Company OverviewKLA is a global leader in diversified electronics for the semiconductor manufacturing ecosystem. Virtually every electronic device in the world is produced using our technologies. No laptop, smartphone, wearable device, voice-controlled gadget, flexible screen, VR device or smart car would have made it into your hands without us. KLA invents systems and solutions for the manufacturing of wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. The innovative ideas and devices that are advancing humanity all begin with inspiration, research and development. KLA focuses more than average on innovation and we invest 15% of sales back into R&D. Our expert teams of physicists, engineers, data scientists and problem-solvers work together with the world's leading technology providers to accelerate the delivery of tomorrow's electronic devices. Life here is exciting and our teams thrive on tackling really hard problems. There is never a dull moment with us.
Job Description/Preferred Qualifications
The Cybersecurity group at KLA is involved in every aspect of the global business. The KLA Cybersecurity group defends against cyber-attacks and provides cybersecurity tools, incident response services and assessment capabilities to safeguard the environments that support the essential operations of KLA. We are passionate about identifying adversarial activities and anticipating a wide variety of threats to strengthen our defenses and the overall protection of
KLA Intellectual Property.
We are seeking a qualified Insider Risk Analyst to join our Digital Information Risk team. In this role, you will monitor potential threats and analyze risky activity. Come join our team in this critical role to protect KLA!
What You Will Be Doing
This position will be accountable for detecting, analyzing, and mitigating insider threats demonstrating cybersecurity knowledge, behavioral analytics, and analytical thinking skills. The ideal candidate will have strong problem-solving abilities paired with technical expertise to identify and assess potential insider risks.
Conduct in-depth analysis and investigation into alerts and relevant logs to identify, analyze, document, and report on actions or behaviors that are risky, are noncompliant to company policies, or are identified as anomalous.
Lead triage of complex alerts, correlating data sources across SIEM, EDR, and DLP tooling to assess overall business risk across a wide range of IT systems and environments.
Align standard operating procedures with relevant incident response plans, providing clear and detailed information to help address the perceived risk.
Collaborate across the enterprise to support investigations processes and communicate business risks, including opportunities to strengthen security posture.
Conduct root cause analyses to drive corrective actions and mitigation after case closure.
Continually adapt and learn from findings to what is and is not risky behavior based on prior notifications, changes in policies, and changes in security logs.
Mentor junior analysts on specialized skills.
Required Skills
Experience with insider risk or similar role monitoring for digital risks such as abuse, fraud, intellectual property theft
Demonstrated experience with UEBA/UBA, DLP, EDR, and SIEM tools
Effective communication, interpersonal skills, and ability to work with partners across the business
Self-sufficient, motivated individual with the ability to calmly operate in high stress environment to meet goals in a timely manner
Proficiency in Microsoft Office suite to analyze data, collaborate with peers, and communicate findings
Desired
Cybersecurity certifications such as Certification in Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH)
Experience
