COVID-19 UPDATE: As our company responds to COVID-19, the health and safety of our communities—including our employees and those considering a career at WarnerMedia—remains our top priority. If you have submitted an application, rest assured that your resume will be reviewed by our recruiting team, it just may take some time as we face this unprecedented situation. We appreciate your understanding and flexibility with any adjustments to our interviewing process. Stay safe and healthy.

Sr. Manager, Risk Management

New York, New York, Atlanta, United States, Georgia, Burbank, United States, California, United States
Full Time
Requisition ID: 177788BR

Share this job

Twitter LinkedIn Copy Link
The Job
Do you want to be part of designing, implementing, and operating a lean and modern risk management program that drives risk assessment, treatment, and acceptance processes intended to help technology functions identify and mitigate information-security related risks? Do you enjoy identifying and assessing the security risks associated with large-scale systems implementations and helping to identify solutions toward mitigating those risks? If so, this is the right opportunity for you! This position is responsible for establishing, enhancing, running, and continuously improving a risk management program for WarnerMedia.

The Daily
  • This includes processes to identify, evaluate, treat, and communicate risk related to information security.
  • They will identify and track high-risk assets/hosts and prioritization of controls applied to those assets.
  • They will track and manage risk by developing and maintaining a risk register and linking it to responsible groups within the organization and the critical assets list.
  • Their role will influence controls, governance, and investment in technologies.
  • In order to effectively and efficiently identify and evaluate risks, this position is responsible for building and maintaining internal relationships to ensure alignment and partnership with key stakeholders across the Studio.
  • This person will leverage these relationships to participate in projects in order to ensure governance requirements are being considered and mitigated within the design and implementation of systems across the company.
  • They will also be responsible for the risk exceptions process by evaluating all policy exceptions, proposing recommendations for mitigating controls, evaluating residual risk, and making recommendations to senior leadership.
  • This person will also develop dashboards and reports to effectively and efficiently communicate and track risk and remediation activities that will ultimately be reported the WM Information Security Risk Committee (IRC).

The Essentials
  • Total +10 years of experience Minimum 4 years risk management experience
  • Minimum 4 years of experience in Information Security
  • Experience with SOX, GDPR/ CCPA, and PCI DSS
  • Understanding of ISO, NIST, and other industry standards in Information Security, Privacy, and IT Compliance
  • Experience building and maturing complex programs from scratch
  • Experiencing staging transformational maturity for complex programs
  • Bachelor's degree in Management Information Systems or related discipline preferred
  • At least one security certification is preferred (CISSP, CISM, CISA, GSEC, GISF, GPEN, GWAPT, GCIH, GCIA or GCUX or equivalent)

The Perks

Warner Media, LLC and its subsidiaries are equal opportunity employers. Qualified candidates will receive consideration for employment without regard to race, color, religion, national origin, gender, sexual orientation, gender identity or expression, age, mental or physical disability, and genetic information, marital status, citizenship status, military status, protected veteran status or any other category protected by law.