Job Description

About NCR VOYIX

NCR Voyix Corporation (NYSE: VYX) is a global platform-powered leader in unified commerce for shopping and dining. Combining a flexible, intelligent platform with end-to-end payments capabilities and services developed through its deep industry experience, NCR Voyix empowers retailers and restaurants to accelerate new possibilities for their operations, experiences and business outcomes. NCR Voyix is headquartered in Atlanta, Georgia, and serves customers in more than 35 countries worldwide.

Information Security Engineer III

This role is part of NCR’s Global Information Security team. This team is responsible for developing and implementing NCR’s corporate information security program. The primary goal of the program is to protect the confidentiality, integrity, and availability of information resources. Key information security functions and activities include architecture and design for NCR information security controls, developing and enforcing policies and standards, security awareness training, risk management, assessment, and testing, monitoring and metrics, incident management, and threat and vulnerability management.

The Information Security Engineer III is responsible for day‑to‑day security operations, including responding to routine and high‑severity security incidents and managing identified vulnerabilities. The role works closely with incident responders, incident management teams, leadership, and other stakeholders to ensure incidents are contained, eradicated, remediated, and followed by post‑ incident reviews in accordance with corporate policies.

The role also includes proactive threat hunting, leveraging SIEM, EDR, and cloud security telemetry to identify advanced or emerging threats using frameworks such as MITRE ATT&CK, and applying threat intelligence to enhance detections and support risk‑based prioritization.

The Information Security Engineer III collaborates with vulnerability coordinators and remediation teams to ensure vulnerabilities are addressed through patching, configuration changes, or compensating controls The role participates in weekly operational status calls, contributes to continuous improvement initiatives aligned with the Office of the CISO, and is part of an on‑ call rotation, requiring availability during off‑hours, weekends, and response to ad‑hoc security incidents.

Key Responsibilities

• As an active member of the team, monitor and respond to security events on a 24x7 basis

• Lead post‑ incident/postmortem exercises with a focus on identifying deficiencies that require additional attention.

• Triage, respond to, and escalate security incidents as per defined procedures.

• Triage, respond to, and escalate Zero‑ Day and High‑ Severity vulnerabilities

• Coordinate remediation activities for Zero‑Day and High‑Severity vulnerabilities.

• Leverage automation and orchestration solutions to automate repetitive operational tasks.

• Work alongside other security team members to hunt for and identify security issues originating from the network, including third‑ party environments

• Coordinate incident response activities across multiple independently managed environments and security teams.

• Leverage knowledge across multiple security disciplines, including Windows, Unix/Linux, DLP, endpoint controls, public cloud, and networking, to deliver solutions in a complex, heterogeneous environment.

• Utilize multiple security and threat intelligence tools and resources to understand and assess threats.

• Analyze and respond to minor and major security incidents, including reported SPAM and phishing emails

• Partner with the Detection Engineering team to improve tool usage and workflows, and with the Advanced Threats and Assessment team to mature monitoring and response capabilities.

• Support 24x7 security operations, including on‑call responsibilities as required.

• Perform other duties as assigned.

Skills and Qualifications

• Strong knowledge of networks, backend systems, operating systems, applications, and web services, and how they interact from a security and services perspective.

• 4+ years of experience in Senior Incident Response and/or Vulnerability Management functions.

• Ability to apply strong analytical expertise and critical thinking to security incidents and vulnerabilities.

• Ability to assimilate, understand, and effectively utilize various security technologies and tools.

• Proven ability to collaborate within a geographically distributed team of Incident Response Analysts and vulnerability remediation teams.

• Knowledge of relevant information security and incident response frameworks, including MITRE ATT&CK and CVSS scoring systems

• Hands‑on experience in threat hunting and applying threat intelligence to enhance incident response and vulnerability prioritization.

• Strong communication skills with the ability to work effectively in a collaborative team environment

• Strong attention to detail and documentation discipline.

• Ability to deal with ambiguity and translate high‑level objectives into detailed, actionable tasks.

• Ability to prioritize work across multiple, simultaneous assignments in a fast‑paced environment.

• Strong willingness and ability to learn new tools, technologies, and processes

• Experience documenting business processes and/or technical procedures is preferred.

• Experience working with enterprise security platforms including CrowdStrike, Splunk, Zscaler, Cisco XDR, Microsoft Defender, Proofpoint and automation/orchestration tools is considered a strong plus.

Certifications (Preferred)

• Information Security Certifications (Preferred):

  • CISSP, CISM, GCIH, GCIA, GCED, CEH, Security+, or equivalent

• Public Cloud Security Certifications (Preferred):

  • AWS Certified Security – Specialty

  • Azure Security Engineer (AZ‑500 / SC‑200)

  • Google Cloud Professional Security Engineer

  • CCSP

Offers of employment are conditional upon passage of screening criteria applicable to the job

EEO Statement

Integrated into our shared values is NCR Voyix’s commitment to equal employment opportunity. All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. NCR Voyix is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. Every individual at NCR Voyix has an ongoing responsibility to respect and support a globally diverse environment.

Statement to Third Party Agencies
To ALL recruitment agencies: NCR Voyix only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Voyix employees, or any NCR Voyix facility. NCR Voyix is not responsible for any fees or charges associated with unsolicited resumes

“When applying for a job, please make sure to only open emails that you will receive during your application process that come from a @ncrvoyix.com email domain.”