Information Security Engineer

<h2><strong>WHO WE ARE </strong></h2> <p> </p> <p>Headquartered in New York City, Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. The Company develops and publishes products principally through Rockstar Games, 2K, and Zynga. Our products are currently designed for console gaming systems, PC, and Mobile, including smartphones and tablets, and are delivered through physical retail, digital download, online platforms, and cloud streaming services. The Company’s common stock is publicly traded on NASDAQ under the symbol TTWO.</p> <p>While our offices (physical and virtual) are casual and inviting, we are deeply committed to our core tenets of creativity, innovation and efficiency, and individual and team development opportunities. Our industry and business are continually evolving and fast-paced, providing numerous opportunities to learn and hone your skills. We work hard, but we also like to have fun, and believe that we provide a great place to come to work each day to pursue your passions.</p> <h2><strong>THE CHALLENGE</strong></h2> <p>Take-Two Security's goal is to empower our label divisions to securely develop triple-A game content. The Information Security Engineer will analyze and implement security systems across the Take-Two technology stack. You will collaborate with Infrastructure, Security Engineering Ops, and Architecture teams to build, maintain, and improve existing security systems across Endpoint, Network, Cloud and Data Security, SOC applications. This includes developing new tools as needed. You will assess network security firewall change requests internally and across subsidiaries to ensure secure connectivity. You will also regularly work with Security colleagues in the label teams to address their priorities alongside our own. </p> <h2><strong>WHAT YOU’LL TAKE ON</strong></h2> <ul> <li>Enhance our Information Security posture through EDR/DLD/CSPM/NSM management for enterprise endpoint computing, virtualization, cloud and network security. </li> <li>Identify misconfigurations or security control gaps, manage vulnerabilities, and automate endpoint asset discovery across the enterprise network and cloud, working with Security IT teams. </li> <li>Review and respond to events using Security monitoring systems and process technical change requests for Infrastructure, Engineering, and Ops. </li> <li>Ensure T2's compliance within Security applications with regular KPI or Risk Indicators. </li> <li>Possible participation in incident response with on-call availability. </li> <li>Map system defenses and monitoring capabilities against threat frameworks like MITRE ATTCK and OWASP to build defenses for Take-Two assets. </li> <li>Use project tools for objective tracking and accurate project scoping. </li> <li>Contribute to technical writing for T2 Information Security Policies, Standards, and technical project documentation, adhering to frameworks (e.g., NIST, CIS, ISO 27001). </li> <li>Periodically contribute to the T2 Risk management program by reviewing endpoint, network, cloud asset configurations, patching, and vulnerability scan results. </li> <li>Develop programmatic automations and scripting for Security system updates. </li> </ul> <h2><strong>WHAT YOU BRING</strong></h2> <ul> <li>Service-oriented attitude and tempered ego. </li> <li>BA/BS or equivalent experience in computer science or related field. </li> <li>3-5 years in a Security Analyst, Security Engineering, or Network Security Engineering environment. </li> <li>Experience with endpoint detection response platforms, and other enterprise security infrastructure platforms, SIEM, SOAR, DLD/P. </li> <li>Knowledge of Security threat frameworks like MITRE ATTCK and OWASP. </li> <li>Experience with programming languages (Python, C, C++, C#, PowerShell, VBScript) for programmatic automation. </li> <li>Proficiency in analyzing and understanding security concepts relevan ... (truncated, view full listing at source)