Cyber Governance Analyst - Internal Assessment

Base Pay Range: $67,100.00 - $114,100.00 Annually

Primary Location: USA-MI-Ann Arbor-KLA

KLA’s total rewards package for employees may also include participation in performance incentive programs and eligibility for additional benefits identified below. Interns are eligible for some of the benefits identified below. Our pay ranges are determined by role, level, and location. The range displayed above reflects the minimum and maximum pay for this position in the primary location identified in this posting. Actual pay depends on several factors, including location, job-related skills, experience, and relevant education level or training. If applicable, your recruiter can share more about the specific pay range for your preferred location during the hiring process.

Company Overview

KLA is a global leader in diversified electronics for the semiconductor manufacturing ecosystem. Virtually every electronic device in the world is produced using our technologies. No laptop, smartphone, wearable device, voice-controlled gadget, flexible screen, VR device or smart car would have made it into your hands without us. KLA invents systems and solutions for the manufacturing of wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. The innovative ideas and devices that are advancing humanity all begin with inspiration, research and development. KLA focuses more than average on innovation and we invest 15% of sales back into R&D. Our expert teams of physicists, engineers, data scientists and problem-solvers work together with the world’s leading technology providers to accelerate the delivery of tomorrow’s electronic devices. Life here is exciting and our teams thrive on tackling really hard problems. There is never a dull moment with us.

Job Description/Preferred Qualifications

• Develop and mature KLA’s Cyber Security related policies, standards, and procedures in line with best known methods

• Conduct system, network, process, and software vulnerability assessments in accordance with established processes and procedures

• Apply frameworks and regulation guidelines to determine risk and recommend remediations

• Work with IT and business partners to perform successful assessments, build risk mitigation strategies, and review remediation plans

• Evaluate alignment with frameworks such as MITRE ATT&CK

• Assess IT risks through mergers and acquisitions and recommend mitigation strategies

• Conduct information system risk assessments and supports compliance documentation and system accreditation requirements

Desired Qualifications:

• Pursuit or completion of security related certification (CISA, GSNA, or similar)

• Ability to multi-task, adapt to changes quickly and handle heavy ticket volumes

• Self-motivated with the ability to work in a fast-paced environment

• Familiarity with various network and host-based security applications and tools, such as assessment/scanning tools, intrusion detection systems, and other security software packages

• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).

• Knowledge of the NIST CSF, ISO 27001, & CIS Top 20.

• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

Minimum Qualifications

• Completion of a Bachelor's degree from an accredited course of study, in Information Assurance, Cybersecurity, IT Security, Computer Science, Information Technology or similar

• Technical infrastructure (full tech stack), network, and operating system knowledge

• Knowledge of authentication, authorization, and access control methods

• Knowledge of confidentiality, integrity, and availability principles

• Minimum two years’ work experience in cybersecurity governance, IT audit, technical quality assurance, or a related field of expertise

The company offers a total rewards package that is competitive and comprehensive including but not limited to the following:  medical, dental, vision, life, and other voluntary benefits, 401(K) including company matching, employee stock purchase program (ESPP), student debt assistance, tuition reimbursement program, development and career growth opportunities and programs, financial planning benefits, wellness benefits including an employee assistance program (EAP), paid time off and paid company holidays, and family care and bonding leave.

KLA is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, national origin, sex, gender identity, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other status protected by applicable law. We will ensure that qualified individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us at talent.acquisition@kla.com or at +1-408-352-2808 to request accommodation.

Be aware of potentially fraudulent job postings or suspicious recruiting activity by persons that are currently posing as KLA employees.  KLA never asks for any financial compensation to be considered for an interview, to become an employee, or for equipment. Further, KLA does not work with any recruiters or third parties who charge such fees either directly or on behalf of KLA. Please ensure that you have searched KLA’s Careers website for legitimate job postings.  KLA follows a recruiting process that involves multiple interviews in person or on video conferencing with our hiring managers.  If you are concerned that a communication, an interview, an offer of employment, or that an employee is not legitimate, please send an email to talent.acquisition@kla.com to confirm the person you are communicating with is an employee. We take your privacy very seriously and confidentially handle your information.