Sr Application Security Engineer

2 Weeks ago • 5-7 Years
Sign up and Unlock PRO benefits for FREE!

About the job

SummaryBy Outscal

Secure PlayStation's infrastructure by collaborating with engineers, performing penetration testing, and managing vulnerabilities. 5+ years of infosec experience, strong knowledge of application security, and expertise in various technologies are essential.

Why PlayStation?

PlayStation isn’t just the Best Place to Play — it’s also the Best Place to Work. Today, we’re recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation®5, PlayStation®4, PlayStation®VR, PlayStation®Plus, acclaimed PlayStation software titles from PlayStation Studios, and more.

PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation, technology, and play to explore our open positions and join our growing global team.

The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Corporation.

Do you want to help bring PlayStation technology to a worldwide audience? Are you passionate about securing infrastructure that constantly pushes the boundary of the gaming industry? Are you ready to work with innovative technology, forward-thinking engineers, and a passionate security team? If so, join us!

 

You will get the opportunity to be part of our proactive defense team that is focusing on vulnerability management, use-case based penetration testing, working with our bug bounty program and handling security incidents on our services and clients.

 

Key Responsibilities

  • Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC).

  • Perform validation of security controls to ensure alignment with compliance and industry best practices.

  • Perform manual security testing of products and services to proactively discover vulnerabilities and track them to resolution with developers.

  • Working with vulnerabilities identified by our SAST, SCA, DAST tools, from triage to remediation of valid findings with our development organizations.

  • Investigate and triage vulnerabilities reported from Responsible Disclosure program.

  • Effectively communicate and work with development teams, guiding them in the remediation of security issues detected in their applications, services and other areas

  • Determine and recommend remediation guidelines for vulnerabilities to developers and other technical audiences
     

Qualifications

  •  5+ years previous experience in information security

  • 3+ years of penetration testing (or related) experience

  • 2+ years’ experience working within software development

  • Bachelor’s degree in Computer Science/Information Security/Cyber Security or equivalent

  • Excellent written and oral communication skills, as well as social skills including the ability to articulate to both technical and non-technical audiences

  • Must have the ability to work both independently as well as collaborate with engineering teams and multi-task effectively

  • Strong understanding of application security weaknesses for various technologies including web applications, databases, and multi-tier applications

  • Ability to review source code and explain mitigation controls within source code for languages including, Java, Go, Python, C/C++, Scala etc

  • Experience with AWS technologies

  • Experience with application security scanning tools such as SAST, SCA and DAST

  • Experience with testing tools such as Burp Suite, OWASP ZAP, Appscan, Responder, Metasploit, PowerSploit, Wireshark, and other solutions
      

Desired Experience

  • Excellent analytical, evaluative, and problem-solving abilities

  • Self-driven and capable of assessing areas of responsibility for continuous improvement

  • Knowledge of automated attack tools and developing mitigation techniques

  • Hacker Mindset and always strives to think like an attacker

  • Cloud experience with Azure or Google Cloud Platform

  • Technical certifications within information security are a plus (OSCP or other SANS training such as GPEN, GWAPT, GXPN or equivalents)

  • Experience with C2 frameworks such as Cobalt Strike, Metasploit or Empire

  • Experience with different development methodologies such as Agile, DevOps etc

#LI-GM1

 Please refer to our Candidate Privacy Notice for more information about how we process your personal information, and your data protection rights.

 

At SIE, we consider several factors when setting each role’s base pay range, including the competitive benchmarking data for the market and geographic location.

Please note that the base pay range may vary in line with our hybrid working policy and individual base pay will be determined based on job-related factors which may include knowledge, skills, experience, and location. 

In addition, this role
is eligible for SIE’s top-tier benefits package that includes medical, dental, vision, matching 401(k), paid time off, wellness program and coveted employee discounts for Sony products. This role also may be eligible for a bonus package. Click here to learn more.

 

The estimated base pay range for this role is listed below.

$172,100 - $258,100 USD

Equal Opportunity Statement:

Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity, gender expression and gender reassignment), race (including colour, nationality, ethnic or national origin), religion or belief, marital or civil partnership status, disability, age, sexual orientation, pregnancy, maternity or parental status, trade union membership or membership in any other legally protected category.

We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond. 

PlayStation is a Fair Chance employer and qualified applicants with arrest and conviction records will be considered for employment.

$172.1K - $258.1K/yr (Outscal est.)
$215.1K/yr avg.
United States

About The Company

Want to take your career to the next level? Search open job vacancies at any of the Sony Interactive sites by visiting playstation.com/careers/


Sony Interactive Entertainment pushes the boundaries of entertainment and innovation, starting from the launch of the original PlayStation in Japan in 1994. Today, we continue to deliver innovative and thrilling experiences to a global audience through our PlayStation line of products and services that include generation-defining hardware, pioneering network services, and award-winning games. Headquartered in San Mateo, California, with global functions in California, London, and Tokyo, and game development studios around the world as part of PlayStation Studios, we believe that the power of play is borderless. Sony Interactive Entertainment is a wholly owned subsidiary of Sony Group Corporation.  


For more information about our company, please visit SonyInteractive.com. For more information about PlayStation products, please visit PlayStation.com.

California, United States (Hybrid)

California, United States (Hybrid)

England, United Kingdom (On-Site)

California, United States (Hybrid)

California, United States (Remote)

California, United States (Remote)

England, United Kingdom (Hybrid)

England, United Kingdom (Hybrid)

Worldwide (Remote)

California, United States (On-Site)

View All Jobs

Similar Jobs

Rockstar Games - Lead Data Security Engineer

Scotland, United Kingdom (On-Site)

Electronic Arts - Senior Security Engineer II

California, United States (Hybrid)

Character.AI - Security Engineer, Privacy

California, United States (On-Site)

Condé Nast Technology Lab - Application Security - Engineer IV

Karnataka, India (Hybrid)

Jobs in United States

Cold Iron Studios - Senior Technical Designer

United States (Remote)

Pragma - Service Operations Specialist

United States (Remote)

PeopleFun - Lead Game Designer, Wordscapes

United States (Remote)

Fantastic Pixel Castle - Senior Gameplay Engineer

United States (Remote)

Homa games - Senior Game Data Analyst

United States (Remote)

Trek - Ascend Accounting Specialist

United States (Remote)

PTW - Mid-Level Producer

United States (Remote)

Software Engineering Jobs

THE GAME - SENIOR COST CONTROLLER

England, United Kingdom (Hybrid)

Niantic - Senior Software Engineer

Zurich, Switzerland (Hybrid)

Patreon - Senior Backend Engineer, Notifications

New York, United States (Hybrid)

Patreon - Senior Backend Engineer, Notifications

California, United States (Hybrid)

skydance - Technical Director

California, United States (Hybrid)

Aristocrat Gaming - Software Engineer

Texas, United States (Hybrid)

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug