Sony Corporation of America, located in New York, NY, is the U.S. headquarters of Sony Corporation, based in Tokyo, Japan. Sony's principal U.S. businesses include Sony Electronics Inc., Sony Mobile Communications (USA) Inc., Sony Interactive Entertainment LLC., Sony Pictures Entertainment Inc., Sony Music Entertainment, and Sony/ATV Music Publishing LLC. With some 900 million Sony devices in hands and homes worldwide today, a vast array of Sony movies, television shows and music, and the PlayStation Network, Sony creates and delivers more entertainment experiences to more people than anyone else on earth. To learn more: www.sony.com.
Sony Corporation of America (SCA) is seeking a highly motivated, self-driven Senior Threat Detection Engineer to join the Global Security Incident Response Team (GSIRT) Security Operations Center (SOC), responsible for threat detection content development, threat hunting, and innovation in the areas of intrusion analysis, detection, and related activities. This position will be located in Herndon, VA and will report to the Associate Director, Capability Analytics.
Investigate and review computer intrusions focusing on initial infection vector determination, identification of new indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs) in support of threat detection and prevention development
Research, build, and maintain detection capabilities for the latest threats across SIEM correlations and security tool signatures
Actively participate in the threat hunting program
Contribute to and lead efforts to improve the SOC's effectiveness, advancing technical capabilities at pace with the latest threats
Develop and maintain digital forensics capabilities to enable rapid forensics triaging of systems
Support and integrate with incident response, threat intelligence, and overall security strategy as needed
Generate high quality documentation of research and analysis results, including processes and findings clearly and concisely to both technical and non-technical audiences
3 years of experience performing hands-on log analysis and host/network forensic analysis in support of incident response
1-3 years of experience developing threat detection content support of incident response
1-2 years of experience with Splunk and Splunk Enterprise Security
Strong understanding of TCP/UDP traffic, SIEM and log analysis technologies, IDS
Strong understanding of Windows and Linux operating systems, as well as command line tools
Strong interest in Endpoint Detect Response (EDR) technologies preferred
Experience with programming languages such as Python and Powershell is strongly preferred
Exposure to malware analysis (static and dynamic) preferred
Ability to manage multiple activities and events simultaneously, with a strong ability to prioritize multiple tasks and respond to high-priority events; organizing and scheduling work effectively
Operate effectively as part of a geographically dispersed team
All candidates must be authorized to work in the USA
Sony is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, sex (including pregnancy), gender, national origin, citizenship, ancestry, age, physical or mental disability, military status, status as a veteran or disabled veteran, sexual orientation, gender identity or expression, marital or family status, genetic information, medical condition, or any other basis protected by applicable federal, state, or local law, ordinance, or regulation.
Disability Accommodation for Applicants to Sony Corporation of America
Sony Corporation of America provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. For reasonable accommodation requests, please contact us by email at firstname.lastname@example.org or by mail to: Sony Corporation of America, Human Resources Department, 25 Madison Avenue, New York, NY 10010. Please indicate the position you are applying for.
Sony Electronics, Inc.