Warner Bros. Discovery company image
Warner Bros. Discovery
Hybrid
View Profile
Jobs//Hybrid//Cybersecurity + IT//

Application Security Engineer- DTC

Sorry, this job was removed at 7:05 p.m. (EST) on Friday, May 31, 2019
View 273 Jobs
Find out who's hiring in Greater NYC Area.
See all Cybersecurity + IT jobs in Greater NYC Area
View 273 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Position Summary

The Application Security Engineer to work closely with Discovery’s Information Security and Direct-to-Consumer (DTC) teams on initiatives to protect data, services, and technology assets and to design, deploy appropriate, risk-based application security safeguards and technical application security controls.

 

This is a key role within the Information Security organization that will be focused on application security for our streaming media service and other supporting applications. The Application Security Engineer will be a valued partner to development and engineering teams to ensure secure architectures, patterns, and solutions are created and maintained. This person will work closely with Discovery’s DTC application teams and will build a community of practice with developers within DTC to support effective communication and collaboration. This person will be the subject matter expert for secure code development and will work with various application engineering teams to develop alternatives for remediation of vulnerabilities.

Responsibilities

1. Create and run secure code assessments with various application and services engineering teams
2. Run, maintain, and utilize security tools for the Appsec program, e.g., static and dynamic code analysis tools
3. Work with Red Teams and penetration testers to facilitate exercises and work with application developers and engineering teams on remediation
4. Assist with code reviews
5. Review and contribute to application designs and solutions
6. Participate in information security operations duties, including occasional incident response escalations
7. Perform risk and threat assessments
8. Evaluate and support application security technologies, processes and workflows on multiple platforms (e.g., Server/Client, Mobile, Tablet, etc.)
9. Develop and execute security assessment test plans
10. Collaborate with development teams to ensure secure coding best practices are followed
11. Review developers’ codes, provide feedback and perform security and risk assessment for consumer-facing applications, services, and future technology
12. Create/make pull requests to review and merge code in Git/GitHub or similar DVCS
13. Identify and define application security requirements and security baselines for the various classes of assets and environments in use at Discovery or its partners
14. Work collaboratively and proactively across the organization (e.g., Technical Architects/Leads, Product managers, Digital Media Program (AGILE) Teams, etc.) to support and remediate security vulnerabilities 
15. Understand and recommend security controls for the rapid development of consumer-facing prototypes to identify technical options and inform architectural approaches
16. Identify and recommend best-of-breed security stack and controls for interactive consumer experiences across web and mobile devices. (i.e., project, customer, and vendor management skills)

Requirements

* 4+years’ experience with application security
* Experience in application development with at least one modern programming language
* Knowledge of OWASP
* Knowledge of DevOps and Agile methods
* Hands on experience performing code reviews and with associated applications such as static and dynamic code analysis tools 
* Knowledge of web application architectures
* Knowledge of threat modeling
* Broad knowledge of IT Security technologies, process, and techniques and a strong understanding of application security leading practices including OWASP and CWE.
Experience in code reviews, business logic assessment, and application security testing 
* Experience w/public cloud environments (IaaS, PaaS, SaaS)
* Familiar with application security tools like BurpSuite Pro, SAST, DAST, nmap, Metasploit, and Kali Linux, etc.
* Experience in secure coding and software development in various languages (C#, .NET, Java etc.)
* Experience working with Agile development/Scrum teams, and enthusiastically incorporate security requirements into SDLC (CI/CD) with product owners/managers
* Familiarity with HTML/CSS, JavaScript and UI/UX design and software quality assurance principles
* Excellent communication and presentation abilities with great attention to detail
* Other security experience such as application security incident handling, secure architecture, information security operations, GRC, etc. preferred
* Experience working with and coding in Python, Node.js, JavaScript, Go, Ruby, PowerShell, Bash, and Scala. (SDK and RESTful API design/development is preferred)
* Cloud technology, specifically AWS preferred

