IT Audit Manager, Risk & Control


Sony Interactive Entertainment PlayStation

PlayStation isn’t just the Best Place to Play —it’s also the Best Place to Work. We’ve thrilled gamers since 1994, when we launched the original PlayStation. Today, we’re recognized as a global leader in interactive and digital entertainment. The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Corporation.


IT Audit Manager, Risk & Control

Rancho Bernardo, San Diego, CA

SIE's Risk and Control Department has an exciting opportunity for a hardworking, driven, and skilled IT Audit Manager to lead technical assessments of PlayStation’s IT landscape. You will be responsible for delivering all planning, scoping, execution, and reporting phases of in-depth reviews of a variety of sophisticated architectures to ensure PlayStation systems and services are designed and operating optimally and securely. You will have the rare opportunity to analyze the internal architecture of PlayStation services and will be a part of bringing fun and joy to millions of gamers across the world! It's a career that requires tremendous integrity, scrupulous attention to detail and the aim to always think critically beyond the obvious.

This role will include a wide range of responsibilities and, at times, have simultaneous projects that require strong multi-tasking skills to drive parallel progress. You will also work with teams, both internal and external, around the globe in a flexible, work-life balanced environment. We are looking for someone who is positive, agile, maintains an open mind and is committed to achieving goals as part of a diverse team!


  • Manage risk-based IT, security, and integrated audits across all global operations.
  • Lead IT risk assessments, evaluate architecture and system diagrams, and develop innovative audit strategies.
  • Identify/evaluate/validate relevant controls and compliance with internal policies, and draft audit reports to present audit findings and recommendations to management.
  • Lead the planning, execution and reporting of IT Sarbanes-Oxley (SOX) testing and manage the offshore testing delivery team.
  • Understand the larger Sony organization and build relationships to collaborate with and recommend solutions directly to senior leadership.
  • Represent the Risk and Control Department on company initiatives and special projects.
  • Assist leadership with enterprise risk assessments and annual audit plan development.
  • Lead internal department initiatives, such as training and development, data analytics design, updates to internal audit policies and procedures, and other internal projects, as requested.
  • The position will require occasional domestic and international travel.


  • At least 8 years of IT audit/cybersecurity experience, with a CISA, CISSP or other related certification, and a Bachelor’s degree in Accounting, Business, Computer Science, Information Systems, or a related STEM (Science, Technology, Engineering, or Math) field.
  • Minimum of 2 years’ experience managing teams and projects, leading senior-level meetings, and auditing cloud-based platforms.
  • Prior experience in a public accounting firm or a private industry internal audit department, including leading assessments of IT processes and systems for Sarbanes-Oxley compliance.
  • The ability to identify/assess business and IT risks, design and complete appropriate audit programs, and deliver audit reports independently.
  • Strong understanding and skilled on virtual systems and AWS cloud services and environments, along with microservices architecture and coding using agile/scrum development techniques.
  • Deep knowledge and hands-on experience with SAP systems, focused on S/4, GRC, BW and HANA databases in cloud deployments.
  • Skilled in IT security and general controls reviews of complex architectures, across the many IT layers (Networking/OS/Middleware/DB/App) and with broad knowledge and practice in various technologies.
  • Strong leader with ability to learn new technology concepts quickly, exhibit sound professional judgement and willingness to challenge status quo.
  • Project management skills: ability to work, take ownership, and succeed in a constantly evolving environment.
  • Problem-solving skills: ability to assess complex situations, develop effective comprehensive solutions and manage issues to resolution.
  • Interpersonal skills: ability to effectively communicate with various levels of management from the organization and external auditors and partners.
  • Highly motivated (seeks out opportunities), fastidious (represented in quality of work) and analytical (focuses on the data).
  • Must be an excellent teammate and demonstrate ability to multi-task and quickly adapt to re-prioritization of tasks.
  • Experience and knowledge of industry compliance standards, practices, and control frameworks, such as PCI DSS, ISO 27000 series, NIST 800 series, CIS CSC, SSAE/SOC, DevOps, CSA CMM, COSO, ITIL and/or COBIT.


Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to race, color, religion, gender, pregnancy, national origin, ancestry, citizenship, age, legally protected physical or mental disability, covered veteran status, status in the U.S. uniformed services, sexual orientation, marital status, genetic information or membership in any other legally protected category.

Reasonable Accommodation Notice Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond.

We sincerely appreciate the time and effort you spent in contacting us and we thank you for your interest in PlayStation.


This Privacy Notice explains what personal information we at Sony Interactive Entertainment LLC collect from you, and why we collect it and use it. This Notice covers our practices regarding the personal information of all applicants to our job positions. Please review it carefully.

Categories of personal information we collect from you

We collect personal information about you throughout the recruiting process, in particular the following categories. Generally, we obtain this information through our Recruiting Team:

A. Identification and contact information

    1. Direct identifiers such as your first and last name.
    2. Indirect identifiers such as a government ID, your Social Security, work permit or passport #.
    3. Contact information such as your email address, mailing address, telephone number.

B. Other information about you or that can be associated with you such as:

  1. Sensitive/Protected Data. During the recruitment process, you may (voluntarily) provide us with your ethnicity, gender, military service information, or physical or mental health information, as well as your national origin and citizenship.
  2. Professional or job position-related information, including your past professional experience, references; background verification; talent management and assessment; information regarding any conflicts of interests; and the terms and conditions of your job offer.
  3. Non-public education information, including information about your education records, such as grades and transcripts.

Location: San Diego, CA

Date posted: 2021-12-11