Technology and Operations - Cybersecurity Engineer III

Business Unit/Group

IT Information Security Corp 010

Requisition Number

Intended Start Date

4/8/2026

Contract Duration

6-months

Possibility For Extension / Conversion?

Possible

Max Hourly Pay Rate

OT Required / Expected?

No

WB Games Resource(s)?

No

CNN Resource(s)?

No

What We Do/Project

The Cloud Security Engineer is a hands‑on technical security professional responsible for designing, implementing, and operating cloud security controls across Warner Bros. Discovery's public cloud environments, with a primary focus on Google Cloud Platform (GCP).

Job Responsibilities / Typical Day in the Role

• Serve as a hands‑on Cloud Security Engineer focused on securing enterprise‑scale GCP environments.
• Design, implement, and operate cloud vulnerability management processes across compute, container, serverless, and platform services.
• Leverage and manage CSPM/CNAPP platforms (e.g., Wiz, Orca, Prisma Cloud) to identify misconfigurations, prioritize risk, and drive remediation efforts with engineering teams.
• Develop automation and security tooling using Python (preferred) or similar scripting languages to improve detection, remediation, and reporting capabilities.
• Partner with engineering and DevOps teams to integrate security controls into CI/CD pipelines and infrastructure‑as‑code workflows.
• Review and harden GCP configurations, including IAM, networking, logging, storage, and container environments.
• Support security assessments of AI/ML workloads and cloud‑native data platforms; contribute to proof‑of‑concept initiatives related to AI/ML security where applicable.
• Collaborate with cross‑functional teams to remediate vulnerabilities identified through CSPM tools, scanners, and cloud‑native security services.
• Contribute to the development and maintenance of cloud security standards, configuration baselines, and operational documentation.
• Support multi‑cloud security initiatives, including AWS and Azure environments where required.
• Stay current with emerging cloud threats, vulnerability trends, and advancements in cloud security tooling.

Time Allocation

• GCP Cloud Security Engineering & Hardening – 15%
• Cloud Vulnerability Management (analysis, prioritization, remediation coordination) – 30%
• CSPM/CNAPP Operations & Risk Reduction – 10%
• Security Automation & Python Development – 15%
• CI/CD & DevSecOps Integration – 10%
• Architecture Reviews & Engineering Collaboration – 10%
• AI/ML & Emerging Technology Security Support – 5%
• Documentation & Continuous Learning – 5%

Must Have Skills / Requirements

1. Strong knowledge and practical experience in Cloud Vulnerability Management
   • 7+ years of experience; vulnerability identification, prioritization, risk assessment, and remediation coordination across cloud workloads and services.
2. Demonstrated hands‑on experience with AWS and GCP
   • 7+ years of experience; cloud experience within a production environment.
3. Hands‑on experience with at least one CSPM/CNAPP platform
   • 3+ years of experience; (e.g., Wiz, Orca, Prisma Cloud, Lacework, or equivalent)

Nice to Have Skills / Preferred Requirements

1. Cloud security certifications such as:
   • GCP Professional Cloud Security Engineer
   • AWS Security Specialty or Solutions Architect
   • Azure Security Engineer or Solutions Architect
2. Experience with AI/ML platforms and securing machine learning workloads; prior proof‑of‑concept or project experience is a plus.
3. Knowledge of AWS and/or Azure security services and architecture.
4. Familiarity with Oracle Cloud Infrastructure (OCI).
5. Experience integrating security tooling with platforms such as Slack, Jira, and CI/CD pipelines.
6. Experience with SIEM and observability platforms (e.g., Splunk).
7. Azure Experience is a plus.
8. Experience with Brinqa.

Soft Skills

1. Excellent written and verbal communication skills with the ability to collaborate effectively with engineering and security stakeholders.

Technology Requirements

1. Demonstrated hands‑on experience securing Google Cloud Platform (GCP) environments in production.
2. Strong knowledge and practical experience in Cloud Vulnerability Management, including vulnerability identification, prioritization, risk assessment, and remediation coordination across cloud workloads and services.
3. Hands‑on experience with at least one CSPM/CNAPP platform (e.g., Wiz, Orca, Prisma Cloud, Lacework, or equivalent).
4. Proficiency in Python (preferred) or similar programming/scripting languages, with experience developing automation or security tooling.
5. Strong understanding of cloud IAM concepts, least‑privilege access, and identity governance in GCP.
6. Solid understanding of cloud networking fundamentals, including VPC design, routing, segmentation, and secure connectivity patterns.
7. Experience securing containerized workloads and Kubernetes environments.
8. Familiarity with Infrastructure‑as‑Code (Terraform preferred) and secure configuration management practices.
9. Strong understanding of security principles, risk management, and compliance considerations in public cloud environments.

Education / Certifications

1. Bachelor's degree in Computer Science, Information Security, or related technical discipline, or equivalent practical experience.

Interview Process / Next Steps

1. 1st round screening with Hiring Manager
2. 2nd round technical screening (1‑hour)
3. 3rd round final screening by Senior Leadership

Additional Notes

• Sourcing in VA - Sterling.
• Hybrid role - 3 days on‑site.

EEO

"Mindlance is an Equal Opportunity Employer and does not discriminate in employment on the basis of - Minority/Gender/Disability/Religion/LGBTQI/Age/Veterans."