Principal Identity Architect

Why PlayStation

PlayStation isnt just the Best Place to Play its also the Best Place to Work. Today were recognized as a global leader in entertainment producing The PlayStation family of products and services including PlayStation5 PlayStation4 PlayStationVR PlayStationPlus acclaimed PlayStation software titles from PlayStation Studios and more.

PlayStation also strives to create an inclusive environment that empowers employees and embraces diversity. We welcome and encourage everyone who has a passion and curiosity for innovation technology and play to explore our open positions and join our growing global team.

The PlayStation brand falls under Sony Interactive Entertainment a wholly-owned subsidiary of Sony Group Corporation.

Principal Identity Architect

San Diego CA

Role overview:

We are searching for a highly-skilled and self-motivated Principal Identity Architect to join our global team. As a key member of the PlayStation Identity team you will play a critical role in establishing SIEs strategy for identity management as well as evolving the organizations identity management capabilities. This position will require you to architect deploy and manage identity services across hybrid environments ensuring that our authentication and authorization systems are secure scalable and aligned with business objectives. You will work closely with cross-functional teams including IT security cloud architects network teams and application development to create robust identity solutions that enable seamless user experiences.

What youll be doing:

• Lead the strategy design and implementation of enterprise-wide identity and access management (IAM) solutions with a strong focus on Active Directory and Microsoft Entra (Azure AD).
• Architect and design hybrid identity solutions across on-premises and cloud platforms including multi-forest AD environments and Azure AD integration.
• Lead the design of enterprise role models (RBAC/ABAC) separation of duties (SoD) and least-privilege access frameworks.
• Define policies workflows and controls for access request approval and certification processes.
• Lead troubleshooting and root-cause analysis for complex identity issues across the enterprise.
• Provide subject matter expertise in the deployment and management of Active Directory including replication Group Policy DNS trusts Kerberos and secure AD hardening practices.
• Drive the adoption of modern authentication protocols such as OAuth OIDC SAML and Kerberos.
• Modernize access solutions with Zero Trust Authentication architectures.
• Lead initiatives to improve identity security posture through privileged access management (PAM) least-privilege models and conditional access policies in Azure AD.
• Architect and implement Microsoft Entra ID Governance and Conditional Access policies to ensure compliance with regulatory requirements (e.g. SOX GDPR).
• Design and implement Single Sign-On (SSO) solutions and multi-factor authentication (MFA) strategies across enterprise and cloud applications.
• Collaborate with security teams to integrate identity solutions with SIEM and security monitoring platforms for advanced threat detection and incident response.
• Serve as a key advisor for mergers acquisitions and cloud migrations ensuring seamless integration of identity and access management systems.

What were looking for:

• Expert-level knowledge of Active Directory (AD): Extensive experience with AD forest/domain design GPO management AD replication trusts DNS and AD hardening best practices.
• Microsoft Entra (Azure AD): Deep experience in managing Azure AD environments hybrid identity management (Azure AD Connect) Conditional Access Identity Governance and application management.
• Authentication Protocols: Strong expertise in authentication protocols (OAuth 2.0 OIDC SAML Kerberos NTLM) PKI and MFA solutions.
• IAM Solutions: Hands-on experience with Privileged Access Management (PAM) Identity Governance Role-Based Access Control (RBAC) and managing user lifecycle automation.
• Deep expertise in IGA platforms (SailPoint Saviynt Azure AD Identity Governance or comparable).
• Proven ability to design and deliver large-scale IGA programs supporting complex global organizations.
• Security: Knowledge of Zero Trust principles Conditional Access policies identity protection tools and integration with security systems (SIEM SOAR).
• Azure Infrastructure: Proficiency in Azure architecture including virtual networks virtual machines Azure AD Azure Identity Protection and Azure Key Vault.
• PowerShell & Automation: Advanced skills in PowerShell scripting for automation of identity-related tasks and configuration.
• Hybrid Identity: Experience integrating on-prem AD with cloud services using technologies like Azure AD Connect ADFS and third-party federation services.
• Monitoring & Troubleshooting: Proficiency with monitoring tools like Azure Monitor Log Analytics and troubleshooting tools for AD and Azure AD.
• Understanding of and exceptional skills in several of the following areas: cloud computing microservices distributed systems data structure operating system internals storage systems embedded system and databases Mastery of agile methodologies code reviews testing frameworks CI/CD tools and DevOps practices.

Soft Skills

• Leadership: Proven ability to Lead some of the most complex and demanding programs Demonstrates the ability to lead technical teams provide mentorship and inspire innovation within cross-functional teams.
• Communication: Excellent verbal and written communication skills with the ability to translate complex technical concepts into business terms for stakeholders.
• Problem-solving: Strong analytical and troubleshooting skills with a focus on root cause analysis and resolution of identity-related issues.
• Collaboration: Ability to work across diverse teams including IT security infrastructure application developers and external vendors.
• Strategic Thinking: Visionary mindset with the ability to think strategically about identity architecture and align it with future business goals.
• Project Management: Experience in leading complex identity management projects from concept to completion ensuring timelines budgets and stakeholder satisfaction.
• Adaptability: Ability to manage ambiguity and adjust to changing priorities technologies and business requirements.
• Customer Focus: Strong focus on user experience and stakeholder satisfaction balancing security and ease of use in identity solutions.
• Innovation: Continuous learning mindset and the ability to adopt new technologies and processes that drive efficiency and security.

Qualifications

• Bachelors or Masters degree in Computer Science Information Technology or a related experience.
• 15 years of experience in IT infrastructure with a focus on identity and access management.
• 10 years of hands-on experience with Active Directory and Azure AD in an enterprise setting.
• Professional certifications like Microsoft Certified: Identity and Access Administrator Associate Azure Solutions Architect Expert or similar are highly desirable.
• Familiarity with security frameworks like NIST ISO 27001 or CIS benchmarks is a plus.

#LI-KS1

Equal Opportunity Statement:

Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to gender (including gender identity gender expression and gender reassignment) race (including colour nationality ethnic or national origin) religion or belief marital or civil partnership status disability age sexual orientation pregnancy maternity or parental status trade union membership or membership in any other legally protected category.

We strive to create an inclusive environment empower employees and embrace diversity. We encourage everyone to respond.

PlayStation is a Fair Chance employer and qualified applicants with arrest and conviction records will be considered for employment.