Company Overview
KLA is a global leader in diversified electronics for the semiconductor manufacturing ecosystem. Virtually every electronic device in the world is produced using our technologies. No laptop, smartphone, wearable device, voice-controlled gadget, flexible screen, VR device or smart car would have made it into your hands without us. KLA invents systems and solutions for the manufacturing of wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. The innovative ideas and devices that are advancing humanity all begin with inspiration, research and development. KLA focuses more than average on innovation and in 2019 we invested 15% of sales back into R&D. Our expert teams of physicists, engineers, data scientists and problem-solvers work together with the world's leading technology providers to accelerate the delivery of tomorrow's electronic devices. Life here is exciting and our teams thrive on tackling really hard problems. There is never a dull moment with us.

Group/Division
The Information Technology (IT) group at KLA is involved in every aspect of the global business. IT's mission is to enable business growth and productivity by connecting people, process, and technology. It focuses not only on enhancing the technology that enables our business to thrive but also on how employees use and are empowered by technology. This integrated approach to customer service, creativity and technological excellence enables employee productivity, business analytics, and process excellence.

Responsibilities

The Cybersecurity Analyst is responsible for first level monitoring and maintaining the security tools that are used to secure our network and infrastructure. This individual will be responsible for generating and responding to tickets from our SIEM tools and escalating when appropriate to relevant IT and Cybersecurity personnel. Qualified candidates should have exposure to network security assets (Firewalls/AV/IPS/IDS/SIEM). Strong communications skills, both written and verbal, are integral to success for this position.

Essential Duties and Responsibilities:

• Coordination of tickets between multiple teams to ensure completion.
• Pre-process service requests as they arrive through email, manual entry, or direct business input.
• Schedule internal Vulnerability Scans though our SIEM & EVM tools.
• Monitor service requests to ensure prompt action and completion.
• Communication with CISO as required: keeping informed of incident progress, notifying of impending changes or agreed outages.
• IDS monitoring and analysis, analyze network traffic, log analysis, prioritize and differentiate between potential intrusion attempts and false alarms.
• Create and track investigations to resolution.
• Compose security alert notifications.
• Advise incident responders in the steps to take to investigate and resolve computer security incidents.
• Detection, monitoring, analysis, and resolution of security incidents.
• Must be able to perform network, application, and log intrusion detection.
• Participation in security incident handling efforts in response to a detected incident.
• Must be able to maintain awareness of trends in security regulatory, technology, and operational requirements.

Additional Duties and Responsibilities:

• Fast turnaround of service requests.
• Ability to work in a team and communicate effectively.
• Track tickets as they route through other teams.
• Escalate service requests to appropriate resources.
• Generate reports from different data sources - create tickets when appropriate.
• Enter all work as service tickets into ServiceNow.

Qualifications

• Pursuit or completion of entry level Security related certification (CISSP or CEH, etc.).
• Computer, infrastructure (full tech stack) and operating system knowledge.
• Interpersonal skills: such as telephony skills, communication skills and active listening skills.
• Ability to multi-task, adapt to changes quickly and handle heavy ticket volumes.
• Technical awareness: ability to match resources to technical issues appropriately.
• Understanding of support tools, techniques, and how technology is used to provide Cybersecurity services.
• Self-motivated with the ability to work in a fast-moving environment.
• Familiarity with various network and host-based security applications and tools, such as network and host assessment/scanning tools, network and host based intrusion detection systems, and other security software packages.
• Knowledge of the NIST CSF, 800-171 and 800-53, CIS Top 20.
• Knowledge of confidentiality, integrity, and availability principles.
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
• Knowledge of cyber threats and vulnerabilities.
• Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
• Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, DNS and directory services.
• Knowledge of authentication, authorization, and access control methods.
• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

KLA is an Equal Opportunity Employer. Applicants will be considered for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, or any other characteristics protected by applicable law.

Minimum Qualifications

We offer a competitive, family friendly total rewards package. We design our programs to reflect our commitment to an inclusive environment, while ensuring we provide benefits that meet the diverse needs of our employees.

KLA is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, national origin, sex, gender identity, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other status protected by applicable law. We will ensure that qualified individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us at [email protected] to request accommodation.