Warner Bros. Discovery
New York, NY
Hybrid

Application Security Engineer

Sorry, this job was removed at 11:27 a.m. (EST) on Tuesday, March 26, 2019
Find out who's hiring in Greater NYC Area.
See all Cybersecurity + IT jobs in Greater NYC Area
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Position Summary

Web Application Security Developer / Architect will work closely with Global Information Security, Discovery’s Broadcast, Digital, and Infrastructure teams to design, deploy appropriate, risk-based security safeguards and technical application security controls.

 

This position can be located in New York, New York or Sterling, Virginia.

Responsibilities

1. Evaluate, deploy and support application security technologies, processes and workflows on multiple platforms (e.g., Server/Client, Mobile, Tablet, etc.)
2. Conduct application security risk assessment, analysis, and monitoring as needed 
3. Research/communicate emerging cybersecurity threats and zero-day vulnerabilities/exploits
4. Develop and execute security assessment test plans, document and present results to customers
5. Review developers’ codes, provide feedback and perform security and risk assessment for consumer facing applications, services, and future technology 
6. Create/make pull requests to review and merge code in Git/GitHub or similar DVCS
7. Monitor and maintain real-time monitoring infrastructure and assessment toolkits as needed
8. Perform design analysis, review, piloting, and selection of security technologies that meet specified application/business requirements
9. Identify and define application security requirements and security baselines for the various classes of assets and environments in use at Discovery or its partners
10. Identify and address Information Security control gaps, abnormal behavior patterns and attack techniques to enhance the security program and safeguard the Discovery environment
11. Work collaboratively and proactively across the organization (e.g., Technical Architects/Leads, Product managers, Digital Media Program (AGILE) Teams, etc.) to support and remediate security gaps
12. Review Technical Architecture and Delivery for Web and other Client Delivery Platforms
13. Understand and recommend security controls for the rapid development of consumer facing prototypes to identify technical options and inform architectural approaches
14. Identify and recommend best-of-breed security stack and controls for interactive consumer experiences across web and mobile devices. (i.e., project, customer, and vendor management skills)

Requirements

* Ex- NSA/TAO, former penetration testers, or people with significant experience of work in vulnerability research (WEB-app focused).
* 4+ years of cybersecurity architecture and/or application security (appsec, netsec), with a Bachelor’s degree or higher in related field
* Broad knowledge of IT Security technologies, process, and techniques and a strong understanding of application security leading practices including OWASP and CWE.
* Extensive experience in code reviews, business logic assessment, and application security testing
* Experience deploying cybersecurity solutions in a public cloud environment (IaaS, PaaS, SaaS)
* Familiar with application security tools like BurpSuite Pro, SAST, DAST, nmap, Metasploit, and Kali Linux, etc. 
* Experience in 3rd-party testing tools such as Veracode, WhiteHat, etc., is preferred
* Experience working with and coding in Python, Node.js, JavaScript, Go, Ruby, PowerShell, Bash, and Scala. (SDK and RESTful API design/development is preferred) 
* Experience in secure coding and software development in various languages (C#, .NET, Java etc.)
* Experience working with Agile development/Scrum teams, and enthusiastically incorporate security stories/requirements into SDLC (CI/CD) with product owners/managers 
* Familiarity with HTML/CSS, JavaScript and UI/UX design and software quality assurance principles
* Excellent knowledge of software and application design and architecture 
* Strong Knowledge of TCP/IP, DNS, HTTP, HTTPS, VPN, SQL and other database technologies
* Experience with Unix/Linux and Windows operating systems in an Active Directory environment
* Experience with endpoint security and SIEM technologies such as ESET, Splunk ES, QRadar, etc. 
Experience working in a large government or corporate enterprise environment
* Excellent communication and presentation abilities with great attention to detail
* CISSP, CEH, GWAPT, or OSCP certifications are highly desired
* Must have the legal right to work in the United States

See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.

What are Warner Bros. Discovery Perks + Benefits

Warner Bros. Discovery Benefits Overview

Warner Bros Discovery offers a comprehensive set of benefits and perks to support employees in their personal and professional lives. Some program highlights include:

• Local medical, dental, and vision programs in many countries around the world.
• On-site wellness and fitness centers across several of our office locations.
• Family support programs. In the U.S., additional services include on-site childcare in certain offices, backup childcare services, family caregiver leave, adoption, surrogacy, and cryopreservation assistance, and more.
• Tools and resources to support the mental wellbeing of our employees and their dependents, including mental health counselors and 24/7 access to free, confidential support through our Employee Assistance Program administrators.
• Products and services to support financial wellbeing including financial planning tools, and a 401(k) savings plan in the U.S.
• Flexible work arrangements around the globe, allowing employees to better balance work and personal commitments.
• Global learning, leadership & organization programs to inspire, equip, and empower our people to thrive. These programs and resources are accessible to everyone at whatever stage they are in their career.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Employee resource groups
Employee-led culture committees
Hybrid work model
In-person all-hands meetings
Summer hours
Employee awards
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Diversity employee resource groups
Hiring practices that promote diversity
Diversity recruitment program
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Team workouts
Mental health benefits
Transgender health care benefits
Wellness days
Abortion travel benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Charitable contribution matching
Pay transparency
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
Family medical leave
Adoption Assistance
Company sponsored family events
Fertility benefits
Vacation & Time Off Benefits
Unlimited vacation policy
Paid volunteer time
Sabbatical
Paid holidays
Paid sick days
Flexible time off
Bereavement leave benefits
Company-wide vacation
Office Perks
Commuter benefits
Free snacks and drinks
Company-sponsored happy hours
Onsite office parking
Relocation assistance
Home-office stipend for remote employees
Meditation space
Mother's room
Onsite gym
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Lunch and learns
Promote from within
Mentorship program
Continuing education stipend
Online course subscriptions available
Customized development tracks
Paid industry certifications
Personal development training
Virtual coaching services

More Jobs at Warner Bros. Discovery

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Warner Bros. DiscoveryFind similar jobs like this