Network Security Engineer II

Network Security Engineer II
Location – Onsite, Irvine, CA

Grade: 8
Base Salary Range: $$

Company Overview
Hyundai AutoEver America (HAEA) , the dynamic IT powerhouse behind Hyundai Motor Corporation, a Fortune 500 global leader in the automotive industry. As a key affiliate, we provide cutting-edge IT services and support to top brands including Kia, Genesis, Hyundai Translead, Hyundai Mobis, Hyundai Capital, and Glovis.
HAEA offers a truly global and collaborative environment. Here, you’ll drive innovation, boost operational efficiency, and help shape the future of mobility for the Hyundai Motor Group.
At HAEA, we understand that IT is the cornerstone of today’s fast-evolving digital world. By uniting all IT resources under one roof, we deliver consistent, top-quality solutions while serving as the crucial information link between Hyundai’s Global Headquarters and North American operations.
If you’re passionate about technology and eager to make a real impact at a world-class company, Hyundai AutoEver America is the place to grow your career. Join us and be part of the transformation that’s driving the future of automotive innovation.

What You Will Be Doing
The Security Architecture and Engineering team within the CISO organization is seeking a Network Security Engineer II to help design, implement, operate, and continuously improve enterprise network security controls. This role will focus on technologies including Web Application Firewalls, Network Access Control, IDS, and IPS, while partnering closely with the IT Networking team to ensure secure, reliable, and scalable network services.
This is an onsite role, five days per week, based in our Irvine office. The key responsibilities of this role are as described below:
The Network Security Engineer II will be responsible for supporting and maintaining critical network security platforms across the enterprise. Responsibilities include:

• Administer, monitor, and optimize Web Application Firewall platforms to protect internet-facing and internal applications.
• Support and maintain Network Access Control technologies, including device profiling, policy enforcement, segmentation support, and exception handling.
• Operate and tune Intrusion Detection and Intrusion Prevention Systems to improve detection accuracy and reduce false positives.
• Partner with the IT Networking team on secure network design, routing, switching, firewall, segmentation, and connectivity initiatives.
• Assist other Security and IT teams by reviewing security events, alerts, logs, and traffic patterns to identify potential threats or misconfigurations.
• Assist with the implementation of network security architecture standards, hardening guidelines, and secure configuration baselines.
• Participate in incident response activities related to network-based threats, unauthorized access, or suspicious traffic.
• Develop and maintain documentation, including network security diagrams, platform runbooks, standard operating procedures, and change records.
• Support vulnerability remediation efforts related to network infrastructure, application exposure, and security control gaps.
• Perform policy reviews and rulebase hygiene for WAF, NAC, IDS, and IPS technologies.
• Participate in change management activities, including risk assessment, implementation planning, testing, and post-change validation.
• Collaborate with security operations, infrastructure, application, and compliance teams to support business and regulatory requirements.
• Assist with lifecycle management for network security tools, including upgrades, patching, certificate management, integrations, and capacity planning.
• Provide technical recommendations to improve visibility, segmentation, access control, and threat prevention across the environment.

Basic Qualifications:

• Experience: 8+ years of network security, infrastructure security, and/or security engineering. Practical and demonstrated experience working Web Application Firewalls, Network Access Control platforms, IDS/IPS technologies, Firewalls or secure network gateways in platforms by Cisco, Palo Alto, Trend Micro, Gigamon, Trellix, etc.
• Education : Bachelor’s degree in Cybersecurity, Information Technology, Computer science or a related field.
• Technical Expertise : Advanced level knowledge of networking concepts, including TCP/IP, DNS, DHCP, VLANs, routing, switching, NAT, VPNs, and network segmentation. Experience analyzing logs, packet captures, alerts, and network traffic to troubleshoot issues or investigate security events. Familiarity with common network and application-layer attack techniques. Experience supporting production environments and following change management processes. Strong troubleshooting, documentation, and communication skills.
• Language Skills : Excellent stakeholder management and communication skills. Proficient in English for effective communication and coordination.
• Schedule : This is an onsite position requiring presence in the Irvine office five days per week. Some after-hours or weekend work may be required for planned maintenance, incident response, or critical security changes.

Preferred Qualifications:

• Experience : Experience with enterprise WAF policy tuning, bot protection, API protection, or application security rule sets. Experience with NAC deployment models, including 802.1X, MAC authentication bypass, posture assessment, guest access, and device profiling. Familiarity with SIEM, SOAR, vulnerability management, endpoint security, or cloud security tools. Scripting or automation experience using Python, PowerShell, APIs, or infrastructure-as-code tools.
• Education and Certifications : Masters degree in Cybersecurity, Information Technology, Computer Science or a related discipline is preferred. Industry-recognized credentials such as Security+, Network+, CCNA, CCNP Security, PCNSE, CISSP, GSEC, GCIH, or vendor-specific certifications.

• Language Skills : Bi-lingual in English and Korean language proficiency is preferred to support global coordination and communication.

Team Culture:
The team fosters a high-performance, collaborative environment centered around proactive technology risk management and excellent customer service. Members are expected to lead with accountability, communicate effectively across functions, and adapt to dynamic challenges. The culture values technical excellence, continuous improvement, and global coordination, ensuring technology risks are well managed.

Base Salary Range: $120,000 - 160,000