Manager, Security Orchestration, Automation & Response (SOAR)

Welcome to Warner Bros. Discovery… the stuff dreams are made of.

Who We Are…

When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next…

From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.

Job Responsibilities:

Our Team

      As the Warner Bros. Discovery (WBD) portfolio continues to grow – around the world and across platforms – the Global Technology and Operations (GT&O) team is building media technology and IT systems that meet the world class standards for which WBD is known for. GT&O builds, implements, and maintains the business systems and technology that are critical for delivering WBD’s products, while articulating the long-term technology strategy that will enable WBD’s growing pay-tv, digital terrestrial, free-to-air and online services to reach more audiences on more platforms.

      Within our Global Content & Information Security team, there has never been a busier or more urgent time to obtain the best talent we can for this critical function. In light of the constant threats and attacks occurring in companies across the globe, and across all industries, the Global Information and Content Security (GICS) Team at WBD is a growing group of cyber security professionals, using the latest tools and resources to protect the assets from our internal infrastructure to the shows we broadcast and media content we produce across the globe on CNN, Discovery Channel, Animal Planet, Discovery ID, HBO, TLC, TBS, Eurosport, TVN, WB and more.  From US to Singapore, Poland, India to LA, we are tasked with protecting, training, and implementing the best of the best in tools, resources, monitoring, threat detection, and more.

The Role:

     Engineering Manager - As the Manager of SOAR and Detection Engineering, you will lead the WBD SOAR and Detections team, overseeing the optimization and management of the ticketing system and Security Orchestration, Automation, and Response (SOAR) platform supporting the CSOC. The CSOC operates 24/7, continuously monitoring, detecting, and responding to cybersecurity threats across the WBD network. In this key leadership role, you will spearhead the development and refinement of security detections, integrations, automations, scripts, and playbook content, enhancing the operational efficiency and investigative capabilities of the CSOC and Incident Response (IR) teams.

Key Areas of Responsibility:

• Leadership and Development
  • Guide the SOAR team, cultivating a culture of technological innovation and excellence.
  • Actively guide the full lifecycle of SOAR development, from planning to deployment, ensuring alignment with CSOC and IR strategies.
• SOAR Solutions Engineering
  • Enhance SOAR playbook development, ensuring robust logic flows and streamlined operational procedures and efficiencies.
  • Architect, write, test, and maintain automation scripts and workflows within the SOAR platform.
  • Translate CSOC and IR requirements into actionable and efficient technical integrations for the SOAR platform.
• Stakeholder Engagement
  • Work closely with CSOC/IR leadership to identify, prioritize, and roadmap SOAR requirements and enhancements.
  • Collaborate with cross-functional teams, providing essential SOAR insights and securing feedback to refine tools and functionalities.
• Quality Assurance and Documentation
  • Maintain stringent quality control on all developed integrations, scripts, and workflows; perform thorough testing and debugging.
  • Document all processes, creating comprehensive guides and records that empower team members and stakeholders.
• Innovation and Continuous Improvement
  • Keep abreast of emerging cybersecurity technologies and methodologies to continuously enhance the SOAR capabilities.
  • Initiate and manage API solutions for improved CSOC and IR operations.

Qualifications & Experiences:

• Hybrid work environment. Must be based in the WBD’s office, minimum three days/week. 
• 5+ years in a technical cybersecurity role with significant exposure to Incident Response, Security Operations, and Threat Intelligence.
• Proficient in scripting languages such as Python, BASH, and PowerShell.
• Demonstrable experience with major security tools and technologies such as IDS/IPS, EDR, XDR, SIEM, and Vulnerability Management.
• Strong experience in managing and deploying in cloud environments, particularly AWS and Microsoft Azure.
• Excellent leadership skills with an ability to manage and inspire a technical team.
• Superior communication skills, adept in both verbal and written forms, across various stakeholder levels.

If you: 

• are excited to work in an international, fast-paced, multi-faceted media company. 
• are comfortable ensuring timely escalation, responsiveness and follow through to meet deadlines.  
• are knowledgeable of, and understand, the risk-based business impact approach to cybersecurity. 
• are actively questioning and influencing actions needed to attain goals and targets. 
• are comfortable driving initiatives forward without having direct control of staff. 

Then help us create the future with one of the world’s largest media & entertainment companies. 

How We Get Things Done…

This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/  along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview.

Championing Inclusion at WBD

Warner Bros. Discovery embraces the opportunity to build a workforce that reflects the diversity of our society and the world around us. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.

If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.