Posting Job Description
What part will you play?
Warner Bros. Technology seeks an Engineer II, Information Security for the Information & Content Security department. This position is a key member of the Warner Bros Security Incident Response Team (SIRT).
Primary responsibilities include coordinating with security operations center (SOC) staff to assess and triage events for potential escalation, responding to incidents, managing vendors providing technical incident response services, providing network and system forensics in support of investigations and assessing tools and services to be used in security incident response activities. Lastly, this position will plan and conduct Red Team activities within WB networks in order to test the effectiveness of detection controls and SOC operations.
Security Incident Response
Assessing and triaging potential security incidents
Responding to high impact security incidents
Intrusion detection and malicious software analysis
Windows and Unix security vulnerability assessments and penetration testing
Network perimeter device and system log analysis
Programming and scripting using Python, Linux shell scripts, regex, etc.
Maintenance of information security services
Research product and technical data for ongoing projects
Propose and implement penetration testing activities in support of Red Team Initiatives
Participate in projects, planning, controlling, executing and closing assigned projects to produce required deliverables
What do we require from you?
Bachelor's degree in Computer Science, Engineering or related discipline preferred.
Two security certifications required: GSEC, GPEN, GWAPT, GCIH, GCIA, GCFA, GCUX, GREM, GSNA preferred).
CISSP or equivalent preferred.
Minimum five (5) years of experience in Information Security.
Minimum five (5) years of experience with TCP-based networking.
Three (3) years of Unix and Windows system administration preferred.
Technical Knowledge/Skills in the following areas:
UNIX, C, HTML, PERL and CGI programming experience are required
Experience with Intrusion Detection Systems required (snort, Bro preferred)
Experience with firewalls required (Palo Alto, Netscreen, Juniper and Cisco preferred)
Experience with Security Incident Response is required
Experience with Security Risk Management is required
Experience in Linux system administration is required
Experience with Windows system administration is required
Understanding of commonly used protocols and services is required (e.g. SSL, DNS, TCP/UDP, WWW, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc.)
Understanding of networking hardware; routers, switches, and load-balancers, particularly Brocade/Foundry and Cisco products is required
Understanding of network protocols and architecture (TCP/IP, ATM, WAN, Bridges, etc) is required
Understanding of virtual networking hardware including VMware Vsphere, ESX preferred
Experience with securing cloud-based solutions is desirable (e.g. Amazon AWS, Azure, Level 3, Akamai, etc)
Experience securing remote operating systems and applications are preferred
Experience with version control systems is preferred
Functional Knowledge / Skills in the following areas:
Experience in three or more information security domains is required
Experience with media, production and post production digital media systems and services is preferred
Experience with on-line and mobile gaming systems is preferred
General Knowledge / Skills required:
Strong project management skills; including project planning, project design, resource allocation, utilization analysis, etc.
Strong client management and communication skills
Must possess the ability to meet deadlines and manage personnel in an efficient manner
Must be able to effectively manage a number of projects and priorities in parallel
Working knowledge of networks and data center standards and procedures
Warner Media Group