M+E Technology Job Board

Sr. Info Security Analyst

  • Full Time
  • Burbank, CA
  • Applications have closed

Warner Bros. Entertainment Group

Company Overview

Warner Bros. has been entertaining audiences for more than 90 years through the world’s most-loved characters and franchises. Warner Bros. employs people all over the world in a wide variety of disciplines. We’re always on the lookout for energetic, creative people to join our team.

Business Unit Overview

WB Technology combines Warner Bros.’ industry-leading technologists and disciplines to ensure global alignment with business strategy and accelerated delivery of innovative technology solutions studio- and industry-wide. From pre-production through archiving, the WBT organization will provide critical business and technology intelligence and services to all Studio business units. WBT manages the Studio’s enterprise systems and solutions, emerging platforms, information security, consumer intelligence, content mastering and delivery, and more.

Posting Job Description

What part will you play?

Warner Bros. Technology seeks a Sr. Information Security Analyst II for the Information & Content Security: Security Ops & IR department. This position supports Warner Bros. Information and Content Security (I&CS) team in collaboration with Warner Bros. business units, 3rd party vendors and the Security Operations Center. The position provides technical investigation of events escalated by other groups and emergency response to information security incidents. This position also helps develop and implement the I&CS red team program to assess WB information security from an adversarial perspective and help identify gaps in processes, policies and technology.

Security Incident Response
​Develop and implement improved tools, processes and procedures for incident response.
Assess the readiness and reliability of network monitoring, logging and data capture systems commonly utilized in response to security incidents.
Assess event data presented by security operation center (SOC) or other staff to identify risks and potential impacts to WB assets.
Respond to information security incidents by conducting analysis of logs, packet captures, system images, malicious code or scripts and other data.
Assist in providing security requirements for new systems and process that will impact information security.
Gather and compile data during incidents to deliver reports and/or metrics.
Research product and technical data for ongoing projects.
Assist in the development and implementation of information security plans and projects in support of the I&CS Red Team program.
Participate in other projects and assigned tasks as directed by CISO.

What do we require from you?

Bachelor’s degree in Computer Science, Engineering or related discipline preferred.
Two security certifications required (Security +, Linux +, GCIA, GCIH or equivalent).
CISSP or equivalent preferred.
Minimum three (3) years of experience in Information Security.
Minimum three (3) years of experience with TCP-based networking.
Minimum three (3) years of experience with Unix and Windows system administration.
Minimum two (2) years of experience in support of Security systems preferred.
Technical Knowledge/Skills in the following areas:
Unix/Linux, Python and programming experience are required.
Experience with Intrusion Detection Systems required (Cisco Firepower, Source Fire).
Experience with firewalls required (Palo Alto and Cisco).
Experience with scripting & programming languages: Perl, Python, Bash, PowerShell.
Experience in automating data extraction and log analysis using regex and scripting is required.
Experience with triaging information security events and responding to incidents is required.
Experience in Linux system administration is required.
Experience with Windows system administration is required.
Understanding of commonly used protocols and services is required (e.g. SSL, TCP/UDP, WWW, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc.).
Understanding of networking hardware; routers, switches, and load-balancers, F5.
Understanding of network protocols and architecture (TCP/IP, ATM, WAN, Bridges, etc.…) is required.
Understanding of virtual networking hardware including VMware Vsphere, ESXi 4.x is preferred.
Experience with securing cloud-based solutions (e.g. Amazon AWS, MS Azure, Level 3, Akamai, etc.…).
Experience securing remote operating systems and applications.
Functional Knowledge/Skills in the following areas:
Experience in one (1) or more information security domain is required.
Experience with media, production and post production digital media systems and services is preferred.
Experience with on-line and mobile gaming systems is preferred.
Experience with ITIL based change methodology.
General Knowledge/Skills required:
Strong project management skills; including project planning, project design, resource allocation, utilization analysis, etc.
Strong client management and communication skills.
Must be able to effectively manage a number of projects and priorities in parallel.
Working knowledge of networks and data center standards and procedures.
Other Requirements:
Must be able to communicate effectively and tactfully with all levels of personnel, both in person and on the telephone.
Must be able to pay close attention to complex detail and understand written and oral instructions.
Must be able to organize and schedule work effectively.
Must be able to work well under time constraints.
Must be able to handle multiple tasks with changing priorities, communicating changes in scope and schedule to all parties concerned.
Must be service-oriented.
Must be able to work independently.
Must be able to work flexible hours, including possible overtime, when necessary.
Must be able to maintain confidentiality.