Cybersecurity Analyst Security Operations Center

$83,800 - $142,500/Yr

KLA - Ann Arbor, MI

posted 23 days ago

Full-time - Mid Level
Ann Arbor, MI
Computer and Electronic Product Manufacturing

About the position

The Cybersecurity Analyst in the Security Operations Center (SOC) at KLA is responsible for advanced incident response, threat hunting, and maintaining security tools to protect the organization's environment. This role involves monitoring security events, analyzing network traffic, and responding to threats to safeguard KLA's intellectual property and operations.

Responsibilities

  • Act as an active member of the team, monitoring and processing responses for security events on a 24x7 basis, including serving in a rotational on-call capacity.
  • Monitor and analyze Intrusion Detection Systems (IDS), analyze network traffic, and log analysis to differentiate between potential intrusion attempts and false alarms.
  • Proactively monitor Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), and network-based alerts, responding to active threats to internal networks.
  • Advise incident responders on steps to investigate and resolve computer security incidents.
  • Perform detection, monitoring, analysis, and resolution of security incidents.
  • Plan and implement regular incident response and postmortem exercises, focusing on measurable benchmarks to show progress or deficiencies.
  • Review and analyze cyber threats, providing Subject Matter Expert (SME) support and training to junior security analysts.
  • Transform threat intelligence into effective detection logic and new signatures for integration with SIEM and EDR platforms.
  • Evaluate existing detection rules and facilitate the development and tuning of antivirus (AV), EDR, and SIEM rules for high fidelity alerting.

Requirements

  • Experience in incident response and threat hunting in a cybersecurity environment.
  • Strong knowledge of security tools such as SIEM and EDR.
  • Ability to analyze network traffic and logs for security incidents.
  • Experience in developing and tuning detection rules for security tools.
  • Strong communication skills to advise and train junior analysts.

Nice-to-haves

  • Certifications in cybersecurity (e.g., CISSP, CEH, etc.).
  • Experience with scripting or programming for automation of security tasks.
  • Familiarity with regulatory compliance standards (e.g., NIST, ISO, etc.).

Benefits

  • Participation in performance incentive programs.
  • Eligibility for additional benefits such as health insurance, retirement plans, and paid time off.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service