Platform Hosting Cloud Security Engineer

About

Sony Interactive Entertainment (SIE) is the company behind the PlayStation brand. As a subsidiary of Sony Group Corporation, SIE delivers cutting-edge hardware and network services to more than 100 million people and is home to some of the most beloved intellectual properties in the world. The Platform Hosting Cloud Security Engineering team aims to make PlayStation the best and most secure gaming platform by minimizing impact while ensuring security needs are met.

Key Responsibilities

• Enable secure & reliable east-west service communication using service mesh architectures (e.g., Istio, Kong)
• Manage and configure API gateways (e.g. Kong, Amazon API Gateway) for internal and external services
• Implement authentication and authorization through OIDC, OAuth2, JWT, and mTLS
• Secure API exposure and traffic governance
• Manage PKI and certificate lifecycles including issuance, rotation, and revocation
• Deploy and manage mTLS within distributed systems and Kubernetes workloads
• Integrate certificate authorities and automate certificate management (e.g., cert-manager)
• Understand trust models and certificate chain validation in zero-trust environments
• Enforce default mTLS across workloads
• Carry out infrastructure-level authentication and authorization
• Craft and maintain fine-grained access control policies
• Build and maintain zero-trust security models across multi-cluster or distributed systems
• Write and detail security policies and practices with clear mentorship
• Secure Kubernetes environments including namespace isolation and protection strategies
• Craft and enforce access controls and policies in Kubernetes
• Manage service accounts and workload identities securely
• Apply Kubernetes security guidelines including least privilege access, network policies, and workload segmentation
• Build and implement security controls and frameworks
• Detect security gaps and lead efforts to mature security tooling and operational processes
• Work closely with product and platform teams to define system requirements and implement cloud based security applications and controls
• Write code to automate security processes integrating into code builds and deployments applying DevSecOps processes and tools
• Develop and deploy automation solutions to audit, secure, and affect changes across multi-cloud environments
• Review tools for improving platform availability using automated protection mechanisms
• Research and recommend new technologies and collaborate on solutions

Qualifications

• Bachelor's degree or equivalent experience required
• Proficiency in scripting and programming languages such as Python and Go
• Experience applying and upholding security governance frameworks including security policy enforcement and compliance controls
• Hands-on experience with multi-cloud environments, particularly AWS and GCP
• Strong experience with Kubernetes and containerized environments
• Experience implementing security guidelines (mTLS, OAuth2, JWT, RBAC, ABAC)
• Experience with monitoring and observability tools (Grafana, Datadog)
• Excellent written and oral communication skills
• Strong analytical and problem-solving skills

Benefits

• Medical insurance
• Dental insurance
• Vision insurance
• Matching 401(k)
• Paid time off
• Wellness program
• Employee discounts

Additional Information

The estimated base pay range for this role is $158,900—$238,300 USD. Sony Interactive Entertainment conducts background checks at the offer stage for all new employees. Sony is an Equal Opportunity Employer and a Fair Chance employer, encouraging diversity and inclusion.