Title: Threat Intelligence Investigator Location: San Mateo, CA (preferred) or San Diego, CA Hybrid Category: Corporate Security Job Description: Why Sony Interactive Entertainment? Sony Interactive Entertainment isn’t just the Best Place to Play — it’s also the Best Place to Work. Sony Interactive Entertainment (SIE) is the company behind the PlayStation brand. As a subsidiary of Sony Group Corporation, we’re part of a proud legacy of innovation and excellence. SIE is a dynamic technology company, delivering cutting-edge hardware and network services to more than 100 million people and an entertainment leader, home to some of the most beloved and recognizable intellectual properties (IP) in the world. Our role at SIE is to create and nurture the experiences under the PlayStation brand, a name synonymous with entertainment excellence and creativity. Threat Intelligence Investigator (Contract) * San Mateo, CA (preferred) or San Diego, CA (hybrid) - will require 2 -3 days onsite *Please note: This is a temporary position with an initial 12-month term and the possibility of extension, employed through our staffing partner, Yoh. The Role; The Threat Intelligence Investigator is a key member of the Corporate Security team responsible for receiving, evaluating, investigating, and escalating threats and security-related incidents across internal and external platforms. The successful candidate will leverage investigative methodologies, intelligence resources, and data systems to assess the credibility of global threats, support proactive risk management efforts, and collaborate with law enforcement agencies (LEA) and internal stakeholders to mitigate risk. This role supports investigations and threat management activities involving consumer platforms, employees, business operations, studios, assets, and the company’s reputation. The Investigator will also contribute to intelligence products, operational reporting, and proactive threat identification capabilities. Working closely with Consumer Services, Online Safety, Moderation, Human Resources, Legal, IT Operations, Engineering, GSOC, and relevant studios, the Investigator will help ensure effective and consistent investigative, intelligence, and threat management processes. This role is critical to identifying, analyzing, investigating, and escalating incidents that may impact SIE personnel, assets, business operations, or brand reputation. What You'll be Doing - Conduct investigations into threats targeting SIE platforms, services, and associated ecosystems, including internal incidents involving potential corporate security breaches, ensuring appropriate escalation and stakeholder engagement. - Conduct investigative enquiries into security incidents, threats, policy violations, and other corporate security matters, ensuring appropriate escalation, documentation, and stakeholder engagement. - Gather, review, preserve, and assess relevant investigative material, including CCTV footage, access control records, OSINT, internal reporting, and other available evidence sources. - Conduct interviews and information gathering with relevant stakeholders, witnesses, and involved parties to support investigative fact-finding and threat assessment activities. - Analyze investigative information to establish timelines, identify behavioral indicators, assess risk, and support informed operational decision-making. - Produce clear, accurate, and objective investigative documentation, reports, and case updates in accordance with established procedures and reporting standards. - Prioritize and manage cases end-to-end based on threat level and urgency, ensuring all investigative activity is accurately documented and integrated into case management and reporting mechanisms. - Receive, process, and evaluate threat reports using investigative tools and supporting resources to assess credibility and risk. - Develop and disseminate actionable intelligence to support threat management, risk mitigation, and informed decision-making across the organization. - Support strategic intelligence development activities through horizon scanning, trend monitoring, and collection of relevant threat intelligence to identify emerging risks impacting SIE employees, operations, studios, assets, and brand reputation. - Contribute to the production of intelligence reporting, threat trend analysis, and operational risk assessments that support proactive threat management, stakeholder awareness, and informed security decision-making across the organization. - Monitor and assess emerging threat trends, tactics, techniques, and procedures (TTPs), producing written intelligence assessments that support proactive threat management and maintain a forward-looking view of the corporate security threat landscape. - Act to safeguard people, assets, and business operations through timely and responsible decision-making. - Ensure compliance with SIE policies, procedures, and applicable global legal and regulatory requirements (such as the Digital Services Act). - Report credible threats to law enforcement and collaborate with relevant agencies, providing clear, evidence-based rationale in line with SIE protocols. - Build and maintain effective relationships with law enforcement, statutory bodies, industry partners, and internal stakeholders to support coordinated threat response and intelligence sharing. - Support knowledge sharing and capability building through training, presentations, and engagement with internal and external partners. - Prepare operational and performance management reports, highlighting trends, quality metrics, categorization, workload management, and other key operational insights to support continuous