Principal, Security Engineering & Vulnerability Management for WB Games

Welcome to Warner Bros. Discovery… the stuff dreams are made of. Who We Are… When we say, “the stuff dreams are made of,” we’re not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD’s vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what’s next… From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive. *Must work a hybrid schedule (3 days onsite) out of our NYC or Burbank office.* The Job The Principal, Security Engineering & Vulnerability Management for WB Games is a key leader within the Global Information and Content Security (GICS) team, implementing WBD's security strategy, policies, and standards across global WB Games operations. This critical role helps ensure timely, trustworthy, and fair-minded WB Games to audiences everywhere by driving the security of technical and digital operations. This Principal role is responsible for maintaining a strategic relationship with WB Games leadership, closely aligning WBD’s cybersecurity strategy with our evolving WB Games strategy. Job Responsibilities: Security Adoption Act as the primary link between WB Games and WBD’s centralized cybersecurity functions, ensuring security initiatives are aligned with business goals and priorities. Lead the adoption and enforcement of Global Information and Content Security policies and standards across WB Games business lines. Partner with GICS leadership to drive adoption of core security services (Identity and Access Management, Logging and Monitoring, Detection and Response, Vulnerability Management, Product Security, Cloud Security, and Content Security) throughout global WB Games operations. Provide direction and supervision on security-related projects and initiatives, ensuring compliance with global security standards and best practices. Support enterprise and business-line regulatory and compliance requirements, developing implementation strategies that minimize operational impact and disruption. Foster a strong security culture and promote awareness, accountability, and technical security measures across WBD’s global WB Games functions. Vulnerability and Threat Lead the identification and reporting of key risk indicators (KRIs) for WB Games operations, driving analytics, metrics, and executive-level reporting to WBD leadership. Drive vulnerability and threat remediation at scale across internet-facing and internal WB Games assets, partnering with engineering owners to prioritize exposures and reduce time-to-remediate. Support security operations and incident response teams in the identification, investigation, and mitigation of cybersecurity incidents impacting WB Games. Evaluate and recommend security solutions and tools that strengthen WB Games’ detection, response, and remediation capabilities. Handle security exceptions for global WB Games operations, ensuring proper documentation, approval, risk acceptance, and periodic review. Secure Development Partner with WB Games engineering and studio teams to integrate security throughout the software development lifecycle across GitHub and Perforce-based workflows. Drive adoption of secure development tooling and controls — including SAST, DAST, secrets management, dependency scanning, branch protections, and CI/CD guardrails — embedded directly into developer pipelines. Champion secure-by-design principles and threat modeling across game studios, live-service platforms, and online services. Lead application and product security reviews for new game launches, major releases, and live-service features prior to public exposure. The Essentials Executive presence, technical security expertise, business acumen, communication skills and alignment focus. Bachelor’s degree in computer science, Engineering, or other related discipline preferred or 10+ years of previous technical security experience. 10+ years of supervisory or management experience in a technical security environment. Strong technical engineering background, with the ability to engage credibly with software, infrastructure, and platform engineering teams on architecture, code, and operational decisions. Demonstrated experience securing the software development lifecycle, including hands-on familiarity with source control and build platforms used in games and media production, particularly GitHub and Perforce, and the ability to embed security controls (SAST/DAST, secrets management, branch protections, CI/CD guardrails) directly into developer workflows. Proven track record in vulnerability and threat remediation at scale, prioritizing exposures, driving root-cause fixes with engineering owners, and reducing time-to-remediate for both internet-facing and internal assets in fast-moving threat environments. Should possess proficiency in the technical aspects of cyber security, such as: Cloud infrastructure and concepts, specifically the security aspects thereof Application security topics such as the OWASP top 10. SIEM & logging tools Vulnerability Management and EDR/XDR toolsets. Network and Compute architectures Identity & Access Management and Privileged Access Management Solid knowledge of various regulatory requirements and information security control frameworks (ISO, NIST, PCI, GDPR, CCPA, SOX). Strong understanding of audit/risk management methodologies and regulatory requirements pertaining to information security, privacy and/or data security. Hands-on experience with security practices such as security incident response and risk management. Exceptional verbal and written communication skills, specifically the ability to communicate within the context of the intended audience, whether that be senior executives or highly technical engineering resources. Good understanding of Industry trends and emerging threats. Experience in leading projects leveraging global teams with matrix resources. Extensive experience in the information security field designing and implementing enterprise security solutions in a global context. The Nice to Haves Experience in providing Cybersecurity services and modeling for Media, Broadcast & Entertainment companies. Security certifications are a plus (CISSP, CISM, CISA, SANS, etc.) How We Get Things Done… This last bit is probably the most important! Here at WBD, our guiding principles are the core values by which we operate and are central to how we get things done. You can find them at along with some insights from the team on what they mean and how they show up in their day to day. We hope they resonate with you and look forward to discussing them during your interview. Championing Inclusion at WBD Warner Bros. Discovery embraces the opportunity to build a workforce that reflects a wide array of perspectives, backgrounds and experiences. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law. If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request. In compliance with local law, we are disclosing the compensation, or a range thereof, for roles in locations where legally required. Actual salaries will vary based on several factors, including but not limited to external market data, internal equity, location, skill set, experience, and/or performance. Base pay is just one component of Warner Bros. Discovery’s total compensation package for employees. Pay Range: $177,170.00 - $329,030.00 salary per year. Other rewards may include annual bonuses, short- and long-term incentives, and program-specific awards. In addition, Warner Bros. Discovery provides a variety of benefits to employees, including health insurance coverage, an employee wellness program, life and disability insurance, a retirement savings plan, paid holidays and sick time and vacation. If you’re a qualified candidate with an arrest or conviction record, please know that your application will be considered in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. Warner Bros. Discovery, a premier global media and entertainment company, offers audiences the world's most differentiated and complete portfolio of content, brands and franchises across television, film, streaming and gaming. The new company combines WarnerMedia's premium entertainment, sports and news assets with Discovery's leading non-fiction and international entertainment and sports businesses.