ANDREW an Amphenol company
Location: Virtual, Texas Department: Engineering | Posted: 10/20/2025 | Location Name: US9042 / U739 (US - TX Virtual 5212)
Wage: Min 120,000.00 Annual | Max 180,000.00 Annual | Position Type: Salary • Full Time
Overview
Join our team and help shape the future of connectivity indoors and outdoors. Together, let's push the boundaries of technology and advance sustainable networks worldwide. Role:
We are seeking a skilled Telecom Security Engineer to lead and enhance security measures across the infrastructure of our DAS and RAN products, while operationalizing and upholding security measures and policies defined by ANDREW's security team. This role focuses on securing 4G/5G components and their management systems, ensuring compliance with telecom security standards, as well as the security requirements from operators and customers. The engineer will detect vulnerabilities and work closely with operators, vendors, and internal SW and HW development teams. As a Principal System Security Engineer, you will be responsible for the security aspects of the RAN and DAS products as part of the ICN business unit of ANDREW. Preference is for onsite work in Nashua, NH; Richardson, TX; or Lynchburg, VA, but remote work is open for the right candidate. Responsibilities
Designing and defining security policies and requirements for RAN and DAS systems. Architect secure environments across Linux/Windows systems, Kubernetes, and container platforms. Implement least privilege access, strong authentication, and patch management. Perform risk assessments, threat modeling, and vulnerability analysis on RAN elements and AWS cloud hosting. Prepare responses to customer security requirements and questionnaires. Collaborate with engineering teams to ensure security is embedded in network design and deployment. Monitor for and respond to security incidents involving RAN equipment and interfaces. Validate the security of vendor software/hardware and ensure adherence to 3GPP, NIST, and GSMA standards. Define and enforce security configurations (e.g., secure boot, firmware validation, secure signaling). Engage in penetration and other security testing, evaluate and prioritize security vulnerabilities. Engage with security test houses and evaluate their test plans and test reports. Work with internal and external stakeholders on compliance audits and regulatory requirements (e.g., O-RAN, RED, NESAS, NCSC, GDPR). Develop tools/scripts to automate RAN security monitoring, cloud infrastructures, vulnerability management, system audits, security baselining and reporting. Stay up-to-date with emerging threats and mitigation strategies specific to telecom infrastructure. Implement and maintain security policies and configurations for AWS cloud infrastructure in alignment with Andrew's security team directives and governance frameworks. Apply and operationalize the policies, standards, and controls designed by the central security team and ensure alignment across product security implementations. Required Qualifications
Bachelor's or Master's degree in Telecommunications, Computer Science, Cybersecurity/Information Security or related field. 10+ years in Telecommunications and Cellular industry with at least 5 years in telecom network security, especially in RAN and DAS product security. Expertise in mobile network security principles, PKI, TLS, IPSec, and Zero touch provisioning. Experience with base station software (e.g., O-RAN, vRAN) and vendor-specific RAN solutions. Knowledge of O-RAN architecture and Open RAN Security groups. Knowledge of cloud infrastructure and cloud security. Familiarity with security frameworks like 3GPP SA3, GSMA FS.33/FS.37, NESAS/SCAS, NIST, CIS Benchmarks, etc. Proficiency in security testing tools (e.g., Nessus, OpenVAS, Burp Suite, or telecom-specific security scanners). Knowledge of Linux security, secure coding practices, and scripting (Python, Bash). Strong communication and cross-functional collaboration skills, especially with centralized security teams and development stakeholders. You Might Be Excited About
Certifications such as CISSP, CEH, GICSP, or vendor-specific security certifications. Experience with AI/ML-based threat detection in telecom networks. Knowledge of 3GPP standards for 4G/5G RAN architecture and interfaces (e.g., X2, S1, NG, F1). Hands-on experience with telco cloud environments (e.g., Kubernetes, OpenStack, CNFs). Why ANDREW?
Explore exciting career opportunities at ANDREW, part of the Amphenol family. ANDREW, an Amphenol company, is committed to providing strong support and opportunities for career growth within a global organization. ANDREW is an Equal Opportunity Employer - Minority/Female/Disabled/Veteran/Sexual Orientation/Gender Identity/National Origin. For more information, please visit our website at https://www.andrew.com. Accessibility & Equal Opportunity
ANDREW is an Equal Opportunity Employer. Referrals increase your chances of interviewing at ANDREW, an Amphenol company.
