Information Security Operations Engineer

Information Security Operations Engineer at Mazda North American Operations

The Information Security Operations Engineer is responsible for the daily operation and continuous improvement of MNAO's endpoint security and vulnerability management program. This role ensures endpoint protections are effectively configured, maintained, and enforced to safeguard against evolving threats, while overseeing detection, prioritization, and remediation of vulnerabilities across Mazda North American Operations (MNAO) and regional environments. Working closely with the Security Operations Center (SOC), Operations & Risk, and Security Engineering teams, this position integrates endpoint protection and vulnerability management into broader enterprise operations, develops key performance indicators (KPIs) and service level agreements (SLAs) to drive remediation performance, and strengthens MNAO's overall cybersecurity posture and compliance with organizational and regulatory requirements.

Major Responsibilities

This role focuses on key areas to ensure robust security:

• Security Operations (50%): Maintain endpoint security tools, configurations, and standards across the enterprise. Lead detection, prioritization, and remediation tracking in partnership with infrastructure and application teams. Actively participate in endpoint-related incident response, collaborating with the SOC to detect, contain, and remediate threats in real time. Support endpoint threat hunting, forensic analysis, and root-cause investigations with security engineering teams. Facilitate vulnerability management activities for MNAO and regional offices, ensuring consistent remediation processes and risk reduction. Track KPIs and SLAs to measure remediation effectiveness, drive accountability, and report progress to leadership. Support reduction of endpoint vulnerabilities and misconfigurations across all environments. Improve mean time to detect/respond (MTTD/MTTR) for endpoint-related incidents.
• Process Improvement (25%): Continuously tune endpoint security controls (e.g., endpoint detection and response, antivirus, host-based firewalls) to adapt to emerging threats. Evaluate new tools, automation opportunities, and processes to strengthen endpoint security maturity. Increase automation and integration with SOC and security engineering. Provide input and support the overall advancement of the endpoint security strategy.
• Compliance/Control (15%): Maintain compliance with security frameworks (e.g., NIST CSF 2.0, ISO 27001, NYCRR 500) and ensure accuracy of the Configuration Management Database (CMDB). Partner with Governance, Risk, and Compliance (GRC) to meet regulatory requirements and align security controls with enterprise standards. Ensure MNAO meets and makes progress to exceed endpoint compliance and target thresholds.
• Communication & Reporting (10%): Deliver regular reports on endpoint health, compliance, and overall security posture to leadership and cross-functional stakeholders. Collaborate with executive leadership and influence enterprise-wide security initiatives. Perform other duties as assigned. Comply with all policies and standards.

Work Experience

• 5+ years experience in systems administration and security operations required.
• 5+ years experience with endpoint security technologies (e.g., endpoint detection and response, antivirus, host-based firewalls) required.
• 3+ years experience with SIEM, SOAR, IDS/IPS, and cloud monitoring solutions required.
• 3+ years experience with vulnerability management and asset management required.
• IT support experience in the automotive industry preferred.

Education

• Bachelor of Science (BS) Information Technology Preferred.
• Bachelor of Science (BS) Computer and Information Science Preferred.
• An equivalent mix of education, training, and/or work experience may be considered in place of a degree Required.

Licenses and Certifications

• CompTIA Security+ - Computing Technology Industry Association (CompTIA) Preferred Upon Hire.
• CompTIA A+ - Computing Technology Industry Association (CompTIA) Preferred Upon Hire.

Knowledge, Skills, Abilities

• Analytical and problem solver: Identify problems, root causes, and implement corrective actions. (Intermediate-Advanced)
• Interpersonal skills: Establish effective working relationships and communicate clearly. (Intermediate-Advanced)
• Proficiency with computer applications: Microsoft Office Suite and ability to learn new software. (Intermediate-Advanced)
• Organizational skills: Prioritize tasks and establish goals for self and team. (Intermediate-Advanced)
• Self-motivated: Capable of working with minimal supervision and direction. (Intermediate-Advanced)

Physical Demands

• Stationary Position/Seated: Frequently
• Communicate/Talking: Constantly
• Communicate/Hearing: Constantly
• Seeing/Observing: Constantly

Travel Requirements

• 10% Flying Domestic: Essential

Remote Work Eligibility

We support remote work in the following states:

• Alabama, Arizona, California, Colorado, Connecticut, Delaware, District of Columbia, Florida, Georgia, Hawaii, Idaho, Illinois, Indiana, Kansas, Kentucky, Louisiana, Maryland, Massachusetts, Michigan, Minnesota, Missouri, Nevada, New Hampshire, New Jersey, New Mexico, New York, North Carolina, Ohio, Oklahoma, Oregon, Pennsylvania, Rhode Island, South Carolina, Tennessee, Texas, Utah, Virginia, Washington, Wisconsin.

Pay Range

The estimated annual salary for this position is $104,200.00 - $158,950.00. Salary is determined by education, experience, knowledge, skills, abilities, internal equity, and market data.

Key skills/competency

• Endpoint Security Management
• Vulnerability Assessment & Remediation
• Incident Response & Analysis
• SIEM/SOAR Expertise
• Threat Hunting
• Compliance Frameworks (NIST, ISO)
• Cybersecurity Operations
• GRC (Governance, Risk, Compliance)
• Firewall Configuration
• Root Cause Analysis