Senior Cloud Security Engineer

Why Sony Interactive Entertainment?Sony Interactive Entertainment isn’t just the Best Place to Play — it’s also the Best Place to Work. Sony Interactive Entertainment (SIE) is the company behind the PlayStation brand. As a subsidiary of Sony Group Corporation, we’re part of a proud legacy of innovation and excellence. SIE is a dynamic technology company, delivering cutting-edge hardware and network services to more than 100 million people and an entertainment leader, home to some of the most beloved and recognizable intellectual properties (IP) in the world. Our role at SIE is to create and nurture the experiences under the PlayStation brand, a name synonymous with entertainment excellence and creativity.We are looking for an inspirational and hardworking person to join the Security Engineering team at SIE! You'll be joining a team of innovative engineers who are unified in their mission to make PlayStation the best and most secure gaming platform. This support is fulfilled by minimizing impact to the platform while ensuring security needs are met. This role is highly technical and requires a shown grasp of security principles and how they are applied to production environments. As a member of the Cloud Security team you will assist in the planning, design, development, testing, and management of security tools and controls that provide protection and visibility of our cloud environments.Senior Cloud Security EngineerRole OverviewProvide cloud security capabilities that are proactive, preventive-focused models that address modern threats, including those driven by AI-enabled attack techniques. Expanding into next-generation security domains such as AI/ML security, container security, and advanced threat detection and response.We are seeking an experienced Cloud Security Engineer to help design, implement, and scale security controls across multi-cloud and hybrid environments. This role will focus on securing cloud-native and AI-driven systems through strong engineering practices, automation, and collaboration with platform and product teams.Key ResponsibilitiesDesign and implement cloud security controls that reduce risk and improve prevention, detection, and response capabilitiesContribute to securing multi-cloud and hybrid environments across AWS, Azure, GCP, and on-premise infrastructureImplement security controls for AI/ML workloads, including protecting data pipelines, model services, and AI-integrated applicationsIdentify and help mitigate AI-specific risks such as prompt injection, data poisoning, and model/data leakageApply DevSecOps and Infrastructure-as-Code (IaC) practices to integrate security into CI/CD pipelinesPartner with product and platform teams to implement secure architecture patterns and cloud security standardsUtilize CNAPP platforms and related tools to identify and remediate risks across cloud, container, and AI environmentsImplement and maintain security controls for containerized environments, including Kubernetes cluster configuration, image scanning, and runtime protectionSupport monitoring, detection, and response capabilities, including integration with cloud-native telemetry and security toolingParticipate in threat modeling and risk assessments (Attack Surface Management, Data Security Posture Management, etc.) for cloud-native and AI-enabled systemsDevelop and maintain automation solutions to improve security coverage and operational efficiencyDeploy and manage infrastructure using Infrastructure-as-Code (IaC) tools and best practicesContribute to security initiatives and projects, helping deliver measurable improvements to the organization’s security postureSupport security operations and internal service requests, contributing to continuous process improvementQualificationsBachelor’s degree or equivalent in Computer Science, Information Security, or related field.Experience designing and securing cloud and hybrid environments (AWS, Azure, GCP, On-Premise)Proficiency in one or more programming or scripting languages, with experience interacting with cloud APIs and automation workflowsStrong understanding of cloud security fundamentals, including IAM, network security, encryption, and secure architecture designExperience implementing DevSecOps practices and securing Infrastructure-as-Code (IaC) workflowsExperience deploying and securing container technologies (Kubernetes, Docker, EKS, GKE, AKS)AI / ML Security ExperienceUnderstanding of security risks in AI/ML systems, including prompt injection, data poisoning, and model/data leakageFamiliarity with data security principles in AI training and inference pipelinesExperience implementing basic security controls, logging, and monitoring for AI-enabled servicesAwareness of AI security frameworks such as OWASP Top 10 for LLMs and NIST AI Risk Management FrameworkSecurity Tooling & OperationsExperience using CNAPP platforms to identify and remediate cloud security risksFamiliarity with IaC scanning, cloud security posture managem