Manager, Risk Management

Sony Corporation of America, located in New York, NY, is the U.S. headquarters of Sony Group Corporation, based in Tokyo, Japan. Sony's principal U.S. businesses include Sony Electronics Inc., Sony Interactive Entertainment LLC, Sony Music Entertainment, Sony Music Publishing and Sony Pictures Entertainment Inc. With some 900 million Sony devices in hands and homes worldwide today, a vast array of Sony movies, television shows and music, and the PlayStation Network, Sony creates and delivers more entertainment experiences to more people than anyone else on earth. To learn more: www.sony.com/en.
 

POSITION SUMMARY

Sony Corporation of America (SCA) is seeking a highly motivated, self-driven Manager, InfoSec Risk Management to join the Corporate InfoSec Division (CISD) organization located in Reston, Virginia. This position will report to Director, Risk Management and will be responsible to manage and conduct risk assessments and deliver GRC strategy to secure Sony’s information assets, services, and third parties that depend on them.

JOB RESPONSIBILITIES

• Conduct end to end risk assessments to identify, assess, and measure information security risks for Assets and Third Parties.

• Prepare risk assessment reports to support management action, escalation and risk acceptance processes resulting from risk assessments.

• Manage relationships with security, technology, privacy and business stakeholders to identify and communicate security risks and mitigation strategies.

• Provide risk consulting and training to business, technical, and other Information Security partners.

• Prepare for and support audits related to cybersecurity compliance for internal processes of CISD.

• Maintain and regularly update the risk register.

• Collaborate with key stakeholders to gather and document business requirements and enhancement requests to advance the organization’s Governance, Risk, and Compliance (GRC) capabilities within the global GRC platform.

• Develop test cases and conduct system integration testing for GRC enhancements, validating results throughout the testing process.

• Identify opportunities to enhance risk posture by proposing solutions for remediation or mitigation of risks and assessing residual risks.

• Provide guidance and education on specific security policies pertinent to requesting organizations and their projects and applications.

• Deliver status reports and provide ad hoc Governance program support as necessary.

• Honesty, trustworthiness and ethical conduct are material requirements for the responsibilities outlined above

QUALIFICATIONS FOR POSITION 

Your qualifications and experience should include:  

• Bachelor’s degree in Information Security, Information Systems, Engineering or related discipline.

• 8-10 years of total work experience preferred.

• 2-3 years GRC experience preferred.

• Familiarity with securing one or more of the following is preferred: Artificial Intelligence, Networks infrastructure (network topology, networking technologies), Databases and Operating Systems, IaaS environments, SaaS systems

• Domain expertise in enterprise risk management frameworks and processes, cyber security, or business continuity

• Ability to communicate clearly and concisely with technical and non-technical teams across multiple businesses; written, verbal, presentation, and interpersonal skills.

• Must be highly self-motivated.

• Good analytical, research, and problem-solving skills with a keen attention to detail.

• Ability to work on multiple projects, with strong ability to adapt to dynamic work environment and to prioritize tasks accordingly.

• Good oral and written communication skills.

• All candidates must be authorized to work in the USA.

In addition to competitive pay and benefits, we offer an environment and culture that promotes Diversity, Equity, and Inclusion. We are committed to creating an inclusive employee experience for you to thrive as part of Sony’s purpose to “fill the world with emotion through the power of creativity and technology”. 

Benefits:    

SCA offers benefits-eligible employees (generally regular employees scheduled to work 20 or more hours a week) a comprehensive benefits program that offers coverage and support for employees and their family’s physical, emotional, and financial well-being.   

 What we offer you: 

• Comprehensive medical, prescription drug, dental, and vision coverage with coverage for spouses/domestic partners and child dependents, including access to a Health Savings Account (HSA) and Flexible Spending Account (FSA)  

• Employee assistance plan and comprehensive behavioral health benefits 

• Fertility benefits, including surrogacy, and adoption assistance programs   

• Basic and supplemental life insurance for employees as well as supplemental life insurance coverage for their spouses/domestic partners and children  

• Voluntary benefits such as group legal, identity theft protection, accident, and hospital indemnity insurance  

• Short-term & long-term disability plans   

• Paid parental and caregiver leave   

• 401(k) Plan with pre-tax, Roth, and after-tax options and company match with immediate vesting 

• Education assistance and student loan programs    

Other Programs:  

• Flexible Work Arrangements, including remote and hybrid work schedules 

• Time off to include vacation, paid holidays, sick leave, Summer Fridays (early release), and a winter break between Christmas and New Year’s Day (based on business needs) 

• Referral bonuses (subject to eligibility)   

• Matching gift program   

• A wide variety of employee business resource groups (EBRGs)   

• Special discounts on Sony products, offered exclusively to Sony employees 

• Employee stock purchase plan (Sony covers commissions and fees for your Sony stock purchases made through after-tax payroll deductions)   

• Annual incentive bonus 

The anticipated annual base salary for this position is $145,000 to $155,000. This range does not include any other compensation components or other benefits that an individual may be eligible for. The actual base salary offered depends on a variety of factors, which may include as applicable, the qualifications of the individual applicant for the position, years of relevant experience, specific and unique skills, level of education attained, certifications or other professional licenses held, and the location in which the applicant lives and/or from which they will be performing the job.  

#LI-SC1

Sony is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religious creed, sex (including pregnancy), gender, national origin, citizenship, ancestry, age, physical or mental disability, military status, status as a veteran or disabled veteran, sexual orientation, gender identity or expression, marital or family status, genetic information, medical condition, or any other basis protected by applicable federal, state, or local law, ordinance, or regulation.

Disability Accommodation for Applicants to Sony Corporation of America

Sony Corporation of America provides reasonable accommodation for qualified individuals with disabilities and disabled veterans in job application procedures. For reasonable accommodation requests, please contact us by email at careers@sonyusa.com or by mail to: Sony Corporation of America, Human Resources Department, 25 Madison Avenue, New York, NY 10010. Please indicate the position you are applying for.

EEO is the Law

EEO is the Law Supplement

Right to Work (English/Spanish)

E-Verify Participation (English/Spanish)

While SCA does not require employees to be vaccinated against COVID-19, there are certain Sony offices that require employees to be vaccinated in order to enter.  If you will be located at or travel to those offices, you will be required to be fully vaccinated to enter.  The Company will consider requests for reasonable accommodations for documented medical reasons and for sincerely held religious beliefs in accordance with applicable law.  Please do not include proof of vaccination status or any indication of a possible request for a vaccination accommodation when submitting your application materials.  If applicable, the Company will follow up with you directly to request proof of vaccination and to discuss any potential accommodations.