Universal Display Corporation
Senior Information Security Engineer
Universal Display Corporation, Ewing Township, New Jersey, United States
Overview
At Universal Display Corporation (Nasdaq: OLED) (UDC), we’re changing the way people see the world. UDC’s OLED ingredients are key parts of stunning, energy-efficient displays used in everything from smartwatches to phones, tablets, laptops, monitors, TVs and automobiles. Virtually every OLED consumer electronics product around the world uses UDC’s phosphorescent OLED materials and technologies. UDC is a publicly traded company and pioneer in the OLED industry. When you join our global team, you are embarking on a journey at the forefront of display technology and organic electronics that impacts the daily lives of people around the world. From engineers to chemists, Ph.D. scientists, technicians, lawyers and more, our UDC team is continuously advancing our field. With a focus on energy efficiency, UDC’s team is contributing to making a better, more sustainable planet. Please visit us at www.oled.com. Job Summary The Senior Information Security Engineer is responsible for establishing and maintaining Universal Display Corporation’s information security management program ensuring that information assets are adequately protected. This position is responsible for security operations, as well as identifying, evaluating, reporting, and acting on information security risks to support the risk posture of the enterprise. This role will balance hands-on technical expertise and day-to-day security operations with long term planning to protect Universal Display Corporation’s systems, data and business operations. This role requires a proven record in implementing robust security measures, managing security operations, and driving initiatives to mature and align security practices with organizational goals. Key Responsibilities
Security Operations & Incident Management:
Configure, monitor, implement and operate security tools (e.g., firewalls, IDS/IPS, SIEM, and endpoint protection) Identify and address security gaps, vulnerabilities, weaknesses, irregularities, and issues in real time. Detect, investigate, and manage response to security incidents, conduct root cause analysis, and implement mitigation measures. Ensure encryption, authentication, and access control measures are properly configured and actively monitored. Perform regular vulnerability assessments, penetration testing, and risk analysis.
Security Program Management:
Perform assessments of cyber capability, processes and readiness and use the output to develop and execute an IT risk management program. Develop a cyber scorecard using an established security framework (e.g., NIST, ISO, CIS) to monitor operational performance, perform trend analysis and continuous process improvement, and communicate security positioning with management. Provide regular reports to leadership on the status of the security program and emerging threats. Act as a cybersecurity architect, offering risk guidance for IT projects and technologies, including evaluating or recommending solutions and controls. Collaborate with internal teams to design, implement, and maintain security technologies for networks, servers, applications, and data both in the cloud and on premises. Ensure compliance with standards and regulations (e.g., ISO 27001, NIST, GDPR, CCPA). Oversee customer and vendor assurance risk assessments.
Policy, Training, and Compliance:
In collaboration with IT and business leadership establish, implement, and/or update security policies, standards, and guidelines (e.g., acceptable use policies, regional travel policies, generative AI policies, etc.) Lead organizational security awareness programs and employee training. Facilitate metrics and reporting frameworks to measure security program effectiveness and maturity. Lead IT preparations, responses, and remediation for audit activity and ensure compliance with relevant laws and policies.
Leadership & Collaboration:
Lead engagement with all security-related third-party service providers. Collaborate with cross-functional teams and executive business leadership to integrate security practices into business operations. Function as a key advisor for security risks and ensure alignment of security strategies with organizational objectives.
Required Qualifications
Education and Experience: Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience). Minimum of 8 years in information security, and preferably with at least 2 years in a lead role. Experience with international security considerations, particularly conducting business in Asia, is highly preferred. Experience with public companies highly preferred. Certifications: CISSP, CISM, CEH, GIAC, or similar certifications are preferred. Technical Expertise: Hands-on experience with security technologies including SIEM, IDS/IPS, EDR, Vulnerability Scanners, Mail Security Filtering, DNS Filtering, MS Azure and Entra Security, Threat Monitoring and Intelligence Analysis, Network and Cloud Monitoring and Surveillance, and Security Training Platforms. Proficiency in application and data security principles, network security, cloud security (AWS, Azure, GCP), and DevSecOps practices. Familiarity with NIST CSF, CIS standards and endpoint hardening leveraging CIS best practices. Strong knowledge of security frameworks and data privacy regulations. Skills and Competencies: Strong analytical, problem-solving, and innovative thinking abilities. Excellent interpersonal, verbal, and written communication skills, including experience engaging senior executives. Demonstrated ability to develop and manage complex security programs and initiatives. This role offers the opportunity to lead impactful initiatives, foster a culture of cybersecurity awareness, and ensure the resilience of the organization against emerging threats. Benefits
Competitive base salary and annual bonus program Medical/Prescription Drug coverage, Dental, and Vision for employees and family Transit, Health and Dependent Care Flexible Spending Accounts (FSAs) Health Reimbursement Account (HRA) – employer-paid benefit to reimburse eligible out-of-pocket medical expenses Group Term Life insurance, short-term disability, and long-term disability benefits Employee Stock Purchase Plan (ESPP) 401(k) company contribution Ewing Worldwide Headquarters HQ cafeteria provides breakfast and lunch at no cost to employees Annual charitable matching gift Generous Paid Time Off Annual compensation range: $140-170k negotiable plus bonus
