[{"country_short": "USA", "city": "San Diego", "description": "Title: Security Analyst - SNEI - SD\nLocation: CA-San Diego\nSony Corporation of America, based in New York, NY, is the U.S. subsidiary of Sony Corporation, headquartered in Tokyo, Japan. Sony is a leading manufacturer of audio, video, communications, and information technology products for the consumer and professional markets. Its motion picture, television, computer entertainment, music and online businesses make Sony one of the most comprehensive entertainment and technology companies in the world.\n\nSony Network Entertainment (SNEI) is a division of the Networked Products and Services Group. Sony Network Entertainment was created to drive vision, strategy and execution for network services across the entire Sony Group, with a goal of offering consumers compelling, connected entertainment experiences across a variety of consumer electronics devices.\nSecurity Analysts are responsible for developing use cases that address enterprise needs and goals. This role oversees the content that shapes the nature and direction of how investigation, historical analysis, and remediation are conducted in the security operations center.\n\nQualifications:\n* \nIdentify and design use cases that address specific enterprise needs\n* \nEvaluate existing ESM standard content and use cases and adapt them to meet enterprise goals\n* \nDevelop and test new correlation content and use cases using ESM filters, rules, data monitors, active lists, and session lists\n* \nDevelop and test new monitoring tools using ESM active channels, dashboards, reports, and trends\n* \nDevelop and post knowledge base articles; develop Pattern Discovery profiles\n* \nGuide and mentor Level 1 Analysts in areas relevant to their job duties (e.g. honing Level 1 skills, assisting in investigations, making recommendations on job performance as needed)\n\n* 3 years working within the information security field, with emphasis on security operations, incident management, intrusion detection, firewall deployment, and security event analysis\n* \nExperience with security device installations, configuration and troubleshooting (e.g., firewall, IDS, etc.)\n* \nAbility to lead and communicate efficiently within a team environment\n* \nGreat customer service skills\n* \nAdvanced technical writing skills\n* \nDesired Experience:\n* \nWorking knowledge of SIEM technology, with ArcSight specific certification\n* \nProfessional certifications to include CISSP, SANS GIAC, PMP, etc.\n* Bachelor\u2019s degree preferred\n\nSony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to race, color, religion, gender, pregnancy, national origin, ancestry, citizenship, age, legally protected physical or mental disability, covered veteran status, status in the U.S. uniformed services, sexual orientation, marital status, genetic information or membership in any other legally protected category.\n\nWe strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond.\n\nWe sincerely appreciate the time and effort you spent in contacting us and thank you for your interest in SNEI.Job: Information Technology", "date_new": "2012-05-15 05:29:08", "url": "http://sony.jobs/xml/28694897/job", "country": "United States", "company": "Sony Electronics", "title": "Security Analyst - SNEI - SD", "reqid": "24528", "state": "California", "state_short": "CA", "location": "San Diego, CA", "uid": 28694897}, {"country_short": "USA", "city": "San Diego", "description": "Title: Security Analyst, Risk & Contingency Management - SNEI SD\nLocation: CA-San Diego\nSony Network Entertainment International LLC\n(SNEI), a subsidiary of Sony Corporation of America, is the premier provider of\ndigital entertainment. Through the Sony Entertainment Network portal, consumers\naround the world are able to access their favorite digital entertainment\nconveniently and instantly on their favorite connected devices. SNEI offers the\nlatest and highest quality music, video, and game content through Sony\nEntertainment Network as well as PlayStation Network while also delivering\nthird-party services. In addition, SNEI provides a compelling consumer\nexperience through innovative content discovery features and a simple user\ninterface that is globally consistent, yet locally relevant.\n\nSecurity Analyst, Risk\nand Contingency Management\nSan Diego, CA\n\nReporting into the Risk\nand Contingency Management organization, the Security Analyst will oversee\nSecurity Risk Assessments for the Sony SNEI organization. Responsibilities include following the SNEI\nRisk Assessment process to complete internal and external security risk\nassessments using an automated state-of- the-art Security Risk Assessment program. The security assessor is responsible for the\nassessment, mapping of risk to controls, the assessment report, the risk\nmitigation plan and stakeholder follow-up. The Security Analyst reports in to the Sr. Analyst of Risk and\nContingency. The Security\nAnalyst/Assessor is also responsible for evangelizing the benefits of Security\nwithin the SNEI organization.\n\nKey Responsibilities:\n\n* \nPerforms automated risk\nassessments via the GRC tool to identify significant information security risks\n(including applications, systems, data centers, infrastructure and vendor security\nrisk assessments) to determine the organizational risk posture\n* \nPerforms on-site\nassessments (network labs, companies, data centers)\n* \nAssists in the development\nand implementation of the Security Risk Assessment methodology, policy,\nstrategy and process.