Job details

Information Security Engineer II

Get a free resume review

About NCR VOYIX

NCR VOYIX Corporation (NYSE: VYX) is a leading global provider of digital commerce solutions for the retail, restaurant and banking industries. NCR VOYIX is headquartered in Atlanta, Georgia, with approximately 16,000 employees in 35 countries across the globe. For nearly 140 years, we have been the global leader in consumer transaction technologies, turning everyday consumer interactions into meaningful moments. Today, NCR VOYIX transforms the stores, restaurants and digital banking experiences with cloud-based, platform-led SaaS and services capabilities.

Not only are we the leader in the market segments we serve and the technology we deliver, but we create exceptional consumer experiences in partnership with the world’s leading retailers, restaurants and financial institutions. We leverage our expertise, R&D capabilities and unique platform to help navigate, simplify and run our customers’ technology systems.

Our customers are at the center of everything we do. Our mission is to enable stores, restaurants and financial institutions to exceed their goals – from customer satisfaction to revenue growth, to operational excellence, to reduced costs and profit growth. Our solutions empower our customers to succeed in today’s competitive landscape.

Our unique perspective brings innovative, industry-leading tech to all the moving parts of business across industries. NCR VOYIX has earned the trust of businesses large and small — from the best-known brands around the world to your local favorite around the corner.

Job Description

Information Security Engineer II

This role is part of NCR Voyix’s Global Information Security team. This team is responsible for supporting and progressing NCR Voyix’s Corporate Information Security program. The primary goal of the program is to protect the confidentiality, integrity, and availability of information resources.

We are seeking a highly skilled and experienced Information Security Consultant will be responsible for day-to-day activities, which include responding to both routine and high severity incidents and leading our Forensics E-Discovery team. This is a position where the ideal candidate will have a strong background in network incident response, digital forensics, e-discovery processes, and litigation support.

Key Responsibilities

Collaborate with internal and customer teams to investigate and contain incidents. Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations.
Recognize and codify attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs). Build scripts, tools, or methodologies to enhance Mandiant’s incident investigation processes that can be applied to current and future investigations.
As an active member of the team, monitor and process response for security events on a 24x7 basis.
Analyze attack vectors and methods to develop custom Splunk ES SIEM signatures or detections
Provide and implement recommendations to improve Splunk ES detections
Lead the SOC’s incident response team threat hunting and incident response activities
Lead Postmortem exercises post incidents with a focus to identify deficiencies requiring additional attention.
Analyze and respond to security threats from Firewall (FW), Intrusion Detection Systems (IDS), Intrusion Prevention Systems (IPS), Antivirus (AV), Endpoint Detection and Response (EDR), Network Detection and Response (NDR), Email Security, Cloud Security, and other security threat data sources.
Oversee the collection, preservation, and analysis of electronic data and metadata in response to litigation, regulatory inquiries, and internal investigations.
Collaborate and communicate with the Law Department and Global Security teams to understand case requirements and provide guidance on e-discovery and digital forensics matters.
Conduct data collection from U.S.-based – and, in some cases, internationally-based – digital devices, including computers, mobile devices, and cloud-based, and network systems; deduplicate and import said data into Relativity or other e-discovery review platform.
Develop and implement e-discovery strategies and workflows to ensure efficient and defensible processes.
Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, Public Cloud, and networking, to offer global solutions for a complex heterogeneous environment.
Provide or facilitate the forensics analysis of security events.
Develop and implement e-discovery strategies and workflows to ensure efficient and defensible processes.
Stay current with industry trends, tools, and best practices in digital forensics and e-discovery.
Support 24/7 operations
Work non-standard hours including nights, weekends, and holidays
Perform other duties as assigned

Skills and Qualifications

Strong knowledge of network, backend systems, operating systems, applications, and web services in a manner that allows for the interaction of all as it relates to security and services.
5+ Years as a Senior incident responder/leader of incident response, digital forensics and e-discovery
Experience configuring custom Splunk searches and applications required
Experience with analyzing attack vectors and methods in order to develop Splunk ES SIEM signatures or detections
Ability to apply analytical expertise and critical thinking to security incidents
Ability to assimilate, understand and utilize various security technologies
Ability to collaborate within a geographically distributed team of Incident Response Analysts
Demonstrated team or functional leadership experience
Experience processing and analyzing intelligence in support of management decision making
Current Information Security related certification preferred.
Current Public cloud related certification preferred.
Knowledge of relevant information security and incident response frameworks such as ISO 27001, NIST SP 800-61, NIST Cyber Security Framework, MITRE ATT&CK Framework.

Licenses/Certifications

CISSP Certified Information Systems Security Professional
Certified Ethical Hacker (CEH)
CompTIA Network+ Certification
CompTIA Security+ Certification

Offers of employment are conditional upon passage of screening criteria applicable to the job

EEO Statement

Integrated into our shared values is NCR Voyix’s commitment to diversity and equal employment opportunity. All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. NCR Voyix is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. Every individual at NCR Voyix has an ongoing responsibility to respect and support a globally diverse environment.

Statement to Third Party Agencies
To ALL recruitment agencies: NCR Voyix only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Voyix employees, or any NCR Voyix facility. NCR Voyix is not responsible for any fees or charges associated with unsolicited resumes

“When applying for a job, please make sure to only open emails that you will receive during your application process that come from a @ncrvoyix.com email domain.”

Average salary estimate

$95000 / YEARLY (est.)

min

max

$80000K

$110000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Information Security Engineer II, NCR corporation

At NCR Voyix, we are in search of an exceptional Information Security Engineer II to join our dynamic Global Information Security team based in beautiful Atlanta, Georgia. As part of our commitment to keeping information secure, this role is pivotal in supporting and enhancing NCR Voyix’s Corporate Information Security program. Your day-to-day will revolve around responding to both routine and high-severity incidents while leading our Forensics E-Discovery team. If you have a strong background in network incident response, digital forensics, and e-discovery processes, we’d love to talk! You will collaborate closely with internal teams and customers to investigate incidents while conducting host and network forensics and log analysis. You will also have the opportunity to codify attacker tools and tactics, which will aid in developing custom Splunk ES SIEM signatures or detections. This exciting role supports 24/7 operations, so flexibility with your schedule is a must. At NCR Voyix, you will not only safeguard our information but also contribute to a culture that values innovation and exceptional consumer experiences. Be part of our mission—help us empower businesses and elevate their tech systems while ensuring their data is secure and well-managed.

Frequently Asked Questions (FAQs) for Information Security Engineer II Role at NCR corporation

What are the key responsibilities of an Information Security Engineer II at NCR Voyix?

The Information Security Engineer II at NCR Voyix is responsible for a variety of key tasks including incident response, forensic investigations, and e-discovery processes. You will be leading the Forensics E-Discovery team and collaborating with both internal and customer teams to investigate and contain incidents. Additionally, you will monitor security events around the clock, analyze attack vectors, and develop Splunk ES signatures to enhance detections. Further responsibilities involve overseeing the collection and analysis of electronic data in response to litigation and regulatory inquiries.