Manager, Application Security Engineer

Why PlayStation?

PlayStation isn’t just the Best Place to Play — it’s also the Best Place to Work. Today, we’re recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation®5, PlayStation®4, PlayStation®VR, PlayStation®Plus, PlayStation™Now, acclaimed PlayStation software titles from PlayStation Studios, and more.

PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation, technology, and play to explore our open positions and join our growing global team.

The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Corporation.

Manager, Application Security Engineer

San Diego, CA

Do you want to help bring PlayStation technology to a worldwide audience? Are you passionate about securing infrastructure that constantly pushes the boundary of the gaming industry? Are you ready to work with innovative technology, forward-thinking engineers, and a passionate security team? If so, join us!

Come lead a team of application security engineers working in multi-disciplined teams and with other engineering leaders in a fast-paced and fun environment.

This team develops in-house security solutions to store all scan results from multiple security scanners and test results, and provide APIs for CI/CD team to check the latest security review status so that CI/CD can break a build, if the result doesn’t meet release criteria.

Key Responsibilities

• Mentor, manage and hire a team of software engineers in the application security automation team.
• Draw from your own experience to guide the team to solve complex engineering assignments.
• Instill a spirit of continuous improvement in the team’s code, architecture, and processes.
• Help to set the engineering agenda through the technical product vision.
• Collaborate with other engineers, consultants and leadership to address issues during development and provide recommendations.
• Collaborate with the secure development lifecycle (a.k.a SDL) team to achieve an efficient / scalable SDL.
• Integrate security process into the development pipeline and work with engineering and business stakeholders to continue to automate security practices within application development.
• Perform validation of security controls to ensure consistency with compliance and industry standard methodologies.
• Ability to understand business requirements in SDL team and let team design and develop functions appropriately with wider angle view.
• High level of personal integrity, with the ability to professionally handle confidential matters, and reflect appropriate level of judgment as it pertains to security.
• Leading includes keeping better communication with other specialists and leadership in order to conduct other job duties in the above as a team.

Qualifications

• Leading teams of 4+ engineers.
• Experience with team building and mentoring engineers.
• 5+ years previous experience in information security.
• 2+ years experience working within software development.
• A bachelor’s degree in Computer Science/Information Security/Cyber Security or equivalent.
• Excellent written and oral communication skills, as well as social skills including the ability to articulate to both technical and non-technical audiences.
• Firm understanding of enterprise class application architectures that are highly scalable and reliable and the ability to secure them.
• Experience with multiple languages such as Java, Go, Python and Perl etc.
• Experience with AWS.

Desired Experience

• Leading a team of engineers in a global capacity
• Experience with multiple development methodologies such as Agile, DevOps etc.
• Software Engineering Experience
• Knowledge of Application Security Tools like SAST, SCA, DAST scanner
• Excellent analytical, evaluative, and problem-solving abilities.

#LI-CD1

Equal Opportunity Statement:

Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity, gender expression and gender reassignment), race (including colour, nationality, ethnic or national origin), religion or belief, marital or civil partnership status, disability, age, sexual orientation, pregnancy or maternity, trade union membership or membership in any other legally protected category.

We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond.