Information Security SIEM Engineer

Job Title: Information Security SIEM Engineer

The APAC Regional SIEM Engineer at NXP will be responsible for designing implementing and optimizing our Security Information and Event Management (SIEM) platform to ensure robust threat detection and Log aggregation/analyses capabilities across IT Operational Technology (OT) and R&D environments. this role is critical in enabling advanced security analytics and automation for our global security operations.

As an APAC Regional SIEM Engineer you will architect and maintain SIEM solutions that aggregate normalize and correlate security events from diverse sources. You will collaborate closely with SOC analysts threat hunters security architects and engineering teams to enhance detection logic improve alert fidelity and integrate threat intelligence feeds. This role will also drive automation initiatives to streamline incident response and exposure management workflows.

The ideal candidate will be passionate about security engineering log management and building scalable detection capabilities. They should have strong experience in SIEM platforms (e.g. NGSIEM Splunk Sentinel) scripting for automation and a solid understanding of security operations processes. Familiarity with OT environments and manufacturing systems is highly desirable.

Your opportunity:

NXP is a global player in Semiconductor industry and security is an essential and integral part of our business. Security Operations & Threat Defense

Job Responsibility:

Operational Mentality and Vision:

• Drive continuous improvement of SIEM use cases correlation rules and dashboards to strengthen detection and response capabilities.
• Advocate for automation and orchestration to reduce manual effort and improve operational efficiency.
• Collaborate with a regional team of cybersecurity professionals focused on threat detection monitoring and incident response for IT OT and R&D environments.
• Propose and enhance Security Operations Center (SOC) processes including playbooks automation and alert triage.

Engineering

• Integrate SIEM with complementary security tools (SOAR EDR threat intelligence platforms) to enable automated workflows and advanced analytics.
• Implement data retention strategies and ensure compliance with regulatory and organizational requirements.
• Continuously evaluate emerging technologies and recommend enhancements to improve detection capabilities and operational efficiency.

OT & R&D Security Strategy:

• Limited experience in security controls and frameworks tailored for ICS/SCADA industrial IoT (IIoT) and embedded systems in OT environments.
• Ability to work closely with regional engineering and R&D teams to integrate security into product development lifecycles.
• Ensure compliance with industry regulations and frameworks such as NIST CSF IEC 62443 and MITRE ATT&CK for ICS

Risk Management and Ethical Considerations

• Work closely with regional security and risk peers to foresee and mitigate risks ensuring ethical operations and compliance with upcoming regulations.

Job Qualification:

Required Qualifications & Experience:

• 9 years of experience in cybersecurity with a focus on SIEM blue teaming and cyber defense.
• 3 years working with the Crowdstrike NGSIEM Platform
• Required at least two (2) of the Certifications from the Desired Certifications list.
• Foundational expertise in both IT and OT security with knowledge of ICS SCADA and industrial cyber threats.
• Experience securing R&D environments including embedded systems proprietary technologies and intellectual property.
• Hands-on experience with SIEM EDR NDR threat intelligence platforms and security automation.
• Knowledge of MITRE ATT&CK (Enterprise & ICS) NIST 800-82 IEC 62443 and Zero Trust principles.
• Experience leading a team of cybersecurity professionals and developing operational security teams.
• Fundamental understanding of cloud security (AWS Azure GCP) and hybrid security architectures.

Desired Certifications

• GIAC Associate Certified Incident Handler
• GIAC Associate Security Operations Certified
• GIAC Security Essentials (GSEC)
• Associate Certified Cloud Security Professional (CCSP)
• Certified Information Systems Security Professional (CISSP)
• COMPTIA Security
• COMPTIA CYSA
• AWS Certified Security
• Microsoft SC - 200

More information about NXP in India...