#J-18808-Ljbffr
Join our team and help shape the future of connectivity indoors and outdoors. Together, let's push the boundaries of technology and advance sustainable networks worldwide. Role:
We are seeking a skilled Telecom Security Engineer to lead and enhance security measures across the infrastructure of our DAS and RAN products, while operationalizing and upholding security measures and policies defined by ANDREW's security team. This role focuses on securing 4G/5G components and their management systems, ensuring compliance with telecom security standards, as well as the security requirements from operators and customers. The engineer will detect vulnerabilities and work closely with operators, vendors, and internal SW and HW development teams. As a Principal System Security Engineer, you will be responsible for the security aspects of the RAN and DAS products as part of the ICN business unit of ANDREW. Preference is for onsite work in Nashua, NH; Richardson, TX; or Lynchburg, VA, but remote work is open for the right candidate. Responsibilities
Designing and defining security policies and requirements for RAN and DAS systems. Architect secure environments across Linux/Windows systems, Kubernetes, and container platforms. Implement least privilege access, strong authentication, and patch management. Perform risk assessments, threat modeling, and vulnerability analysis on RAN elements and AWS cloud hosting. Prepare responses to customer security requirements and questionnaires. Collaborate with engineering teams to ensure security is embedded in network design and deployment. Monitor for and respond to security incidents involving RAN equipment and interfaces. Validate the security of vendor software/hardware and ensure adherence to 3GPP, NIST, and GSMA standards. Define and enforce security configurations (e.g., secure boot, firmware validation, secure signaling). Engage in penetration and other security testing, evaluate and prioritize security vulnerabilities. Engage with security test houses and evaluate their test plans and test reports. Work with internal and external stakeholders on compliance audits and regulatory requirements (e.g., O-RAN, RED, NESAS, NCSC, GDPR). Develop tools/scripts to automate RAN security monitoring, cloud infrastructures, vulnerability management, system audits, security baselining and reporting. Stay up-to-date with emerging threats and mitigation strategies specific to telecom infrastructure. Implement and maintain security policies and configurations for AWS cloud infrastructure in alignment with Andrew's security team directives and governance frameworks. Apply and operationalize the policies, standards, and controls designed by the central security team and ensure alignment across product security implementations. Required Qualifications
Bachelor's or Master's degree in Telecommunications, Computer Science, Cybersecurity/Information Security or related field. 10+ years in Telecommunications and Cellular industry with at least 5 years in telecom network security, especially in RAN and DAS product security. Expertise in mobile network security principles, PKI, TLS, IPSec, and Zero touch provisioning. Experience with base station software (e.g., O-RAN, vRAN) and vendor-specific RAN solutions. Knowledge of O-RAN architecture and Open RAN Security groups. Knowledge of cloud infrastructure and cloud security. Familiarity with security frameworks like 3GPP SA3, GSMA FS.33/FS.37, NESAS/SCAS, NIST, CIS Benchmarks, etc. Proficiency in security testing tools (e.g., Nessus, OpenVAS, Burp Suite, or telecom-specific security scanners). Knowledge of Linux security, secure coding practices, and scripting (Python, Bash). Strong communication and cross-functional collaboration skills, especially with centralized security teams and development stakeholders. You Might Be Excited About
Certifications such as CISSP, CEH, GICSP, or vendor-specific security certifications. Experience with AI/ML-based threat detection in telecom networks. Knowledge of 3GPP standards for 4G/5G RAN architecture and interfaces (e.g., X2, S1, NG, F1). Hands-on experience with telco cloud environments (e.g., Kubernetes, OpenStack, CNFs). Why ANDREW?
Explore exciting career opportunities at ANDREW, part of the Amphenol family. ANDREW, an Amphenol company, is committed to providing strong support and opportunities for career growth within a global organization. ANDREW is an Equal Opportunity Employer - Minority/Female/Disabled/Veteran/Sexual Orientation/Gender Identity/National Origin. For more information, please visit our website at https://www.andrew.com. Accessibility & Equal Opportunity
ANDREW is an Equal Opportunity Employer. Referrals increase your chances of interviewing at ANDREW, an Amphenol company.
#J-18808-Ljbffr