About Sony Music EntertainmentAt Sony Music Entertainment, we fuel the creative journey. We've played a pioneering role in music history, from the first-ever music label to the invention of the flat disc record. We've nurtured some of music's most iconic artists and produced some of the most influential recordings of all time.Today, we work in more than 70 countries, supporting a diverse roster of international superstars, developing and independent artists, and visionary creators. From our position at the intersection of music, entertainment, and technology, we bring imagination and expertise to the newest products and platforms, embrace new business models, employ breakthrough tools, and provide powerful insights that help our artists push creative boundaries and reach new audiences. In everything we do, we're committed to artistic integrity, transparency, and entrepreneurship.Sony Music Entertainment is a member of the Sony family of global companies.Sony Music is looking for a motivated and passionate early career individual to join our Global Information Security team as a cyber security testing analyst. Our Security team works across the organization to help ensure that Sony Music's applications, platforms, and digital experiences are designed and maintained with security in mind.In this role, you will contribute to handson security testing and assurance activities, collaborate closely with engineering and technology teams, and continuously develop your technical and analytical skills. You will help identify weaknesses before they become incidents and support efforts to strengthen the security of systems that protect sensitive data such as credentials, personal information, and businesscritical content.What you'll do: Conduct technical security testing of applications, systems, APIs, websites, and supporting infrastructure in partnership with other members of the Global Information Security team Participate in vulnerability assessments, penetration testing activities, and security validation efforts using a mix of manual techniques and automated tools Perform manual assessmentsthat may include structuredQ&Abased evaluations, evidence review, and technical validation of controls implemented by engineering or platform teams Analyze findings, validate risk, and assist with clear documentation of security issues to support effective remediation by engineering and technology teams Collaborate with developers, platform owners, and product teams to answer security questions, clarify findings, and support secure design decisions Research emerging threats, vulnerabilities, tooling, and attack techniques (including those involving automation and AIenabled threats) and assess their potential relevance to Sony Music Contribute to the ongoing evolution of security testing playbooks, processes, and documentation to improve consistency and coverage over time Develop proficiency with modern security tools, scripting, and testing approaches as part of your onthejob learning and professional growthWho you are: You have2+ years of handson experienceworking in an enterprise environment within the cyber security field, ideally in security testing, vulnerability management, application security, or a closely related discipline You've participated inrealworld security assurance activities, including handson testingandstructured security assessments based on technical questionnaires, evidence review, and control validation You are comfortable evaluatingtechnical security controlseven when the work involves discussion, documentation, or Q&A - not just running tools or exploits You understand how security operates at scale, including exposure toenterprise environments, shared services, multiple stakeholders, and operational constraints * You bring curiosity to how systems behave under both normal and abnormal conditions, and you naturally dig deeper than surfacelevel scan results