* Must have the legal rihgt to work in the United States

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Ameya Karvir
Vice President of Data Science and Analytics
ON THE CUTTING EDGE
Keeping at the forefront of content consumption
Karvir and co. use data-rich insights to deliver experiences that will resonate, such as fine-tuning streaming personalization or suggesting relevant content for web visitors. “With the whole aspect of personalization, we are catering to every single individual on their device,” he said. To continue leading in their field, he prioritizes adaptability among teammates as a key attribute in navigating an oft-evolving industry.
Karvir and co. use data-rich insights to deliver experiences that will resonate, such as fine-tuning streaming personalization or suggesting relevant content for web visitors. “With the whole aspect of personalization, we are catering to every single individual on their device,” he said. To continue leading in their field, he prioritizes adaptability among teammates as a key attribute in navigating an oft-evolving industry.
My team operates as a mini R&D center and brings forth what we find useful. It’s all about speed, research, exploration and how we make it actionable.
Ameya Karvir
Vice President of Data Science and Analytics
Melanie Lantin
Vice President of Product Design and User Research – Consumer Digital Products
PILLARS OF SUPPORT
Leaders don’t just manage, but empower
At her first design review for home brand Magnolia, Lantin noticed something she described a rarity: The audience was overwhelmingly female. “It was really refreshing that Magnolia, with Joanna Gaines at the helm, already prioritized female leadership and vision,” she said. For Lantin, this powerful realization underscored the broader culture of support and empowerment, which she expands on by mentoring colleagues.
At her first design review for home brand Magnolia, Lantin noticed something she described a rarity: The audience was overwhelmingly female. “It was really refreshing that Magnolia, with Joanna Gaines at the helm, already prioritized female leadership and vision,” she said. For Lantin, this powerful realization underscored the broader culture of support and empowerment, which she expands on by mentoring colleagues.
I make sure I’m available to all my team members and know that I can offer a specific type of help or mentorship to the women on my team by giving them all of the tools that can help them navigate their careers.
Melanie Lantin
Vice President of Product Design for Magnolia Direct-to-Consumer
Martin Ma
Group Vice President, Engineering
PEOPLE-DRIVEN TECH
Staying focused on the human element
Steering engineering for brands such as Food Network Kitchen as well as Discovery websites, Ma helps the organization scale in a fast-moving space. But, for Ma — who embraces a “lean startup” mindset — the challenges transcend tech. “It’s all about people. We build a team of subject matter experts who know areas of a product inside-out, while everyone on the team understands the bigger picture,” he said.
Steering engineering for brands such as Food Network Kitchen as well as Discovery websites, Ma helps the organization scale in a fast-moving space. But, for Ma — who embraces a “lean startup” mindset — the challenges transcend tech. “It’s all about people. We build a team of subject matter experts who know areas of a product inside-out, while everyone on the team understands the bigger picture,” he said.
Engineering problems are always people problems, and there’s nothing a great team of empowered engineers can’t solve.
Martin Ma
Vice President of Technology

What are Warner Bros. Discovery Perks + Benefits

Warner Bros. Discovery Benefits Overview

Warner Bros Discovery offers a comprehensive set of benefits and perks to support employees in their personal and professional lives. Some program highlights include:

• Local medical, dental, and vision programs in many countries around the world.
• On-site wellness and fitness centers across several of our office locations.
• Family support programs. In the U.S., additional services include on-site childcare in certain offices, backup childcare services, family caregiver leave, adoption, surrogacy, and cryopreservation assistance, and more.
• Tools and resources to support the mental wellbeing of our employees and their dependents, including mental health counselors and 24/7 access to free, confidential support through our Employee Assistance Program administrators.
• Products and services to support financial wellbeing including financial planning tools, and a 401(k) savings plan in the U.S.
• Flexible work arrangements around the globe, allowing employees to better balance work and personal commitments.
• Global learning, leadership & organization programs to inspire, equip, and empower our people to thrive. These programs and resources are accessible to everyone at whatever stage they are in their career.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Employee resource groups
Employee-led culture committees
Hybrid work model
In-person all-hands meetings
Summer hours
Employee awards
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Diversity employee resource groups
Hiring practices that promote diversity
Diversity recruitment program
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Team workouts
Mental health benefits
Transgender health care benefits
Wellness days
Abortion travel benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Charitable contribution matching
Pay transparency
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Company sponsored family events
Fertility benefits
Vacation & Time Off Benefits
Unlimited vacation policy
Paid volunteer time
Sabbatical
Paid holidays
Paid sick days
Flexible time off
Bereavement leave benefits
Company-wide vacation
Office Perks
Commuter benefits
Free snacks and drinks
Company-sponsored happy hours
Onsite office parking
Relocation assistance
Home-office stipend for remote employees
Meditation space
Mother's room
Onsite gym
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Lunch and learns
Promote from within
Mentorship program
Continuing education stipend
Online course subscriptions available
Customized development tracks
Paid industry certifications
Personal development training
Virtual coaching services
View full list of perks + benefits
Photo Gallery

More Jobs at Warner Bros. Discovery

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Warner Bros. DiscoveryFind similar jobs like this