improvement initiatives. - Contribute to continuous improvement initiatives, including process refinement, post-incident debriefs, lessons learned activities, and operational maturity improvements. - Support additional investigations, threat-related activities, event security planning and execution, and other Corporate Security projects as required. - Participate in other duties aligned with Corporate Security operational requirements. - Possible travel required. What We're Looking for: - Prior experience in law enforcement, corporate security, intelligence, trust & safety, investigations, or a related operational field involving assessment, response, investigation, and management of threats or security incidents. - Demonstrated investigative knowledge/experience involving evidence gathering, investigative documentation, open-source research, and fact-finding. - Strong written and verbal communication skills, including the ability to communicate effectively with senior leadership and cross-functional stakeholders. - Strong OSINT and online investigation skills, with demonstrated analytical and critical thinking abilities, including the ability to assess ambiguous or uncertain situations. - Demonstrated ability to make informed decisions, multitask, and perform effectively in high-pressure situations within tight time constraints. - Understanding of current global events, international geography, online threat landscapes, and diverse cultures. - Knowledge of investigative processes, threat assessment methodologies, and intelligence development practices. - Ability to follow established policies, procedures, and investigative standards consistently. - Experience working with complex systems, investigative platforms, case management tools, or intelligence databases. - Knowledge of reporting and metrics tools (such as Tableau or similar platforms) is desirable. - Comfortable working independently and collaboratively within cross-functional global teams. - Highly self-driven, responsive, proactive, and capable of taking ownership of tasks through completion. - Must meet any state-required training or licensing qualifications where applicable. Nice to Have: - Bachelor’s Degree or higher in Emergency Management, Communications, Information Technology, Political Science, Criminal Justice, Intelligence Studies, or related field. - Experience in intelligence, corporate security, military, law enforcement, trust & safety, or investigative environments. - Demonstrated investigative and systems analysis/research experience supporting operational decision-making in threat intelligence, trust & safety, or corporate security environments. - Experience producing intelligence reporting, threat assessments, operational briefings, or strategic risk analysis products. - Familiarity with behavioral threat assessment concepts, workplace violence prevention, or protective intelligence methodologies is desirable.

• You will contribute to advancing the security of TOTVS products by performing technical validation of vulnerabilities, conducting security research, and analyzing exposures. • Triage, track, and technically validate vulnerability reports from Bug Bounty programs, Vulnerability Disclosure Programs (VDP), and other sources. • Assist in reproducing, analyzing, prioritizing, and preliminarily assessing the impact of vulnerabilities in web applications, APIs, and product components. • Conduct security research to identify public exposures, known vulnerabilities, CVEs, and risks related to the product ecosystem. • Support monitoring and the development of applied threat intelligence capabilities for product security, identifying trends and emerging risks. • Engage in technical collaboration with internal teams and security forums, supporting documentation and tracking of remediation plans.

Title: Staff Software Engineer - ISPM Platform (Ruby/Rails) Location: United States of America Job Description: Reports to: Engineering Manager Location: Remote US Compensation Range: $200,000 to $220,000 base plus bonus and equity What We Do: Cybercrime is growing, and more businesses are getting hit by threats that used to target only the biggest organizations. That pushes defenders like us to operate at the highest level, and it deepens our need for good people who want to make a meaningful impact. Founded in 2015 by former NSA cyber operators, Huntress is a remote-first team working to make enterprise-grade cybersecurity accessible to businesses of all sizes. We work closely with security teams and service providers protecting complex environments, often without the time or headcount to handle it all. That’s why we build our technology in-house and back it with a 24/7 human-led Security Operations Center (SOC). As a result, our platform is never disconnected from the experts who manage it, ensuring our customers' protection. Huntress now secures more than 5M endpoints and 11M identities worldwide. Those numbers keep growing because more businesses rely on us to help carry the load and operate with more confidence. Every day, you can see that commitment in how we stand with our customers and how we show up for each other. What You’ll Do: The Huntress team is looking for an innovative and highly motivated Staff Software Engineer with excellent problem-solving and communication skills to join our Identity Security Posture Management (ISPM) team. This is a new product which is generally available on July 1st and already has very strong engagement within our customer base. You will be instrumental in building and growing this product from its roots. You will be part of a growing product team that is strategically key to protecting the 99% from cyber