Cybersecurity Analyst - Security Operations Center (Hybrid)
Company: Disability Solutions
Location: Ann Arbor
Posted on: September 2, 2024
Job Description:
Base Pay Range: $83,800.00 - $142,500.00 AnnuallyPrimary
Location: USA-MI-Ann Arbor-KLAKLA's total rewards package for
employees may also include participation in performance incentive
programs and eligibility for additional benefits identified below.
Interns are eligible for some of the benefits identified below. Our
pay ranges are determined by role, level, and location. The range
displayed above reflects the minimum and maximum pay for this
position in the primary location identified in this posting. Actual
pay depends on several factors, including location, job-related
skills, experience, and relevant education level or training. If
applicable, your recruiter can share more about the specific pay
range for your preferred location during the hiring process.
Company Overview KLA is a global leader in diversified electronics
for the semiconductor manufacturing ecosystem. Virtually every
electronic device in the world is produced using our technologies.
No laptop, smartphone, wearable device, voice-controlled gadget,
flexible screen, VR device or smart car would have made it into
your hands without us. KLA invents systems and solutions for the
manufacturing of wafers and reticles, integrated circuits,
packaging, printed circuit boards and flat panel displays. The
innovative ideas and devices that are advancing humanity all begin
with inspiration, research and development. KLA focuses more than
average on innovation and we invest 15% of sales back into R&D.
Our expert teams of physicists, engineers, data scientists and
problem-solvers work together with the world's leading technology
providers to accelerate the delivery of tomorrow's electronic
devices. Life here is exciting and our teams thrive on tackling
really hard problems. There is never a dull moment with us.Job
Description/Preferred QualificationsThe Cybersecurity group at KLA
is involved in every aspect of the global business. The KLA
Cybersecurity group defends against cyber-attacks and provides
cybersecurity tools, incident response services and assessment
capabilities to safeguard the environments that support the
essential operations of KLA. We are passionate about identifying
adversarial activities and anticipating a wide variety of threats
to strengthen our defenses and the overall protection of KLA
Intellectual Property.The Cybersecurity Analyst-SOC is responsible
for advanced incident response, threat hunting, and maintaining the
security tools that are used to secure our environment. This
individual will have a specific focus on Incident Response, tuning
detection rule-sets, and generating and responding to tickets
across relevant IT and Cybersecurity teams.Essential Duties and
Responsibilities
- Act as an active member of the team, which monitors and process
responses for security events on a 24x7 basis to include serving in
a rotational on-call capacity
- IDS monitoring and analysis, analyze network traffic, log
analysis, prioritize and differentiate between potential intrusion
attempts and false alarms
- Proactively monitor SIEM, EDR, and network based alerts, and
respond to active threats to internal networks
- Advise incident responders in the steps to take to investigate
and resolve computer security incidents
- Actively preform detection, monitoring, analysis, and
resolution of security incidents
- Plan and implement regular incident response and postmortem
exercises, with a focus on crafting measurable benchmarks to show
progress (or deficiencies requiring additional attention).
- Review and analyze cyber threats and provide SME support and
training to junior level security analysts.
- Transform threat intelligence into effective detection logic
and new signatures for integration with SIEM and EDR
platforms.
- Evaluate existing detection rules and facilitate the
development and tuning of AV, EDR, and SIEM rules to ensure high
fidelity alerting.
- Communication with management as required, keeping leaders
informed of incident progress, notifying of impending changes or
agreed outages.
- Prioritize their own work to provide a positive customer
experience.
- Participation in security incident handling efforts in response
to a detected incident.
- Must maintain awareness of trends in security regulatory,
technology, and operational requirements.Additional Duties and
Responsibilities
- Some domestic and/or international travel (up to 25%) may be
required.
- Ability to communicate clearly with other team members in a
hybrid environment.
- Generate reports from different data sources and present to
management when requested.This is a Hybrid role and will be based
out of our Midwest HQ in Ann Arbor, MIMinimum Qualifications
- 3+ years of related experience in cybersecurity or related
technologies such as: firewalls/AV/EDR/IPS/IDS/SIEM systems
- 3+ experience working in or with a Security Operations Center
(SOC) in an Incident Responder role
- Strong working knowledge of common security appliances
including: EDR, SIEM, AV, scanners, proxies, WAF, Netflow, IDS and
forensics tools
- Proficiency in Operating Systems (Windows and Linux)
- Ability to multi-task, adapt to changes quickly and handle
heavy ticket volumes
- Technical awareness: ability to match resources to technical
issues appropriately
- Ambitious and able to work in a fast-moving environment
Preferred Qualifications
- Bachelor's Degree or equivalent experience in an Information
Security/related IT field
- Relevant security related certification(s) a plus: CISSP, GCIA,
GSEC, GCIH, GCED, GCFA, GREM The company offers a total rewards
package that is competitive and comprehensive including but not
limited to the following: medical, dental, vision, life, and other
voluntary benefits, 401(K) including company matching, employee
stock purchase program (ESPP), student debt assistance, tuition
reimbursement program, development and career growth opportunities
and programs, financial planning benefits, wellness benefits
including an employee assistance program (EAP), paid time off and
paid company holidays, and family care and bonding leave. KLA is
proud to be an Equal Opportunity Employer. We do not discriminate
on the basis of race, religion, color, national origin, sex, gender
identity, gender expression, sexual orientation, age, marital
status, veteran status, disability status or any other status
protected by applicable law. We will ensure that qualified
individuals with disabilities are provided reasonable accommodation
to participate in the job application or interview process, to
perform essential job functions, and to receive other benefits and
privileges of employment. Please contact us at
talent.acquisition@kla.com or at +1-408-352-2808 to request
accommodation.
Keywords: Disability Solutions, Ann Arbor , Cybersecurity Analyst - Security Operations Center (Hybrid), Professions , Ann Arbor, Michigan
Didn't find what you're looking for? Search again!
Loading more jobs...