The ChallengeTake-Two Security's goal is to empower our label divisions to securely develop triple-A game content. The Information Security Engineer will analyze and implement security systems across the Take-Two technology stack. You will collaborate with Infrastructure, Security Engineering & Ops, and Architecture teams to build, maintain, and improve existing security systems across Endpoint, Network, Cloud and Data Security, & SOC applications. This includes developing new tools as needed. You will assess network security firewall change requests internally and across subsidiaries to ensure secure connectivity. You will also regularly work with Security colleagues in the studio teams to address their priorities alongside our own.
What You'll Take On- Enhance our Information Security posture through EDR/DLD/CSPM/NSM management for enterprise endpoint computing, virtualization, cloud and network security.
- Identify misconfigurations or security control gaps, manage vulnerabilities, and automate endpoint asset discovery across the enterprise network and cloud, working with Security & IT teams.
- Review and respond to events using Security monitoring systems and process technical change requests for Infrastructure, Engineering, and Ops.
- Ensure T2's compliance within Security applications with regular KPI or Risk Indicators.
- Possible participation in incident response with on-call availability.
- Map system defenses and monitoring capabilities against threat frameworks like MITRE ATT&CK and OWASP to build defenses for Take-Two assets.
- Use project tools for objective tracking and accurate project scoping.
- Contribute to technical writing for T2 Information Security Policies, Standards, and technical project documentation, adhering to frameworks (e.g., NIST, CIS, ISO 27001).
- Periodically contribute to the T2 Risk management program by reviewing endpoint, network, & cloud asset configurations, patching, and vulnerability scan results.
- Develop programmatic automations and scripting for Security system updates.
- Contribute to AI Security program analysis and periodic control review.
What You Bring - Service-oriented attitude and tempered ego.
- BA/BS or equivalent experience in computer science or related field.
- 3-5 years in a Security Analyst, Security Engineering, or Network Security Engineering environment.
- Experience with endpoint detection & response platforms, and other enterprise security infrastructure platforms, SIEM, SOAR, DLD/P.
- Knowledge of Security threat frameworks like MITRE ATT&CK and OWASP.
- Experience with programming languages (Python, C, C++, C#, PowerShell, VBScript) for programmatic automation.
- Proficiency in analyzing and understanding security concepts relevant to enterprise security.
- Experience in a result-oriented, retail media driven environment with key result timelines.
What We Offer You: - Great Company Culture. Ranked as one of the most creative and innovative places to work, creativity, innovation, efficiency, diversity and philanthropy are among the core tenets of our organization and are integral drivers of our continued success.
- Growth: As a global entertainment company, we pride ourselves on creating environments where employees are encouraged to be themselves, inquisitive, collaborative and to grow within and around the company.
- Work Hard, Play Hard. Our employees bond, blow-off steam, and flex some creative muscles - through corporate boot camp classes, company parties, game release events, monthly socials, and team challenges.
- Benefits. Medical (HSA & FSA), dental, vision, 401(k) with company match, employee stock purchase plan, commuter benefits, in-house wellness program, broad learning & development opportunities, a charitable giving platform with company match and more!
- Perks. Fitness allowance, employee discount programs, free games & events, stocked pantries and the ability to earn up to $500+ per year for taking care of yourself and more!
Please be aware that Take-Two does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others. Take-Two also does not engage in any financial exchanges during the recruitment or onboarding process, and the Company will never ask a candidate for their personal or financial information over an app or other unofficial chat channel. Any attempt to do so may be the result of a scam or phishing exercise. Take-Two's in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a take2games.com email domain). If you need to report an issue or otherwise have questions, please contact [redacted]