attacks. In this role, you will focus on creating the technical vision and implementing new and exciting features from the product roadmap. You will work closely with a product manager, senior engineers, security researchers, designers, and market experts to develop market-defining solutions for the identity protection space. At Huntress, Staff Engineers are expected to be technical leaders, driving new ideas, building great software and mentoring more junior engineers. We make full use of AI coding tools to enable you to accelerate your development. We do not cap token usage, however we expect our engineers to use AI, and all tools responsibly. ISPM is a new frontier of security, with the vast majority of breaches in 2026 beginning with identity compromise. ISPM moves compromise prevention “further left”, ideally preventing more identities from being breached by encouraging better hygiene in everyday actions. In this role, you will build scalable solutions to emerging threats in a rapidly evolving landscape. In many cases, you will work on problems nobody has solved before, with no existing template, so the ability to learn quickly and think outside the box is critical. You will work across the stack, building new UI one day, scalable data models and event ingestions the next, then wrapping up the week with automated detectors to alert customers and our Security Operations Center to suspicious activity. Responsibilities: - Design, develop, and maintain end-to-end solutions using primarily Ruby on Rails. - Implement efficient data pipelines to extract relevant information from massive amounts of noise - Collaborate with security researchers to understand hacking strategies and methods to combat them - Be a technical thought leader for your team, providing architectural and design direction - Continuously improve solution quality through code reviews, manual and automated testing - Set standards for excellence and develop processes that make the team continuously more efficient - Lead more junior engineers to deliver larger projects, including breaking down ambiguous problems into well-defined tasks, validating designs, and serving as POC for stakeholders - Design the systems and architecture to support processing petabytes of data efficiently What You Bring To The Team: - 10+ years of experience developing complex software products - 5+ years of programming in Ruby on Rails - Experience with AI coding tools, such as Claude Code - Experience with relational databases, such as Postgres Preferred Qualifications: - Experience working in the CyberSecurity industry - Experience working with external APIs (particularly REST, OData, authZ and authN flows) - Familiarity with identity and resource security providers like m365, Okta, Google Workspaces, or similar - Experience with other data storage technologies (Clickhouse, Redis, ElasticSearch, Mongo, etc.) What We Offer: - 100% remote work environment - since our founding in 2015 - Generous paid time off policy, including vacation, sick time, and paid holidays - 12 weeks of paid parental leave - Highly competitive and comprehensive medical, dental, and vision benefits plans - 401(k) with a 5% contribution regardless of employee contribution - Life and Disability insurance plans - Stock options for all full-time employees - One-time $500 reimbursement for building/upgrading home office - Annual allowance for education and professional development assistance - $75 USD/month digital reimbursement - Access to the BetterUp platform for coaching, personal, and professional growth Huntress is committed to creating a culture of inclusivity where every single member of our team is valued, has a voice, and is empowered to come to work every day just as they are. We do not discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, disability, veteran status, genetic information, marital status, or any other legally protected status. We do discriminate against hackers who try to exploit businesses of all sizes. Accommodations: If you require reasonable accommodation to complete this application, interview, or pre-employment testing or participate in the employee selection process. Please note that non-accommodation requests to this inbox will not receive a response. Huntress uses artificial intelligence tools to assist in reviewing and evaluating job applications, including resume screening, skills assessment, and candidate matching and comparisons. These AI tools support our human recruiters in the initial review process but do not make final hiring decisions without human involvement. By submitting your application, you acknowledge this use of AI in our recruitment process. Please review our Candidate Privacy Notice for more details on our practices and your data privacy rights. #BI-Remote

• Write high-performance, asynchronous, low-latency code that handles massive, non-blocking throughput on a single machine. • Dig into memory profiles, hunt down GC pressure, eliminate allocations, and design highly concurrent event-driven architectures. • Build and refine heavy asynchronous execution patterns, ensuring maximum thread efficiency and minimal latency overhead across massive workloads. • Design, develop, and maintain complex, scalable, and high-performance systems with a focus on non-blocking architectures and highly efficient, maintainable code. • Aggressively reduce memory allocations and GC pressure using profiling tools and advanced allocation techniques. • Identify and troubleshoot production issues, conducting low-level root cause analysis and implementing fixes to ensure strict system reliability. • Analyze and articulate the architectural trade-offs of different design choices.