Sr. Cybersecurity Analyst - SOC

Company Overview

Company Overview — KLA is a global leader in diversified electronics for the semiconductor manufacturing ecosystem. Virtually every electronic device in the world is produced using our technologies. KLA invents systems and solutions for the manufacturing of wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. The innovative ideas and devices that are advancing humanity begin with inspiration, research and development.

KLA focuses on innovation and invests 15% of sales back into R&D. Our expert teams of physicists, engineers, data scientists and problem-solvers work together with the world’s leading technology providers to accelerate the delivery of tomorrow’s electronic devices. Life here is exciting and our teams thrive on tackling hard problems.

The Senior Cybersecurity Analyst is responsible for advanced incident response, threat hunting, DLP monitoring and maintaining the security tools that are used to secure our environment. The Cybersecurity group at KLA is involved in every aspect of the global business. The KLA Cybersecurity group defends against cyber-attacks and provides cybersecurity tools, incident response services and assessment capabilities to safeguard the environments that support the essential operations of KLA.

We are passionate about identifying adversarial activities and anticipating a wide variety of threats to strengthen our defenses and the overall protection of KLA Intellectual Property.

• Actively perform detection, monitoring, analysis, and resolution of security incidents

• Plan and execute regular incident response and postmortem exercises, with a focus on crafting measurable benchmarks to show progress (or deficiencies requiring additional attention)

• Provide guidance, support and training for junior level security analysts

• Provide SOC subject matter expertise for broader IT and Security efforts

• Facilitate the development and tuning of AV, EDR, SIEM, and DLP rules to ensure high fidelity alerting

• Compose security alert notifications

• Must be able to prioritize their own work to provide a positive customer experience

• Maintain awareness of current threat landscape and regulatory requirements

• Participate in rotational on-call schedule to respond to security events 24x7

• Generate reports from different data sources and present to management when requested

• Relevant security related certification(s) a plus: GCIA, GSEC, GCIH, GCED, GCFA, GREM

• Bachelor’s degree in an Information Security or related technical field

• Five (5) years of experience working in a SOC environment in an Incident Responder role

• Strong working knowledge of EDR, SIEM, AV, proxies, WAF, IDS, OSs and forensics tools

• Five (5) years of related experience in cybersecurity or related technologies such as: firewalls/AV/EDR/IPS/IDS/SIEM systems

• Some domestic and/or international travel (up to 25%) may be required.

• This is a Hybrid Role and will be based at our Midwest HQ in Ann Arbor, MI

Base Pay Range: $ - $ Annually

KLA’s total rewards package for employees may also include participation in performance incentive programs and eligibility for additional benefits including but not limited to: medical, dental, vision, life, and other voluntary benefits, 401(K) including company matching, employee stock purchase program (ESPP), student debt assistance, tuition reimbursement program, development and career growth opportunities and programs, financial planning benefits, wellness benefits including an employee assistance program (EAP), paid time off and paid company holidays, and family care and bonding leave.

Interns are eligible for some of the benefits listed. Our pay ranges are determined by role, level, and location. The range displayed reflects the pay for this position in the primary location identified in this posting. Actual pay depends on several factors, including state minimum pay wage rates, location, job-related skills, experience, and relevant education level or training. We are committed to complying with all applicable federal…