Manager, Cybersecurity Operations Center (CSOC)

Welcome to Warner Bros. Discovery... the stuff dreams are made of.

Who We Are...

When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD's vast portfolio of iconic content and beloved brands, are the storytellers bringing our characters to life, the creators bringing them to your living rooms and the dreamers creating what's next...

From brilliant creatives, to technology trailblazers, across the globe, WBD offers career defining opportunities, thoughtfully curated benefits, and the tools to explore and grow into your best selves. Here you are supported, here you are celebrated, here you can thrive.

• Deliver & Execution - Oversee and drive the implementation of security operations, support incident response investigations, and threat mitigation strategies to protect the organization's critical assets.
• Plans & Aligns - Guide teams in strategy, alignment, analysis, and execution, ensuring security priorities, objectives, and deliverables are met effectively.
• Develop Others - Provide leadership, mentorship, and coaching to the CSOC team, fostering skill development and career growth.
• Cross-Team Collaboration - Partner with security, IT, and business teams to reduce vulnerabilities, manage risk, and improve CSOC response capabilities.
• Monitor Emerging Threats & Industry Trends - Stay ahead of the evolving cyber threat landscape by integrating intelligence, hunting for advanced threats, and continuously improving detection methodologies
• Continuous Improvement - Enhance CSOC workflows, automation, and threat intelligence processes to strengthen security operations.

• Incident coordination by assignment of Work Streams and creation of reports
• Serve as the technical escalation point for the CSOC team.
• Provide ad-hoc training to team members.

• Perform CSOC maturity projects under the guidance of Cyber Operations Leadership
• Partner with Security Engineering teams to enhance features and capabilities within current security tooling.
• Create and update written policies and procedures.

• 6 - 8 years of relevant IT experience or equivalent demonstrable knowledge & skill set.
• Ability to think critically to solve problems with minimal guidance.
• Ability to perform comprehensive Incident, root cause analysis and write technical reports.
• The ability to conduct investigations on multiple operating systems such as Linux, iOS, and Windows.
• Experience performing manual log analysis from a variety of host-based and network-based sources.
• The ability to conduct security investigations without the assistance of pre-extracted data or pre-established queries across multiple platforms like a SIEM, OS CLI/Terminal, EDR tool, etc.
• Familiarity with Digital Forensics and Incident Response (DFIR) concepts.
• Experience participating in CIRT/CSIRT investigations.
• Knowledge of exploits, vulnerabilities, malware families and common attack vectors.
• Effective in collaborating with teams in remote offices and multiple cultures across the globe.

• Intermediate and/or Advanced Security Certifications are a plus - CYSA+, CISSP, CFR, CHFI, GCIH, GCFA, or GNFA, PenTest+, OSCP, etc.