\n* \nAssists in the\nimplementation of the GRC assessment tool\n* \nAssists in the development\nof a security plan questionnaire and assist its implementation and management\nwhich allows security to be designed during the SW development life cycle\n* \nIdentify and communicate recommended/required security controls\nfor business units. Documents and monitor the implementation of controls for\ntechnology and business project plans\n* \nProvides security consulting\nservices to the business owners and stakeholders\n* \nMaintains broad\nknowledge of best practices and trends in the field of Information Security\n* \nEnsures the protection of the networks, systems and applications\nby adhering to R&CM\u2019s policy and procedures through the use of risk\nassessments, vulnerability scans and penetration tests\n* \nInterface with technical teams, stakeholders and leadership teams\nto translate security risk mitigation plans into mitigated risk\n* \nMust be willing to travel 20 to 40% of the time\n\n\nEssential Skill Sets:\n\n* \nStrong analytical ability needed to review network diagrams as\nwell as to provide security solutions\n* \nAbility to scan and assess large networks/systems/companies using vulnerability\nscan tools and automated GRC and then write risk mitigation plans according to\nthe assessment\n* \nAbility to provide\ntechnical security advice and input for support of integrated security systems\nand solutions\n* \nThorough understanding of multiple systems and network information,analysis of multiple platforms across the network\ninfrastructure, applications and operating systems in a fast paced, highly\ntechnical environment\n* The final candidate will\nbring excellent analytical, evaluative, and problem-solving abilities\n* This person will have\nextensive knowledge of security technology and risk assessment methodologies,\npolicies and processes\n* Must be self-motivated and work lead and motivate a team of Risk\nAssessors as well as the ability to work independently and multi-task\neffectively\n* This individual will have excellent written and oral communication\nskills, as well as interpersonal skills including the ability to articulate to\nboth technical and non-technical audiences. The ideal candidate will be\nexceptionally self-motivated and directed\n* The ideal candidate will\nhave 4 to 7 years of experience working within the technical arena \n* Strong knowledge and\nexperience with IP network design and secure designed infrastructures including\nfirewalls, routers, switches and access control\n* Experience with PCI and\nSOx programs as well as their technical and security compliance\n* Knowledge/Experience in\nLANS, WANs, Routers, firewalls, IDS systems\n* 5 plus years of\ninformation security work experience\n* Work experience and\nknowledge in the following areas:\n* 2 to 3 years of web security\n* 2 to 3 year of network/infrastructure security\n* 2 to 3 years of application security\n* 2 to 3 years in IDS and IPS\n* 2 to 3 years in Encryption technologies and\nconcepts\n* 2 to 3 years in Risk Methodologies, processes\nand procedures\n* 2 to 3 years in database architecture concepts\n* 2 to 3 years in physical security controls\n* 2 to 3 years in business continuity and disaster\nrecovery concepts\n* Strong knowledge\nassessing Cisco and Juniper as the network infrastructure\n* Strong knowledge using\nQualys, McAfee\u2019s Vulnerability Manager, Archer eGRC 5.x tools, Red Seal and\nADDM\n* A bachelor\u2019s degree in\nthe field of computer science, business administration, or another rigorous\ndiscipline is required\n* A master\u2019s degree in Information Security and/or certifications\nwithin the area of Risk and Contingency Management is a strong plus (CISSP,\nCRISC, CBCP, CISM, PMP).\n\nSony is\nan Equal Opportunity Employer. All persons will receive consideration for\nemployment without regard to race, color, religion, gender, pregnancy, national\norigin, ancestry, citizenship, age, legally protected physical or mental\ndisability, covered veteran status, status in the U.S. uniformed services,\nsexual orientation, marital status, genetic information or membership in any\nother legally protected category.\n\nWe\nstrive to create an inclusive environment, empower employees and embrace\ndiversity. We encourage everyone to\nrespond.\n\nWe\nsincerely appreciate the time and effort you spent in contacting us and thank\nyou for your interest in SNEI.Job: Information Technology", "date_new": "2012-04-10 11:42:33", "url": "http://sony.jobs/xml/27787353/job", "country": "United States", "company": "Sony Electronics", "title": "Security Analyst, Risk & Contingency Management - SNEI SD", "reqid": "23724", "state": "California", "state_short": "CA", "location": "San Diego, CA", "uid": 27787353}, {"country_short": "USA", "city": "San Diego", "description": "Title: Sr. Security Analyst, Risk & Contingency Management - SNEI SD\nLocation: CA-San Diego\nSony Network Entertainment International LLC\n(SNEI), a subsidiary of Sony Corporation of America, is the premier provider of\ndigital entertainment. Through the Sony Entertainment Network portal, consumers\naround the world are able to access their favorite digital entertainment\nconveniently and instantly on their favorite connected devices. SNEI offers the\nlatest and highest quality music, video, and game content through Sony\nEntertainment Network as well as PlayStation Network while also delivering\nthird-party services. In addition, SNEI provides a compelling consumer\nexperience through innovative content discovery features and a simple user\ninterface that is globally consistent, yet locally relevant.