Job Description

We look for the risk-takers, the collaborators, the inspired and the inspirational. We want the people who are brave enough to work at the cutting edge and create solutions that will enrich and improve the lives of people across the globe. So, if you want to make the world say wow, let\'s talk.

The conversation starts here. If this role matches your ambitions and skillset, let\'s get started with your application. Take a look at our other open positions too. Our many opportunities can lead to infinite possibilities.

As a senior security analyst, you will be responsible for security event analysis, incident response, and related activities. You will be tasked to perform monitoring of SIEM and security technologies to support a highly dynamic Global Security monitoring operation across the organization, interfacing with different teams including global forensics, incident response, and threat analysis. You will also be required to participate in the creation of policies, processes, procedures, documentation, and assigned project tasks.

What you will be doing

• Perform security monitoring and incident response activities across the Sony Group\xe2\x80\x99s global networks, leveraging a variety of tools and techniques
• Detect incidents through proactive \xe2\x80\x9chunting\xe2\x80\x9d across security-relevant data sets
• Thoroughly document incident response analysis activities
• Develop new, repeatable methods for finding malicious activity across the Sony Group\xe2\x80\x99s global networks
• Provide recommendations to enhance detection and protection capabilities
• Regularly present technical topics to technical and non-technical audiences
• Write high-quality incident reports for executives
• Develop and follow detailed operational processes and procedures to appropriately analyze, escalate, and assist in the remediation of information security incidents
• Prioritize multiple high-priority tasks and formulate responses/recommendations to customers and team members in a fast-paced environment

• Provide assistance to other security teams
• Continually develop new technical skills and push overall team capabilities forward
• Engage with and mentor other team members
• Perform other duties, as assigned

What you should have

• Degree or Diploma in Information Technology, Engineering, Cybersecurity or related field
• Minimum 5 years of experience in Information Technology and 3 years in Information Security
• Hands-on experience in a Security Operations Center environment conducting network, host, or threat analysis
• Experience analyzing raw log files, particularly logs from network or host based security tools
• Experience analyzing packet captures
• Deep understanding of network defense principles, common attack vectors, and attacker techniques
• Advanced technical skills and the ability to develop a mastery of network and host security technologies
• Comfort with using the Linux command line
• Experience with at least 2 programming or scripting languages
• Experience with the following technologies or concepts:

o SIEM or other security/log management platforms
o Basic host-based forensics analysis
o Basic static and dynamic malware analysis
o Email analysis
o Regular expressions
o IDS/IPS
o Firewalls
o Virtualization
o Common TCP and UDP protocols

• Experience in self-learning of technical subjects

What will help you succeed

• Possessing strong soft skills in written/verbal communication, problem solving, decision making, and task prioritization
• Having strong work ethic and commitment to accomplish assigned tasks with a sense of urgency
• Being highly motivated and self-driven with strong aptitude for continuous learning and growth