Insider Threat Analyst

Company Overview

The SPTS division of KLA, designs, manufactures and markets wafer processing solutions for the global semiconductor and related industries. SPTS provides industry leading etch and deposition process technologies on a range of single wafer handling platforms. End-market applications include micro-electromechanical systems (MEMS), advanced packaging, LED, high speed RF device IC’s and power semiconductors. SPTS is part of KLA Corporation which develops industry-leading equipment and services that enable innovation throughout the electronics industry. We provide advanced process control and process-enabling solutions for manufacturing wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. In close collaboration with leading customers across the globe, our expert teams of physicists, engineers, data scientists and problem-solvers design solutions that move the world forward.

Job Description/Preferred Qualifications

The Cybersecurity team at KLA is dedicated to safeguarding our critical assets and ensuring the security of our operations. As a member of the Digital Information Risk team, we are seeking a qualified Insider Threat Analyst – 2 to monitor for potential threats and analyse risky activity. Come join our team in this critical role to protect KLA’s critical assets!

This position will be accountable for detecting, analysing, and mitigating insider threats demonstrating cybersecurity knowledge, behavioural analytics, and critical skills. The ideal candidate will have strong problem solving abilities paired with technical expertise to identify and assess potential insider risks.

Responsibilities

• Conduct in-depth analysis and investigation into alerts and relevant logs to identify, analyse, document, and report on actions or behaviours that are risky, are noncompliant to company policies, or are otherwise deemed suspicious

• Use Network and Host based tools to detect potential threats and unauthorized activity across a wide range of IT systems and environments

• Implement standard operating procedures within the program, including incident management in alignment with response plans, providing clear and detailed information to help address the perceived risk

• Collaborate across the enterprise to support investigations processes and communicate business risks

• Drive corrective actions and mitigation after reporting

• Continually learn, adapt, and feed-forward findings to what is and is not risky behaviour based on prior notifications, changes in policies, and changes in security logs

Basic Requirements

• Experience with UEBA/UBA, DLP, EDR, and SIEM tools

• Experience in one or more of the following areas: behavioural science, incident response, security operations such as network security, digital forensic analysis, counterintelligence

• Experience in digital risks such as abuse, fraud, data protection, or security

• Effective communication, interpersonal skills, and ability to work with partners across the business

• Self-sufficient, motivated individual with the ability to calmly operate in high stress environment to meet goals in a timely manner

• Proficiency in Microsoft Office tools to analyse data and communicate findings

Desired

• Certification in Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH)

• Experience in developing detection rules and alerts

• Experience with data analytics tools to identify trends and correlate data sources

• Experience with SQL or Python

• Ability to read, speak, and write in a foreign language where KLA conducts business

What we will offer you?

KLA’s benefits package includes:

Annual leave starting at 25 days (plus bank holidays), contributory pension scheme, cash health plan, cycle to work scheme, global bonus plan, share scheme, rewards scheme, life assurance, generous shift allowance and overtime premiums.

Minimum Qualifications

We offer a competitive, family friendly total rewards package. We design our programs to reflect our commitment to an inclusive environment, while ensuring we provide benefits that meet the diverse needs of our employees.

KLA is proud to be an equal opportunity employer

Be aware of potentially fraudulent job postings or suspicious recruiting activity by persons that are currently posing as KLA employees.  KLA never asks for any financial compensation to be considered for an interview, to become an employee, or for equipment. Further, KLA does not work with any recruiters or third parties who charge such fees either directly or on behalf of KLA. Please ensure that you have searched KLA’s Careers website for legitimate job postings.  KLA follows a recruiting process that involves multiple interviews in person or on video conferencing with our hiring managers.  If you are concerned that a communication, an interview, an offer of employment, or that an employee is not legitimate, please send an email to talent.acquisition@kla.com to confirm the person you are communicating with is an employee. We take your privacy very seriously and confidentially handle your information.