Security Operations Engineer

Job Title: Regional SIEM Engineer

Grade/Location Preference: G3

Job Position: Regional SIEM Engineer

Role Summary: 

The Americas Regional SIEM Engineer at NXP will be responsible for designing, implementing, and optimizing our Security Information and Event Management (SIEM) platform to ensure robust threat detection and Log aggregation/analyses capabilities across IT, Operational Technology (OT), and R&D environments., this role is critical in enabling advanced security analytics and automation for our global security operations.

As an Americas Regional SIEM Engineer, you will architect and maintain SIEM solutions that aggregate, normalize, and correlate security events from diverse sources. You will collaborate closely with SOC analysts, threat hunters, security architects, and engineering teams to enhance detection logic, improve alert fidelity, and integrate threat intelligence feeds. This role will also drive automation initiatives to streamline incident response and exposure management workflows.

The ideal candidate will be passionate about security engineering, log management, and building scalable detection capabilities. They should have strong experience in SIEM platforms (e.g., NGSIEM, Splunk, Sentinel), scripting for automation, and a solid understanding of security operations processes. Familiarity with OT environments and manufacturing systems is highly desirable.

Your opportunity:

NXP is a global player in Semiconductor industry, and security is an essential and integral part of our business. Security Operations & Threat Defense

Job Responsibility:  

Operational Mentality and Vision:

• Drive continuous improvement of SIEM use cases, correlation rules, and dashboards to strengthen detection and response capabilities.
• Advocate for automation and orchestration to reduce manual effort and improve operational efficiency.
• Collaborate with a regional team of cybersecurity professionals focused on threat detection, monitoring, and incident response for IT, OT, and R&D environments.
• Propose and enhance Security Operations Center (SOC) processes, including playbooks, automation, and alert triage.

Engineering

• Integrate SIEM with complementary security tools (SOAR, EDR, threat intelligence platforms) to enable automated workflows and advanced analytics.
•  Implement data retention strategies and ensure compliance with regulatory and organizational requirements.
•  Continuously evaluate emerging technologies and recommend enhancements to improve detection capabilities and operational efficiency.

OT & R&D Security Strategy:

• Limited experience in security controls and frameworks tailored for ICS/SCADA, industrial IoT (IIoT), and embedded systems in OT environments.
• Ability to work closely with regional engineering and R&D teams to integrate security into product development lifecycles.
• Ensure compliance with industry regulations and frameworks such as NIST CSF, IEC 62443, and MITRE ATT&CK for ICS.

Risk Management and Ethical Considerations

• Work closely with regional security and risk peers to foresee and mitigate risks, ensuring ethical operations and compliance with upcoming regulations.

Job Qualification: 

Required Qualifications & Experience:

• 7+ years of experience in cybersecurity with a focus on SIEM blue teaming, and cyber defense.
• 3+ years working with the Crowdstrike NGSIEM Platform
• Required at least two (2) of the Certifications from the “Desired Certifications” list.
• Foundational expertise in both IT and OT security, with knowledge of ICS, SCADA, and industrial cyber threats.
• Experience securing R&D environments, including embedded systems, proprietary technologies, and intellectual property.
• Hands-on experience with SIEM, EDR, NDR, threat intelligence platforms, and security automation.
• Knowledge of MITRE ATT&CK (Enterprise & ICS), NIST 800-82, IEC 62443, and Zero Trust principles.
• Experience leading a team of cybersecurity professionals and developing operational security teams.
• Fundamental understanding of cloud security (AWS, Azure, GCP) and hybrid security architectures.

Desired Certifications

• GIAC Associate Certified Incident Handler
• GIAC Associate Security Operations Certified
• GIAC Security Essentials (GSEC)
• Associate Certified Cloud Security Professional  (CCSP)
• Certified Information Systems Security Professional (CISSP)
• COMPTIA Security +
• COMPTIA CYSA+
• AWS Certified Security
• Microsoft SC - 200

Creating Secure Connections and Infrastructure for a Smarter World

NXP Semiconductors N.V. (NASDAQ: NXPI) makes products and environments safer, more sustainable, and more secure with innovative connectivity and edge processing solutions for a smarter world.

We are in the business of better. Not just better technologies, but better innovations to improve society. As the world leader in secure connectivity and processing solutions for embedded applications, NXP is solving the world’s most complex technology challenges to accelerate business innovation, enhance how we work, and advance how we live.

Ready to create a smarter world? Visit our career website and follow us on social: LinkedIn, Facebook and Twitter.

What can you expect

Contract: This is a fulltime position with a permanent contract

Compensation: Besides a good salary, you will be eligible for our bonus plan and receive lunch vouchers, 25  vacation days and the possibility to buy company shares with a 15% discount. We also have flexible work hours and a work from home policy.

Development opportunities: We believe that a key component to growing our business is to develop our people. To enable you to grow your career at NXP, we offer online and offline learning opportunities to help you develop some of your core and professional skills.

Our office: We are based in one of the high tech hubs in Bucharest with easy access to public transport and restaurants and parks close by. We have many relaxation areas on-site, including a little library where you can borrow books, sofas to relax in a quiet place and a cafeteria and restaurant in our common area.

Hiring process: Applying only takes a minute! Fill in the online application and share your CV with us. After a positive screening based on your CV you will have an initial phone or video conversation with our Talent Acquisition Consultant followed by several business interviews. Here are some useful tips to help you prepare.

And more: Life at NXP is more than work alone. We like to start our day with a free coffee and chat with a colleague and on Thursdays we have fresh fruits for all employees. Join us at one of the many social activities that are organized by and for employees such as our Christmas parties, our employee children’s party and food fairs. Or help us give back to society by donating blood or collecting clothes and food for children in need.

What’s next

Candidates are invited to apply on our career page with the resume and motivation letter in English for one or several open jobs at the same time.

At the application stage, all candidates should have a valid visa and work permit to work in Romania.

If you’re excited about this opportunity, we kindly invite you to apply!

Please note: The successful candidate may/will be responsible for security related tasks. The assignment may/will be in scope of security certifications, therefore a conscious and reliable way of working is necessary.

More information about NXP in Romania...

#LI-9ccb