Information Security Engineer

Unigen, headquartered in Newark, California, is a trusted partner for businesses seeking to power their next generation of products. Founded in 1991, we've grown into a leading provider of electronics manufacturing services (EMS), offering a comprehensive suite of solutions from design and manufacturing to supply chain management. From advanced memory modules to high-density storage devices, our solutions are engineered to meet the demanding needs of today's technology landscape. Our commitment to quality and innovation ensures that our partners have the tools they need to succeed.

At Unigen, you'll have the opportunity to work on cutting-edge projects and make a real difference. Working at Unigen means you'll be surrounded by other innovative companies, have access to top talent, and be close to world-class resources. We offer competitive compensation and a comprehensive benefits package, including 401(k) matching. This location, combined with our benefits, provides a unique advantage for those looking to thrive in the semiconductor industry.

Job Title : Security Engineer

Department : IT

Reports to : IT Manager

Job Overview : The Security Engineer is responsible for designing, implementing, and managing the security infrastructure that protects our applications, data, and networks. This role plays a critical part in threat detection, risk mitigation, and the development of secure architectures while ensuring compliance with industry standards and regulatory requirements.

Primary Responsibilities :

• Design, deploy, and manage security tools and technologies (e.g., firewalls, SIEM, IDS / IPS, endpoint protection).
• Monitor systems and networks for security events, investigate incidents, and lead remediation efforts.
• Perform threat modeling, risk assessments, and application security reviews.
• Conduct vulnerability assessments and penetration tests to identify and address security gaps.
• Develop, implement, and maintain security policies, standards, and procedures aligned with frameworks such as NIST, ISO 27001, SOC 2, and GDPR.
• Build and maintain secure cloud and infrastructure configurations (e.g., GCP, Oracle Cloud).
• Conduct code and architecture reviews with a focus on security best practices.
• Partner with DevOps, IT, and engineering teams to integrate security across the software development lifecycle (DevSecOps).
• Stay informed about emerging threats, vulnerabilities, and regulatory updates (e.g., ISO 27001, ITAR, CMMC 2.0).
• Deliver security awareness training to internal teams.
• Collaborate with compliance, legal, and business stakeholders to support audits and regulatory obligations.

Qualifications :

Preferred :