Responsibilities
- Design, build, test, and deploy new security technologies, including developing operational documentation and runbooks.
- Evaluate, recommend, integrate, and automate security tools and processes to enhance the protection of corporate assets and infrastructure.
- Conduct security risk assessments, exposure analyses, and security architecture reviews to ensure secure and cost-effective system and network performance.
- Lead or assist in producing periodic or ad-hoc security reports that provide situational awareness to senior stakeholders.
- Analyze network security elements and architectural designs to maintain optimal performance, security, and operational resilience.
- Monitor and manage networks, systems, and infrastructure for attacks, malware, intrusions, and vulnerabilities, including full remediation of impacted systems.
- Implement, operate, and tune enterprise security technologies (e.g., IPS/IDS, vulnerability scanners, encryption, endpoint protection).
- Support security audits, compliance reviews, and risk-management activities, delivering required documentation and remediation follow-up.
- Participate in or lead incident response activities and provide rotational after-hours on-call support.
- Develop and maintain cybersecurity policies, procedures, and controls, including risk management and incident response plans.
- Conduct security assessments and penetration tests to identify and evaluate vulnerabilities across systems and networks.
- Manage, configure, and monitor security tools and technologies such as firewalls, IDS/IPS, and antivirus platforms.
- Investigate, contain, and remediate cybersecurity incidents, including breaches, malware, and other threats.
- Provide cybersecurity training to employees, promoting security awareness and safe practices.
- Stay current on emerging threats, trends, and best practices through continuous learning and industry engagement.
Requirements
- Bachelor's degree in Computer Science, Information Systems, or related field, or equivalent experience.
- 5+ years of hands-on Security Engineering, Security Planning, or Security Operations experience.
- 2+ years of network administration/engineering experience and 2+ years of system administration experience.
- Advanced knowledge of security technologies with experience operating in medium to complex computing environments.
- Hands-on experience with two or more enterprise security technologies, such as IPS/IDS, VPNs (SSL/IPsec), firewalls, NAC, Windows/Linux OS, packet inspection, or directory services (LDAP/AD).
- Strong understanding of network architecture and concepts, including routing, switching, DNS, DHCP, subnetting, and security dependencies across server/VM environments.
- Experience implementing security technologies, conducting risk assessments, and integrating security controls into operational frameworks.
Nice to Have
- Professional security certifications such as Security+, CISSP, CISSP-ISSAP, or SANS.
- Experience with endpoint security solutions (EDR, AV, DLP) and web filtering tools (e.g., Palo Alto, Forcepoint, Sophos).
- Strong technical documentation skills (e.g., reports, proposals, SOWs, white papers).
- Ability to work independently with minimal supervision while managing multiple tasks in a team environment.
Benefits
- comprehensive medical/dental coverage
- generous PTO
- education assistance
- annual merit increase eligibility in a growth-focused work environment
Additional Information
- The Security Engineer III is responsible for protecting Hyundai AutoEver America's information systems and infrastructure by implementing, managing, and enhancing a wide range of enterprise security technologies. The role spans security engineering, network security, and security operations—supporting incident response, vulnerability management, security assessments, risk mitigation, and cross-functional collaboration to maintain a secure and resilient environment.
