Sr Information Security Engineering Specialist
Mexico City, Paseo de las Palmas No.425-701
Warner Bros. Discovery
Warner Bros. Discovery offers exciting and rewarding career opportunities across a multitude of disciplines. Join us as we step into the next chapter.Welcome to Warner Bros. Discovery… the stuff dreams are made of.
Who We Are…
When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next…
From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.
Your New Role:
As a Senior Information Security Engineering Specialist, you will play a key role in strengthening the product security posture at Warner Bros. Discovery. You’ll support the implementation of security controls, tools, and processes across the development lifecycle, ensuring secure-by-design practices within modern software delivery pipelines. You’ll collaborate closely with Engineering, DevOps, and cross-functional Security teams to integrate robust security strategies without disrupting innovation.
To succeed in this role, you should be hands-on, technically proficient, proactive, and passionate about modern application security, cloud infrastructure, and automation.
Your Role Accountabilities:
Collaborate with development and DevOps teams to integrate security into CI/CD workflows and product delivery pipelines.
Support the growth of Product Security programs through scalable threat modeling, architecture reviews, and secure design practices.
Define, implement, and maintain security standards, policies, and best practices across product teams, ensuring alignment with regulatory frameworks (PCI, GDPR, CCPA).
Assist in developing and tracking the product security roadmap — ensuring on-time, high-quality delivery of initiatives.
Design and deploy metrics and dashboards to monitor security posture, performance, and risk.
Leverage hands-on experience with SAST, DAST, and penetration testing tools to identify and remediate vulnerabilities.
Drive adoption of DevSecOps practices and automation in public cloud environments (AWS, GCP, Azure).
Partner with UI/UX, product, and business stakeholders to assess risks and deliver secure digital experiences at scale.
Advocate for secure development by contributing to secure coding initiatives, training, and awareness.
Stay up to date with industry trends, new attack vectors, and security technologies to enhance overall product protection.
Qualifications & Experiences:
5–8 years of experience in Information Security, with at least 3 years in Product, Application, or Cloud Security roles.
Strong command of security testing tools and methodologies: SAST, DAST, SCA, threat modeling, and penetration testing.
Hands-on experience implementing DevSecOps pipelines and secure development practices in Agile environments.
Deep technical expertise in securing cloud-native services (AWS, GCP, Azure), CI/CD tooling, and infrastructure as code.
Solid understanding of industry standards and frameworks: OWASP, NIST, ISO, etc.
Proficiency with secure coding across multiple languages and stacks (e.g., Python, Node.js, C#, JavaScript, Go).
Experience with tools such as Burp Suite, Nmap, Metasploit, GHAS, and other vulnerability management platforms.
Strong interpersonal and communication skills to collaborate with both technical and non-technical audiences.
Proven ability to lead security projects in dynamic, fast-paced environments.
Preferred: CISSP, OSCP, CEH, GPEN or other security certifications.
Bonus: Experience in media & entertainment or securing large-scale consumer-facing platforms.
How We Get Things Done…
This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at www.wbd.com/guiding-principles/ along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview.
Championing Inclusion at WBD
Warner Bros. Discovery embraces the opportunity to build a workforce that reflects a wide array of perspectives, backgrounds and experiences. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, regardless of sex, gender identity, ethnicity, union status, age, sexual orientation, religion or belief, marital status, pregnancy, parenthood, disability or any other category protected by law.If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Application security Automation AWS Azure Burp Suite C CCPA CEH CI/CD CISSP Cloud DAST DevOps DevSecOps GCP GDPR GPEN JavaScript Metasploit NIST Nmap Node.js OSCP OWASP Pentesting Product security Python SAST Vulnerabilities Vulnerability management
Perks/benefits: Career development
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.