#J-18808-Ljbffr
At Universal Display Corporation (Nasdaq: OLED) (UDC), we’re changing the way people see the world. UDC’s OLED ingredients are key parts of stunning, energy-efficient displays used in everything from smartwatches to phones, tablets, laptops, monitors, TVs and automobiles. Virtually every OLED consumer electronics product around the world uses UDC’s phosphorescent OLED materials and technologies. UDC is a publicly traded company and pioneer in the OLED industry. When you join our global team, you are embarking on a journey at the forefront of display technology and organic electronics that impacts the daily lives of people around the world. From engineers to chemists, Ph.D. scientists, technicians, lawyers and more, our UDC team is continuously advancing our field. With a focus on energy efficiency, UDC’s team is contributing to making a better, more sustainable planet. Please visit us at www.oled.com. Job Summary The Senior Information Security Engineer is responsible for establishing and maintaining Universal Display Corporation’s information security management program ensuring that information assets are adequately protected. This position is responsible for security operations, as well as identifying, evaluating, reporting, and acting on information security risks to support the risk posture of the enterprise. This role will balance hands-on technical expertise and day-to-day security operations with long term planning to protect Universal Display Corporation’s systems, data and business operations. This role requires a proven record in implementing robust security measures, managing security operations, and driving initiatives to mature and align security practices with organizational goals. Key Responsibilities
Security Operations & Incident Management:
Configure, monitor, implement and operate security tools (e.g., firewalls, IDS/IPS, SIEM, and endpoint protection) Identify and address security gaps, vulnerabilities, weaknesses, irregularities, and issues in real time. Detect, investigate, and manage response to security incidents, conduct root cause analysis, and implement mitigation measures. Ensure encryption, authentication, and access control measures are properly configured and actively monitored. Perform regular vulnerability assessments, penetration testing, and risk analysis.
Security Program Management:
Perform assessments of cyber capability, processes and readiness and use the output to develop and execute an IT risk management program. Develop a cyber scorecard using an established security framework (e.g., NIST, ISO, CIS) to monitor operational performance, perform trend analysis and continuous process improvement, and communicate security positioning with management. Provide regular reports to leadership on the status of the security program and emerging threats. Act as a cybersecurity architect, offering risk guidance for IT projects and technologies, including evaluating or recommending solutions and controls. Collaborate with internal teams to design, implement, and maintain security technologies for networks, servers, applications, and data both in the cloud and on premises. Ensure compliance with standards and regulations (e.g., ISO 27001, NIST, GDPR, CCPA). Oversee customer and vendor assurance risk assessments.
Policy, Training, and Compliance:
In collaboration with IT and business leadership establish, implement, and/or update security policies, standards, and guidelines (e.g., acceptable use policies, regional travel policies, generative AI policies, etc.) Lead organizational security awareness programs and employee training. Facilitate metrics and reporting frameworks to measure security program effectiveness and maturity. Lead IT preparations, responses, and remediation for audit activity and ensure compliance with relevant laws and policies.
Leadership & Collaboration:
Lead engagement with all security-related third-party service providers. Collaborate with cross-functional teams and executive business leadership to integrate security practices into business operations. Function as a key advisor for security risks and ensure alignment of security strategies with organizational objectives.
Required Qualifications
Education and Experience: Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience). Minimum of 8 years in information security, and preferably with at least 2 years in a lead role. Experience with international security considerations, particularly conducting business in Asia, is highly preferred. Experience with public companies highly preferred. Certifications: CISSP, CISM, CEH, GIAC, or similar certifications are preferred. Technical Expertise: Hands-on experience with security technologies including SIEM, IDS/IPS, EDR, Vulnerability Scanners, Mail Security Filtering, DNS Filtering, MS Azure and Entra Security, Threat Monitoring and Intelligence Analysis, Network and Cloud Monitoring and Surveillance, and Security Training Platforms. Proficiency in application and data security principles, network security, cloud security (AWS, Azure, GCP), and DevSecOps practices. Familiarity with NIST CSF, CIS standards and endpoint hardening leveraging CIS best practices. Strong knowledge of security frameworks and data privacy regulations. Skills and Competencies: Strong analytical, problem-solving, and innovative thinking abilities. Excellent interpersonal, verbal, and written communication skills, including experience engaging senior executives. Demonstrated ability to develop and manage complex security programs and initiatives. This role offers the opportunity to lead impactful initiatives, foster a culture of cybersecurity awareness, and ensure the resilience of the organization against emerging threats. Benefits
Competitive base salary and annual bonus program Medical/Prescription Drug coverage, Dental, and Vision for employees and family Transit, Health and Dependent Care Flexible Spending Accounts (FSAs) Health Reimbursement Account (HRA) – employer-paid benefit to reimburse eligible out-of-pocket medical expenses Group Term Life insurance, short-term disability, and long-term disability benefits Employee Stock Purchase Plan (ESPP) 401(k) company contribution Ewing Worldwide Headquarters HQ cafeteria provides breakfast and lunch at no cost to employees Annual charitable matching gift Generous Paid Time Off Annual compensation range: $140-170k negotiable plus bonus
#J-18808-Ljbffr