Information Security Engineer

Location: Rancho Cordova, CA or Irving, TX

Must be a US Citizen or Green Card holder due to government and law enforcement client base.

NEC's biometrics business unit is seeking to add an Information Systems Security Engineer to our growing security team to ensure that effective security controls are in place that complies with NEC and customer organization’s information security policies, standards, operating procedures, industry best practices, and regulatory requirements.  Working with cross functional teams - IT Infrastructure, Development, Database Systems Engineering, Security and Management, you will assist in lowering the overall risk levels, maintain confidentiality, integrity, availability of data, maintain overview and control of infrastructure security.

Some of the main responsibilities of this role include:

• Continuous monitoring of infrastructure to ensure security is maintained.
• Responsible for reporting on infrastructure security health to management.
• Work closely with CI/CD and system engineering to ensure security of environments is maintained.
• Monitoring infrastructure security using Redhat and Microsoft Security environments.
• Perform system security administration on designated technology platforms, including operating systems.
• Handle infrastructure security controls.
• Coordinate design of remediation plans for identified infrastructure vulnerabilities.
• Ability to analyze application and system architecture to identify risks.  
• Responsible for the resolution and recovery of infrastructure security issues and requests.
• Proactively identify weaknesses and vulnerabilities in the infrastructure using available tools.  
• Serve as a key resource for security issue escalation.
• Knowledge of Windows and Linux Operating Systems
• Familiarity with network security principles
• Minimum 3 years of experience working in an infrastructure security role.
• Familiarity with audit and assessments of IT infrastructure.
• Experience with Security policy/procedure creation and implementation – including IT Security policy, BCP policy, DR planning.

Disclaimer: This job description is intended only as a guide and summary of the typical functions of the position. It is not an exhaustive or comprehensive list of all possible responsibilities, tasks, and duties to which the contingent worker may be assigned. An employee’s supervisor may ask the employee to perform additional duties or take on additional responsibilities without notice. This job description is neither complete nor permanent and may be amended at any time in the Company’s sole discretion.

Technical Skills

1. Network Architecture Review: Understanding the network and system architecture supporting different projects. This includes basic knowledge of routing protocols, switching, firewalls, VPN, DNS, active directories, and servers.
2. Threat Detection and Vulnerability Management: A critical component of the job is to identify and mitigate the various threats to an organization’s data. A candidate should have a deep understanding of various types of attacks and be skilled in identifying, preventing and recovering from them. They should be well-versed in industry-standard vulnerability assessment tools, frameworks, and their usage to mitigate any potential threats.
3. Data Protection and Encryption: Basic understanding of cryptographic algorithms and protocols for data encryption and decryption.
4. Programming and Scripting: Knowledge of programming languages such as Python, Java, and C++ is preferred.

Soft Skills

1. Communication: Effective communication skills, including writing and oral communication, are vital for this role. The candidate should be proficient in creating and presenting detailed reports. They should also be able to explain complex technical concepts to non-technical stakeholders.
2. Analytical and problem-solving skills: Along with technical expertise, the candidate should possess strong analytical and problem-solving skills. They should be able to comprehend vast amounts of information, identify significant trends and patterns, and develop actionable insights.
3. Critical thinking: The candidate should present a logical approach to assessing and resolving issues related to security systems.
4. Teamwork: Since this role works with several departments to identify and fix security issues, they must be an effective collaborator.
5. Continuous learning: The security field is continuously evolving, and the ideal candidate for this role should keep up with the latest developments in security technology, frameworks and tools.

Pre-requisites:

• Bachelor’s degree in Cybersecurity or Computer Science and/or 3+ years of experience working in a security role at a medium to large-sized enterprise (>100 employees).
• Knowledge of ISO 27001 and NIST Security Standards and processes.
• Certs: CISSP, ITIL, Security+ Preferred.

• Knowledge of Windows and Linux Operating Systems
• Familiarity with network security principles
• Minimum 3 years of experience working in an infrastructure security role.
• Familiarity with audit and assessments of IT infrastructure.
• Experience with Security policy/procedure creation and implementation – including IT Security policy, BCP policy, DR planning.

Supervisory Responsibility, if any:

This position has no supervisory responsibilities.

The anticipated salary range for this position is $77,000 to $96,000 with a target annual 7.5% bonus; depending upon the selected candidate’s relevant experience, the exact salary for the role may fall outside of this range. This role will also be eligible to participate in the Company’s bonus/incentive program(s). NEC offers an extensive benefits program and the role will also include, a Health Insurance package with options that include multiple Medical and Dental coverage options, Pharmacy Insurance, Vision Insurance, Life and Accidental Death and Dismemberment Insurance, Salary Continuation and Voluntary Long-Term Disability Coverage, an Employee Assistance Program (EAP), Adoption Assistance Program, 401(k) with a 50% match up to 6% of employee contribution, 15 PTO days, 10 paid sick days, 11 paid public holidays, Continuing Education and Tuition Reimbursement, 2 paid Community Service Days, a Travel Assistance Program, Pre-Paid Legal plans.

ABOUT NEC CORPORATION OF AMERICA

Headquartered in Irving, Texas, NEC Corporation of America (NEC) is a leading technology integrator providing solutions that improve the way people work and communicate. NEC creates the social values of safety, security, fairness and efficiency to promote a more sustainable world where everyone has the chance to reach their full potential.

With a global team of 100,000, and 64,000+ technology patents, we deliver one of the industry’s strongest and most innovative portfolios of communications, analytics, security, biometrics, and technology solutions that unleash customers’ productivity potential. Through these solutions, NEC combines its best-in-class solutions and technology to solve today’s most complex business problems. NEC Corporation of America is a wholly owned subsidiary of NEC Corporation, a global technology leader with a presence in 140 countries and $27 billion in revenues. Backed by 123 years of innovation and experience, NEC

Level Description

Experienced level professional that applies practical knowledge of job area typically obtained through advanced education and work experience. Works independently with general supervision. Works to achieve operational targets within the job area with a direct impact on function / sub-function results. Problems faced are difficult but typically not complex. May influence others within the job area through explanation of facts, policies and practices.