Senior Security Analyst-Data Governance

PlayStation isn’t just the Best Place to Play — it’s also the Best Place to Work. Today, we’re recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation5, PlayStation4, PlayStationVR, PlayStationPlus, acclaimed PlayStation software titles from PlayStation Studios, and more.PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation, technology, and play to explore our open positions and join our growing global team.The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Corporation.Sony Interactive Entertainment is seeking an experienced and diligent Information Security Governance Analyst to improve our information governance and data classification program. This role will focus on developing the program, maintaining company policies, and managing the lifecycle of data assets, ensuring they are accurately classified, protected, and handled throughout their entire lifespan. The successful applicant will play a meaningful role in safeguarding SIE’s data.Key Responsibilities Maintain SIE's information security policies, standards, and procedures.Develop the information governance and data classification program to ensure consistent classification of data assets based on sensitivity, criticality, and regulatory requirements.Identify and classify data assets across the organization.Review and improve data lifecycle management procedures, including data creation, storage, usage, sharing, archiving, and destruction.Ensure data classification principles are understood by socializing them with departments and teams, and collaborating with training and awareness programs to educate employees.Occasionally lend expertise to risk assessments and security incident investigations to support those efforts and identify potential lessons that could inform and drive improvements to the program.Monitor compliance with the program and perform regular audits to ensure consistency and effectiveness.Prepare and present reports on the status of the program to senior management.Required Qualifications : Bachelor's degree in Information Security, Computer Science, a related field, or equivalent experience.Excellent knowledge of security frameworks and standards, such as ISO 27001, NIST, and CIS Controls.5 years in cyber security.Demonstrable experience in developing and implementing information governance or data classification programs, preferably in a leadership or supervisory role.Practical expertise in assessing and securing hosted applications.Strong analytical and problem-solving skills, with the ability to think critically and make informed decisions under pressure.Effective communication and interpersonal skills, adept at conveying complicated security concepts to non-technical partners.Experience in defining and implementing organizational change, including partner engagement, training, and support.Ability to manage multiple projects and priorities in a multifaceted environment.Preferred Skills and Experience Background in another field, such as Product Management, Project Management, or Organizational Change Management.Knowledge of data protection regulations and best practices.Understanding of threat modeling and risk assessment methodologies.Familiarity with data management tools and technologies.Experience with cloud security, including AWS, Azure, or Google Cloud Platform.Exposure to working in global or multi-national companies.Professional certifications are helpful, such as CISSP, CISM, or CDMP.#J-18808-Ljbffr