Cybersecurity Engineer III

Business Unit/Group:

IT Information Security Corp 010

Requisition Number:

32888-1

Intended Start Date:

4/8/2026

Contract Duration:

6-months Possibility For Extension / Conversion?

Possible Max Hourly Pay Rate:

$92.07/hr OT Required / Expected? No WB Games Resource(s)? No CNN Resource(s)? No What We Do/Project The Cloud Security Engineer is a hands-on technical security professional responsible for designing, implementing, and operating cloud security controls across Warner Bros. Discovery's public cloud environments, with a primary focus on Google Cloud Platform (GCP). Job Responsibilities / Typical Day in the Role

• Serve as a hands-on Cloud Security Engineer focused on securing enterprise-scale GCP environments.
• Design, implement, and operate cloud vulnerability management processes across compute, container, serverless, and platform services.
• Leverage and manage

CSPM/CNAPP

platforms (e.g., Wiz, Orca, Prisma Cloud) to identify misconfigurations, prioritize risk, and drive remediation efforts with engineering teams.

• Develop automation and security tooling using Python (preferred) or similar scripting languages to improve detection, remediation, and reporting capabilities.
• Partner with engineering and DevOps teams to integrate security controls into CI/CD pipelines and infrastructure-as-code workflows.
• Review and harden GCP configurations, including IAM, networking, logging, storage, and container environments.
• Support security assessments of AI/ML workloads and cloud-native data platforms; contribute to proof-of-concept initiatives related to AI/ML security where applicable.
• Collaborate with cross-functional teams to remediate vulnerabilities identified through CSPM tools, scanners, and cloud-native security services.
• Contribute to the development and maintenance of cloud security standards, configuration baselines, and operational documentation.
• Support multi-cloud security initiatives, including AWS and Azure environments where required.
• Stay current with emerging cloud threats, vulnerability trends, and advancements in cloud security tooling. o GCP Cloud Security Engineering & Hardening
• 15% o Cloud Vulnerability Management (analysis, prioritization, remediation coordination)
• 30% o

CSPM/CNAPP

Operations & Risk Reduction

• 10% o Security Automation & Python Development
• 15% o CI/CD & DevSecOps Integration
• 10% o Architecture Reviews & Engineering Collaboration
• 10% o AI/ML & Emerging Technology Security Support
• 5% o Documentation & Continuous Learning
• 5% Must Have Skills / Requirements 1) Strong knowledge and practical experience in Cloud Vulnerability Management a.

7+ years of experience; Vulnerability identification, prioritization, risk assessment, and remediation coordination across cloud workloads and services. 2) Demonstrated hands-on experience with AWS and GCP. a. 7+ years of experience; Cloud experience within a production environment. 3) Hands-on experience with at least one

CSPM/CNAPP

platform a. 3+ years of experience; (e.g., Wiz, Orca, Prisma Cloud, Lacework, or equivalent) Nice to Have Skills / Preferred Requirements 1) Cloud security certifications such as: a. GCP Professional Cloud Security Engineer b. AWS Security Specialty or Solutions Architect c. Azure Security Engineer or Solutions Architect 2) Experience with AI/ML platforms and securing machine learning workloads; prior proof-of-concept or project experience is a plus. 3) Knowledge of AWS and/or Azure security services and architecture. 4) Familiarity with Oracle Cloud Infrastructure (OCI). 5) Experience integrating security tooling with platforms such as Slack, Jira, and CI/CD pipelines. 6) Experience with SIEM and observability platforms (e.g., Splunk). 7) Azure Experience is a plus. 8) Experience with Brinqa.

Soft Skills:

1) Excellent written and verbal communication skills with the ability to collaborate effectively with engineering and security stakeholders.

Technology Requirements:

1) Demonstrated hands-on experience securing Google Cloud Platform (GCP) environments in production. 2) Strong knowledge and practical experience in Cloud Vulnerability Management, including vulnerability identification, prioritization, risk assessment, and remediation coordination across cloud workloads and services. 3) Hands-on experience with at least one

CSPM/CNAPP

platform (e.g., Wiz, Orca, Prisma Cloud, Lacework, or equivalent). 4) Proficiency in Python (preferred) or similar programming/scripting languages, with experience developing automation or security tooling. 5) Strong understanding of cloud IAM concepts, least-privilege access, and identity governance in GCP. 6) Solid understanding of cloud networking fundamentals, including VPC design, routing, segmentation, and secure connectivity patterns. 7) Experience securing containerized workloads and Kubernetes environments. 8) Familiarity with Infrastructure-as-Code (Terraform preferred) and secure configuration management practices. 9) Strong understanding of security principles, risk management, and compliance considerations in public cloud environments.

Education / Certifications

1) Bachelor's degree in Computer Science, Information Security, or related technical discipline, or equivalent practical experience. Interview Process / Next Steps 1) 1st round screening with Hiring Manager 2) 2nd round technical screening (1-hour) 3) 3rd round final screening by Senior Leadership Additional Notes

• Sourcing in VA
• Sterling.
• Hybrid role
• 3 days on-site. Please note that this is a contract role providing services to Warner Bros. Discovery through external staffing partners of Allegis Global Solutions. If you are selected for this role, you will be employed by AGS and will not be an employee of Warner Bros. Discovery. This role is eligible for the following benefits: Medical, dental & vision Hospital plans 401(k) Retirement Plan
• Pre-tax and Roth post-tax contributions available Life Insurance (Company paid Basic Life and AD&D as well as voluntary Life & AD&D for the employee and dependents) Company paid short and long-term disability Health & Dependent Care Spending Accounts (HSA & DCFSA) Employee Assistance Program Time Off/Leave(PTO, Allegis Group Paid Family Leave, Parental Leave Benefits are subject to change and may be subject to specific elections, plan, or program terms.

AGS is an Equal Opportunity Employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law. If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing process due to a disability, please email accommodation@allegisglobalsolutions.com for other accommodation options. In accordance with the Immigration Reform and Control Act of 1986, employment is contingent upon verification of identity and authorization to work in the United States. All persons hired will be required to complete Form I-9 and provide acceptable documentation as required by law. Please note that we may use artificial intelligence (AI) tools to screen, assess, or select applicants for this position. These tools may analyze application materials and assist our team in identifying candidates whose qualifications best match the requirements of the role. If you have questions about our use of AI in the hiring process, or would like more information, please contact us.

• We reserve the right to pay above or below the posted wage based on factors unrelated to protected classifications.

Individual compensation offered for this position within this range will depend on many factors, including qualifications, skills, relevant experience, job knowledge, geographic location, internal equity, and other pertinent job-related factors.

San Francisco Candidates only:

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. City of Los Angeles Candidates only: We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring.