Staff Cloud Security Engineer

Staff Cloud Security Engineer

United States, Remote

Sony Interactive Entertainment isn't just the Best Place to Play — it's also the Best Place to Work. Sony Interactive Entertainment (SIE) is the company behind the PlayStation brand. As a subsidiary of Sony Group Corporation, we're part of a proud legacy of innovation and excellence. SIE is a dynamic technology company, delivering cutting-edge hardware and network services to more than 100 million people and an entertainment leader, home to some of the most beloved and recognizable intellectual properties (IP) in the world. Our role at SIE is to create and nurture the experiences under the PlayStation brand, a name synonymous with entertainment excellence and creativity.

We are looking for an inspirational and hardworking person to join the Security Engineering team at SIE! You'll be joining a team of innovative engineers who are unified in their mission to make PlayStation the best and most secure gaming platform. This support is fulfilled by minimizing impact to the platform while ensuring security needs are met. This role is highly technical and requires a shown grasp of security principles and how they are applied to production environments. As a member of the Cloud Security team you will assist in the planning, design, development, testing, and management of security tools and controls that provide protection and visibility of our cloud environments.

Key Responsibilities

• Define and drive cloud security strategy, architecture standards, and technical roadmaps across cloud and AI-enabled environments
• Lead the design and implementation of preventative security controls, leveraging automation and AI-driven capabilities to reduce risk and improve detection and response
• Architect and secure complex multi-cloud and hybrid environments across AWS, Azure, GCP, and on-premise infrastructure
• Define and implement security architecture for AI/ML workloads, including model pipelines, data protection, and AI-integrated applications
• Identify and establish controls to mitigate AI-specific risks such as prompt injection, data poisoning, model leakage, and adversarial inputs
• Influence security and engineering practices across multiple teams and departments, driving adoption of secure-by-design principles
• Own the security outcomes of key cloud and AI initiatives, ensuring successful delivery and measurable risk reduction
• Establish and evolve DevSecOps and Infrastructure-as-Code (IaC) security standards, integrating security controls into CI/CD pipelines at scale
• Drive adoption and optimization of CNAPP platforms and related tooling to improve risk visibility and remediation across cloud, container, and AI environments
• Define and implement security architecture for containerized platforms (Kubernetes/EKS/GKE/AKS), including cluster hardening, workload isolation, image supply chain security, and runtime protection controls
• Lead the evolution of detection and response capabilities, integrating cloud telemetry, Cloud EDR, and advanced security analytics
• Conduct and guide threat modeling and risk assessments (Attack Surface Management, Data Security Posture Management, etc.) for complex cloud-native and AI-enabled systems
• Architect and deliver automation frameworks and security services to improve scalability and operational efficiency
• Provide technical leadership and mentorship to engineers, influencing department-level goals and technical direction

Qualifications

• Bachelor's degree or equivalent in Computer Science, Information Security, or related field
• Proven experience defining and securing large-scale cloud and hybrid architectures (AWS, Azure, GCP, On-Premise)
• Deep expertise in cloud security architecture, including IAM, network segmentation, encryption, and secure design patterns
• Strong programming and automation experience, with the ability to design and scale security engineering solutions
• Extensive experience implementing DevSecOps practices and securing Infrastructure-as-Code (IaC) workflows
• Expertise working with container technologies (Kubernetes, Docker, EKS, GKE, AKS)

AI / ML Security Expertise

• Deep understanding of security risks in AI/ML systems, including prompt injection, data poisoning, model leakage, and adversarial inputs
• Experience defining and securing AI/ML architectures, including training pipelines, inference systems, and AI-integrated applications
• Strong knowledge of data security and privacy controls in AI systems
• Familiarity with frameworks such as OWASP Top 10 for LLMs and NIST AI Risk Management Framework
• Experience securing advanced AI patterns such as LLM integrations, APIs, MCPs, RAG pipelines, or model services (preferred)

Security Tooling & Operations

• Experience leading implementation and adoption of CNAPP platforms
• Deep understanding of cloud detection and response, IaC scanning, and runtime protection
• Strong background in security prevention, detection, and response strategy

Additional Experience

• Experience designing highly scalable, resilient, and secure architectures across application, network, and data layers
• Experience influencing technical direction across multiple teams or departments
• Relevant certifications (e.g., ISC2, GIAC, AWS, Azure, GCP) preferred
• Experience working across multi-OS and distributed environments

At SIE, we consider several factors when setting each role's base pay range, including the competitive benchmarking data for the market and geographic location. Please note that the base pay range may vary in line with our hybrid working policy and individual base pay will be determined based on job-related factors which may include knowledge, skills, experience, and location. In addition, this role is eligible for SIE's top-tier benefits package that includes medical, dental, vision, matching 401(k), paid time off, wellness program and coveted employee discounts for Sony products. This role also may be eligible for a bonus package. Click here to learn more.

This is a flexible role that can be remote, with varying pay ranges based on geographic location. For example, if you are based out of Seattle, the estimated base pay range for this role is listed below.

$197,600 - $296,400 USD

Please note, Sony Interactive Entertainment conducts background checks at the offer stage for all new employees (which may include criminal background checks for some roles) and will need to process personal information to support these checks.

Please refer to our Candidate Privacy Notice for more information about what personal information we collect, how we use it, who we share it with, and your data protection rights.

Equal Opportunity Statement: Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity, gender expression and gender reassignment), race (including colour, nationality, ethnic or national origin), religion or belief, marital or civil partnership status, disability, age, sexual orientation, pregnancy, maternity or parental status, trade union membership or membership in any other legally protected category.

We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond.

Sony Interactive Entertainment is a Fair Chance employer and qualified applicants with arrest and conviction records will be considered for employment.