Senior Information Security Engineer

At Universal Display Corporation (Nasdaq: OLED)(UDC), we’re changing the way people see the world.

If you’re reading this on a smartphone, there’s a good chance UDC’s materials are producing the light and color shining from your screen right now. UDC’s OLED ingredients are key parts of stunning, energy-efficient displays used in everything from smartwatches to phones, tablets, laptops, monitors, TVs and automobiles. Virtually every OLED consumer electronics product around the world uses UDC’s phosphorescent OLED materials and technologies.

UDC is a publicly traded company and pioneer in the OLED industry. When you join our global team, you are embarking on a journey at the forefront of display technology and organic electronics that impacts the daily lives of people around the world. From engineers to chemists, Ph.D. scientists, technicians, lawyers and more, our UDC team is continuously advancing our field. With a focus on energy efficiency, UDC’s team is contributing to making a better, more sustainable planet. Please visit us at

Job Summary

The Senior Information Security Engineer, is responsible for establishing and maintaining Universal Display Corporation’s information security management program ensuring that information assets are adequately protected. This position is responsible for security operations, as well as identifying, evaluating, reporting, and acting on information security risks to support the risk posture of the enterprise.

This role will balance hands-on technical expertise and day-to-day security operations with long term planning to protect Universal Display Corporation’s systems, data and business operations. This role requires a proven record in implementing robust security measures, managing security operations, and driving initiatives to mature and align security practices with organizational goals.

Key Responsibilities

1. Security Operations & Incident Management:

• Configure, monitor, implement and operate security tools (e.g., firewalls, IDS/IPS, SIEM, and endpoint protection)
• Identify and address security gaps, vulnerabilities, weaknesses, irregularities, and issues in real time.
• Detect, investigate, and manage response to security incidents, conduct root cause analysis, and implement mitigation measures.
• Ensure encryption, authentication, and access control measures are properly configured and actively monitored.
• Perform regular vulnerability assessments, penetration testing, and risk analysis.

2. Security Program Management:

• Perform assessments of cyber capability, processes and readiness and use the output to develop and execute an IT risk management program.
• Develop a cyber scorecard using an established security framework (e.g., NIST, ISO, CIS) to monitor operational performance, perform trend analysis and continuous process improvement, and communicate security positioning with management.
• Provide regular reports to leadership on the status of the security program and emerging threats.
• Act as a cybersecurity architect, offering risk guidance for IT projects and technologies, including evaluating or recommending solutions and controls.
• Collaborate with internal teams to design, implement, and maintain security technologies for networks, servers, applications, and data both in the cloud and on premises.
• Ensure compliance with standards and regulations (e.g., ISO 27001, NIST, GDPR, CCPA).
• Oversee customer and vendor assurance risk assessments.

3. Policy, Training, and Compliance:

• In collaboration with IT and business leadership establish, implement, and/or update security policies, standards, and guidelines (e.g., acceptable use policies, regional travel policies, generative AI policies, etc.)
• Lead organizational security awareness programs and employee training.
• Facilitate metrics and reporting frameworks to measure security program effectiveness and maturity.
• Lead IT preparations, responses, and remediation for audit activity and ensure compliance with relevant laws and policies.

4. Leadership & Collaboration:

• Lead engagement with all security-related third-party service providers.
• Collaborate with cross-functional teams and executive business leadership to integrate security practices into business operations.
• Function as a key advisor for security risks and ensure alignment of security strategies with organizational objectives.

Required Qualifications

Education and Experience:

• Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience).
• Minimum of 8 years in information security, and preferably with at least 2 years in a lead role.
• Experience with international security considerations, particularly conducting business in Asia, is highly preferred.
• Experience with public companies highly preferred

Certifications:

• CISSP, CISM, CEH, GIAC, or similar certifications are preferred.

Technical Expertise:

• Hands-on experience with most or all the following security technologies: SIEM, IDS/IPS, EDR, Vulnerability Scanners, Mail Security Filtering, DNS Filtering, MS Azure and Entra Security, Threat Monitoring and Intelligence Analysis, Network and Cloud Monitoring and Surveillance, and Security Training Platforms
• Proficiency in application and data security principles and practices, network security principles, cloud security (AWS, Azure, GCP), and DevSecOps practices.
• Familiarity with NIST CSF, CIS standards, controls and benchmarks and implementation of endpoint hardening leveraging CIS best practices preferred.
• Strong knowledge of security frameworks and data privacy regulations.

Skills and Competencies:

• Strong analytical, problem-solving, and innovative thinking abilities.
• Excellent interpersonal, verbal, and written communication skills, including experience engaging senior executives.
• Demonstrated ability to develop and manage complex security programs and initiatives.

This role offers the opportunity to lead impactful initiatives, foster a culture of cybersecurity awareness, and ensure the resilience of the organization against emerging threats.

Current Benefits at UDC:

• Competitive base salary and annual bonus program
• Medical/Prescription Drug coverage, Dental, and Vision for employees and family
• Transit, Health and Dependent Care Flexible Spending Accounts (FSAs)
• Health Reimbursement Account (HRA) – An employer-paid benefit to reimburse a portion of employees’ eligible out-of-pocket medical expenses, such as deductibles, coinsurance, and pharmacy expenses
• Group Term Life insurance, short term disability, and long term disability benefits for employees
• Employee Stock Purchase Plan (ESPP)
• 401(k) company contribution
• Ewing Worldwide Headquarters (HQ) cafeteria provides breakfast and lunch to employees at no cost to them
• Annual charitable matching gift
• Generous Paid Time Off

Annual compensation range: $140-170k negotiable plus bonus