\n\nSenior Security Analyst,\nRisk and Contingency Management\nSan Diego, CA\n\nReporting to the\nDirector of Risk and Contingency Management, the Senior Security Analyst will\noversee the SNEI Security Risk Assessment program. Responsibilities include developing and\nimplementing an automated state of the art Security Risk Assessment\nmethodology, policy and process. Once\ndeveloped, the Sr. Security Analyst will act as the subject matter expert of\nthe process and will lead the Security Risk Assessment team in assessing risk\nand communicating the risk posture to the leadership team of SNEI.\n\n\nKey Responsibilities:\n\n* \nDevelop and implement the Security Risk\nAssessment methodology, policy, strategy and process.\n* \nWork directly with the Sr. GRC Security Engineer\nin assisting the configuration and implementation of Governance Risk and\nCompliance Risk Management module.\n* \nDevelopment and oversee the implementation of\nthe SNEI security plan which allows security to be designed into the SW\ndevelopment life cycle\n* \nPerform hands-on risk assessments to identify\nsignificant information security risks (including applications, systems, data\ncenters, infrastructure and vendor security risk assessments) to determine the organizational\nrisk posture\n* \nProvide security consulting services to the\nbusiness owners and stakeholders\n* \nMaintain broad knowledge of best practices and\ntrends in the field of Information Security\n* \nInterface with technical\nteams, stakeholders and leadership teams to translate security risk mitigation\nplans into actionable items to mitigate risk\n* The final candidate will bring excellent\nanalytical, evaluative, and problem-solving abilities\n* This person will have extensive knowledge of\nsecurity technology and risk assessment methodologies, policies and processes\n* Must have the ability to\nlead and motivate a team of Risk Assessors as well as the ability to work\nindependently and multi-task effectively\n* This individual will have\nexcellent written and oral communication skills, as well as interpersonal\nskills including the ability to articulate to both technical and non-technical\naudiences. The ideal candidate will be exceptionally self-motivated and\ndirected\n* The ideal candidate will have 7 to 10 years of\nexperience working within the technical arena \n\n* 5 plus years of\ninformation security work experience\n* Strong knowledge and\nexperience with IP network designs and secure designed infrastructures\nincluding firewalls, routers, switches and access control\n* Experience with PCI and SOx programs as well as\ntheir technical and security compliance\n* Knowledge/Experience in LANS, WANs, Routers,\nfirewalls, IDS systems\n* Ability to scan large\nnetworks using vulnerability scan tools and write risk mitigation plans\naccording to the assessment\n* \nRequires work experience\nand knowledge in the following areas:\n* 3 plus years of web infrastructure security\n* 3 plus years in IDS and IPS\n* 3 plus years in Encryption technologies and\nconcepts\n* 3 plus years in Risk Methodologies\n* 3 plus years in database architecture concepts\n* 3 plus years in physical security controls\n* 3 plus years in business continuity and disaster\nrecovery concepts\n* A university degree in the field of computer\nscience, business administration, or another rigorous discipline.\n* A strong understanding of Cisco and Juniper network\ntechnologies\n* Strong knowledge using Qualys Vulnerability\nManager, Archer eGRC tools version 5.X, Red Seal, ADDM and other security\napplications\n* Experience in security standards such as ISO\n27001, 27002, 27005; NIST, COBIT, ITIL\n* A bachelor\u2019s degree in Computer\nScience or Information Security\n* Technical certifications\nwithin the area of Risk and Contingency Management are a strong plus (CISSP, CRISC,\nCBCP, CISM or equivalent)\n\n\nSony is\nan Equal Opportunity Employer. All persons will receive consideration for\nemployment without regard to race, color, religion, gender, pregnancy, national\norigin, ancestry, citizenship, age, legally protected physical or mental\ndisability, covered veteran status, status in the U.S. uniformed services,\nsexual orientation, marital status, genetic information or membership in any\nother legally protected category.\n\nWe\nstrive to create an inclusive environment, empower employees and embrace\ndiversity. We encourage everyone to\nrespond.\n\nWe\nsincerely appreciate the time and effort you spent in contacting us and thank\nyou for your interest in SNEI.Job: Information Technology", "date_new": "2012-04-10 11:42:29", "url": "http://sony.jobs/xml/27787340/job", "country": "United States", "company": "Sony Electronics", "title": "Sr. Security Analyst, Risk & Contingency Management - SNEI SD", "reqid": "23684", "state": "California", "state_short": "CA", "location": "San Diego, CA", "uid": 27787340}]