NXP Semiconductors
Security Operations Analyst - US Blue Team Leader
NXP Semiconductors, Austin, Texas, us, 78716
Overview
Security Operations Analyst - US Blue Team Leader at NXP Semiconductors. Lead day-to-day defensive information security operations across IT, Operational Technology (OT), and R&D environments, overseeing threat detection, incident response, and exposure management. Responsibilities
Lead a team of cybersecurity professionals focused on threat detection, monitoring, and incident response for IT, OT, and R&D environments. Develop and enhance Security Operations Center (SOC) processes, including playbooks, automation, and alert triage. Incorporate advanced red team operations and threat intelligence into day-to-day operations. Collaborate with red teams and threat hunting teams to identify gaps and improve defenses. Establish endpoint detection and response (EDR) and network security monitoring strategies across IT and OT assets. Lead and coordinate cyber incident response efforts, ensuring timely containment, eradication, and recovery. Develop incident response playbooks tailored to IT, OT, and R&D environments. Conduct digital forensics investigations to determine root causes and recommend mitigations. Implement security controls and frameworks tailored for ICS/SCADA, IIoT, and embedded systems in OT environments. Work with engineering and R&D teams to integrate security into product development lifecycles. Ensure compliance with industry regulations and frameworks such as NIST CSF, IEC 62443, and MITRE ATT&CK for ICS. Develop and test cyber resilience plans for critical OT and R&D infrastructure. Oversee vulnerability assessments and risk management programs across IT, OT, and R&D. Guide patch management and compensating controls for systems where direct patching is not feasible. Work with asset owners to implement segmentation, access controls, and Zero Trust strategies. Partner with risk management, compliance, and legal teams to align cybersecurity with business objectives. Qualifications
10+ years of experience in cybersecurity with a focus on blue teaming, security operations, and cyber defense. Strong expertise in both IT and OT security, with knowledge of ICS, SCADA, and industrial cyber threats. Experience securing R&D environments, including embedded systems, proprietary technologies, and intellectual property. Hands-on experience with SIEM, EDR, NDR, threat intelligence platforms, and security automation. In-depth knowledge of MITRE ATT&CK (Enterprise & ICS), NIST 800-82, IEC 62443, and Zero Trust principles. Experience leading a team of cybersecurity professionals and developing operational security teams. Strong understanding of cloud security (AWS, Azure, GCP) and hybrid security architectures. Preferred Certifications
GIAC Certified Incident Handler GIAC Security Operations Certified Certified Cloud Security Professional (CCSP) AWS Certified Security Microsoft SC - 200 Equal Opportunity
NXP is an Equal Opportunity/Affirmative Action Employer regardless of age, color, national origin, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, marital status, status as a disabled veteran and/or veteran of the Vietnam Era or any other characteristic protected by federal, state or local law. NXP will provide reasonable accommodations for otherwise qualified disabled individuals.
#J-18808-Ljbffr
Security Operations Analyst - US Blue Team Leader at NXP Semiconductors. Lead day-to-day defensive information security operations across IT, Operational Technology (OT), and R&D environments, overseeing threat detection, incident response, and exposure management. Responsibilities
Lead a team of cybersecurity professionals focused on threat detection, monitoring, and incident response for IT, OT, and R&D environments. Develop and enhance Security Operations Center (SOC) processes, including playbooks, automation, and alert triage. Incorporate advanced red team operations and threat intelligence into day-to-day operations. Collaborate with red teams and threat hunting teams to identify gaps and improve defenses. Establish endpoint detection and response (EDR) and network security monitoring strategies across IT and OT assets. Lead and coordinate cyber incident response efforts, ensuring timely containment, eradication, and recovery. Develop incident response playbooks tailored to IT, OT, and R&D environments. Conduct digital forensics investigations to determine root causes and recommend mitigations. Implement security controls and frameworks tailored for ICS/SCADA, IIoT, and embedded systems in OT environments. Work with engineering and R&D teams to integrate security into product development lifecycles. Ensure compliance with industry regulations and frameworks such as NIST CSF, IEC 62443, and MITRE ATT&CK for ICS. Develop and test cyber resilience plans for critical OT and R&D infrastructure. Oversee vulnerability assessments and risk management programs across IT, OT, and R&D. Guide patch management and compensating controls for systems where direct patching is not feasible. Work with asset owners to implement segmentation, access controls, and Zero Trust strategies. Partner with risk management, compliance, and legal teams to align cybersecurity with business objectives. Qualifications
10+ years of experience in cybersecurity with a focus on blue teaming, security operations, and cyber defense. Strong expertise in both IT and OT security, with knowledge of ICS, SCADA, and industrial cyber threats. Experience securing R&D environments, including embedded systems, proprietary technologies, and intellectual property. Hands-on experience with SIEM, EDR, NDR, threat intelligence platforms, and security automation. In-depth knowledge of MITRE ATT&CK (Enterprise & ICS), NIST 800-82, IEC 62443, and Zero Trust principles. Experience leading a team of cybersecurity professionals and developing operational security teams. Strong understanding of cloud security (AWS, Azure, GCP) and hybrid security architectures. Preferred Certifications
GIAC Certified Incident Handler GIAC Security Operations Certified Certified Cloud Security Professional (CCSP) AWS Certified Security Microsoft SC - 200 Equal Opportunity
NXP is an Equal Opportunity/Affirmative Action Employer regardless of age, color, national origin, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, marital status, status as a disabled veteran and/or veteran of the Vietnam Era or any other characteristic protected by federal, state or local law. NXP will provide reasonable accommodations for otherwise qualified disabled individuals.
#J-18808-Ljbffr