications & Experience

Required:

* Bachelor's degree in computer science, Information Security, or a related technical discipline, or equivalent practical experience with 6-8 years of strong experience.

* Strong hands-on understanding of public cloud infrastructure components and architectures, with demonstrated ability to identify and mitigate security risks in decentralized, hybrid, and multi-account cloud environments.

* Solid understanding of information security principles, risk management, and compliance frameworks, and how they apply to large-scale public cloud platforms.

* Proven experience designing, building, and securing AWS-based cloud environments, with meaningful hands-on experience in Azure; exposure to GCP is a plus.

* Ability to automate…