Warner Bros. Discovery is hiring: Manager, Cybersecurity Risk Management in Burb

Manager, Cybersecurity Risk Management Location: Burbank, CA (Hybrid schedule: 3 days onsite) Risk Oversight Develop and maintain a comprehensive cybersecurity risk management strategy aligned with business objectives. Lead enterprise-wide risk assessments and remediation activities. Collaborate with IT, legal, compliance, and business units to ensure risk mitigation strategies are embedded in operations. Monitor emerging threats and risk posture and activities accordingly. Present risk analysis, metrics, and mitigation plans to management and stakeholders. Identify risk and mitigating controls for risk exceptions based on adherence to relevant company policies, standards, baselines, and industry standards (e.g., GDPR, PCI, SOX). Mentor and develop junior risk analysts and cybersecurity professionals. Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations. Develop and maintain robust relationships, become a trusted partner with technologists, assessments teams, and stakeholders to facilitate cross‑functional collaboration and progress toward shared goals. Proactively monitor and evaluate risk exceptions and risk register processes, identify gaps, and recommend enhancements to strengthen risk posture. Assist InfoSec teams in developing and maturing their risk exceptions rejection and approval criteria. Drive adoption of enterprise‑wide risk assessment methodologies, frameworks, and tools. Collaborate with key stakeholders to enhance risk governance and ensure compliance with internal and regulatory requirements. Assist with the administration and maintenance of the ServiceNow GRC platform. Display and utilize advanced understanding of relevant SDLC methodologies, practices and compliance policies/procedures to assess risk exceptions criteria. Utilize prior experience in multiple IT disciplines and confirmed understanding of solution architecture, complex application systems design and platform integrations and various tech stacks during assessment of risk. Strategic Leadership, Business Partnership & Enablement Translate risk insights into strategic decisions and enterprise‑wide policies. Communicate effectively with leadership and stakeholders. Contribute to the design of cybersecurity strategies by advising on risk reduction priorities related to exception and risk register trends. Develop metrics to track exception remediation rates, approval / review rates, aging, and SLA compliance. Drive initiatives that reduce recurring exception requests through enterprise‑wide solutions. Engage with application, cloud, and infrastructure teams to promote remediation and risk ownership. Foster collaboration across business units to ensure alignment between risk mitigation and delivery priorities. Accountable for organizing and participating in, and/or leading meetings with various stakeholders across the company, and across the globe. Technical and experienced professionals who will ensure data and evidence meet remediation expectations and regulatory or policy requirements. Responsible for tracking tasks and projects, assessment status, and are able to effectively communicate risks and overall status to your management in a timely manner. Stay abreast of existing and upcoming projects to effectively plan your work. Make updates to the centralized risk exceptions list, issues log, and other key team documents, ensuring accuracy, attention to detail, and overall status. Assist in updating metrics and status updates on a regular basis for your Manager. Ability to partner with other team members, contribute to building a positive team culture, learn internal processes, and contribute to building effective deliverables. Analytics Monitor the effectiveness of the risk exceptions process in accordance with agreed upon metrics and performance measures to drive continuous improvements. Conduct root cause analysis on recurring issues to enhance process efficiency and reduce exception requests. Collaborate with cross‑functional teams to gather, interpret, and validate mitigating controls to ensure accuracy and relevance. Essentials 8+ years of experience in security risk, with at least 3 years in a risk management role, or similar function. Strong knowledge of cybersecurity frameworks, company policies, and regulatory requirements. Certifications such as CISSP, CISM, CRISC, or CISA highly preferred. Proven ability to communicate complex risk concepts to non‑technical stakeholders. Strong expertise across cloud (AWS, Azure, GCP), on‑premises, and application environments. Experience with tools such as ServiceNow, GRC tools, Power BI, and cloud technologies. Strong knowledge of risk frameworks (e.g., NIST, ISO, PCI, SOX, etc.). Bachelor’s degree in computer science, Engineering, IT, or related field. Strong analytical, quantitative, and qualitative skills with a detail‑oriented, critical thinking mindset. Strategic thinker with deep capability in applying risk principles to business environments. Creative problem solver with sound business judgment and a proactive approach to risk mitigation. Passion for accuracy and translating insights into compelling, high‑quality narratives. Exceptional communication skills—verbal, written, and visual—with fluency in English. Proven ability to translate complex technical concepts into plain language for decision‑makers. Positive influence with strong stakeholder engagement and relationship‑building abilities. Skilled in preparing polished deliverables that support informed decision‑making. Team player who builds trust across technical and non‑technical teams. Has 4+ years of experience managing and training staff. Demonstrated ability to work independently, adapt quickly, and drive tasks forward with limited direction. Strong project management and delegation skills across diverse, cross‑functional initiatives. Experience driving change to completion in dynamic, fast‑paced environments. Proven ability to identify and assess risks across business processes, operations, and technology projects. Deep understanding of business functions and ability to translate technical risk into business impact. Highly organized with the ability to manage multiple assignments in iterative environments. Committed to the highest standards of integrity, ethics, and professionalism. Produces clear, polished work products in both narrative and visual formats. Nice to Haves One or more of the following certifications: CISSP, CRISC, CISA. 5+ years of prior experience in a related field (media, entertainment, business development or streaming services industry experience a plus). Familiarity with streaming and similar products/services. 4+ years of Big 4 experience or in a related field (media, entertainment, business development or streaming services industry experience a plus). Experience working in a national or global company. Comfortable working in a highly iterative environment, both structured and unstructured. Risk mitigation experience with AWS and/or other Cloud Databases such as Azure, GCP, etc. Metrics and visualization tools knowledge a plus (i.e. Power BI, Tableau). Advanced user of Microsoft Office (Excel, PowerPoint, Word) to prepare all project plans, deliverables, presentations, reports, and findings. Additional Information On June 9, 2025, Warner Bros. Discovery announced plans to separate into two publicly traded companies, Warner Bros. and Discovery Global, with an expected completion in mid‑2026. For more details, including leadership appointments and information on individual brands, please visit our newsroom. Pay & Benefits Pay Range: $133,140.00 – $247,260.00 per year. Other rewards may include annual bonuses, short‑ and long‑term incentives, and program‑specific awards. Equal Employment Opportunity Statement Warner Bros. Discovery embraces the opportunity to build a workforce that reflects a wide array of perspectives, backgrounds and experiences. Being an equal opportunity employer means that we take seriously our responsibility to consider qualified candidates on the basis of merit, without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law. If you’re a qualified candidate with a disability and you require adjustments or accommodations during the job application and/or recruitment process, please visit our accessibility page for instructions to submit your request. In compliance with local law, we are disclosing the compensation, or a range thereof, for roles in locations where legally required. Actual salaries will vary based on several factors, including but not limited to external market data, internal equity, location, skill set, experience, and/or performance. Base pay is just one component of Warner Bros. Discovery’s total compensation package for employees. #J-18808-Ljbffr