Sony
Overview
Senior Analyst, Security Compliance role at
Sony
Corporation of America (SCA), located in New York, NY. This position is remote and reports to the GSIRT IT Operations and Security Associate Director within the Corporate Information Security Division (CISD) Global Security Incident Response Team (GSIRT). Job Responsibilities
Drive enterprise-wide security compliance strategy and risk governance framework for GSIRT, ensuring alignment with organizational objectives while addressing emerging threats and regulatory requirements. Track policy implementation and ensure it is reflected in standard operating procedures and practices within GSIRT, including verification processes and frequency. Serve as a trusted advisor on security compliance programs, providing guidance on program evolution based on industry best practices and organizational needs; deliver insights to executive leadership with actionable recommendations to reduce risk and strengthen security posture. Report regularly on Security Compliance, Risk Management, and Vulnerability Management status with recommendations to accelerate mitigations; reports may go to Senior Management Team of CISD and to the Vice President of GSIRT. Coordinate with System Administrators and Owners within CISD on responses to vulnerabilities, risk assessment results, and security findings; act as central coordinator for cybersecurity risk mitigations from identification to follow-up actions to prevent recurrence. Operationalize and continuously improve a structured Security Compliance and Risk Management program based on ongoing information and best practices. Qualifications
Either 10 years of experience in cybersecurity, security compliance, risk management or a related IT/security field, or a four-year degree with at least 6 years of applicable experience. Knowledge of security compliance, risk management, vulnerability management, and IT service management principles. Certification such as CISSP or Security+ or other applicable certification; practical applicability is highly desired. Experience with IT programs and program modifications over time. Experience working with Qualys and Splunk is a plus. Strong proficiency in Microsoft Office Suite; excellent verbal and written communication, organizational, and critical-thinking skills. Attention to detail, ability to handle sensitive information, and capability to work with both technical personnel and executive leadership. Proactive, self-starter with the ability to manage multiple tasks in independent and collaborative environments. Authorized to work in the USA with occasional travel. Salary and Benefits
The anticipated annual base salary for this position is
$140,000 - $150,000 , plus an annual bonus target of
13% . This range does not include other compensation components or benefits. Actual base salary offered depends on factors including qualifications, experience, skills, education, certifications, and location. Benefits and Programs
Sony offers a comprehensive benefits program including medical, dental, vision, life insurance, disability coverage, employee assistance, fertility and adoption benefits, 401(k) with company match, education assistance, and other voluntary benefits. Additional programs include flexible work arrangements, paid time off, holidays, and various employee resource groups. Disability and Equal Opportunity
All qualified applicants will receive consideration for employment without regard to any protected basis under applicable law. Sony provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. For accommodation requests, contact careers@sonyusa.com or mail to Sony Corporation of America, Human Resources Department, 25 Madison Avenue, New York, NY 10010. Please indicate the position you are applying for.
#J-18808-Ljbffr
Senior Analyst, Security Compliance role at
Sony
Corporation of America (SCA), located in New York, NY. This position is remote and reports to the GSIRT IT Operations and Security Associate Director within the Corporate Information Security Division (CISD) Global Security Incident Response Team (GSIRT). Job Responsibilities
Drive enterprise-wide security compliance strategy and risk governance framework for GSIRT, ensuring alignment with organizational objectives while addressing emerging threats and regulatory requirements. Track policy implementation and ensure it is reflected in standard operating procedures and practices within GSIRT, including verification processes and frequency. Serve as a trusted advisor on security compliance programs, providing guidance on program evolution based on industry best practices and organizational needs; deliver insights to executive leadership with actionable recommendations to reduce risk and strengthen security posture. Report regularly on Security Compliance, Risk Management, and Vulnerability Management status with recommendations to accelerate mitigations; reports may go to Senior Management Team of CISD and to the Vice President of GSIRT. Coordinate with System Administrators and Owners within CISD on responses to vulnerabilities, risk assessment results, and security findings; act as central coordinator for cybersecurity risk mitigations from identification to follow-up actions to prevent recurrence. Operationalize and continuously improve a structured Security Compliance and Risk Management program based on ongoing information and best practices. Qualifications
Either 10 years of experience in cybersecurity, security compliance, risk management or a related IT/security field, or a four-year degree with at least 6 years of applicable experience. Knowledge of security compliance, risk management, vulnerability management, and IT service management principles. Certification such as CISSP or Security+ or other applicable certification; practical applicability is highly desired. Experience with IT programs and program modifications over time. Experience working with Qualys and Splunk is a plus. Strong proficiency in Microsoft Office Suite; excellent verbal and written communication, organizational, and critical-thinking skills. Attention to detail, ability to handle sensitive information, and capability to work with both technical personnel and executive leadership. Proactive, self-starter with the ability to manage multiple tasks in independent and collaborative environments. Authorized to work in the USA with occasional travel. Salary and Benefits
The anticipated annual base salary for this position is
$140,000 - $150,000 , plus an annual bonus target of
13% . This range does not include other compensation components or benefits. Actual base salary offered depends on factors including qualifications, experience, skills, education, certifications, and location. Benefits and Programs
Sony offers a comprehensive benefits program including medical, dental, vision, life insurance, disability coverage, employee assistance, fertility and adoption benefits, 401(k) with company match, education assistance, and other voluntary benefits. Additional programs include flexible work arrangements, paid time off, holidays, and various employee resource groups. Disability and Equal Opportunity
All qualified applicants will receive consideration for employment without regard to any protected basis under applicable law. Sony provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. For accommodation requests, contact careers@sonyusa.com or mail to Sony Corporation of America, Human Resources Department, 25 Madison Avenue, New York, NY 10010. Please indicate the position you are applying for.
#J-18808-Ljbffr