Information Security Engineer 4

The Group You’ll Be A Part Of

The Global Resilience, Security and Transformation Group is dedicated to deliver synergies between Information Security, Physical Security, Business Resilience, Management system assessment and corporate planning. Together, we support to keep the company secure and resilient and help business achieve their objectives.

The Impact You’ll Make

What You’ll Do

Develops and evaluates compliance with programs and processes to mitigate cybersecurity risk and ensure protection of company and allied assets and information. Researches and interprets current and pending governmental laws and regulations, industry standards and customer and vendor contracts to communicate compliance requirements. Conducts  information security risk assessments, security compliance audits and cybersecurity audits. Establishes IT security audit procedures relevant to SOX, HIPAA, PCI DSS and international data privacy laws. Evaluates and tests the design and operating effectiveness of IT security controls. Maintains compliance of internal IT security controls by meeting internal and external information security requirements. Documents, investigates and reports cybersecurity compliance issues and incidents. Works with business leaders to ensure information security risk findings are reviewed and solutions are implemented.

Who We’re Looking For

We are seeking an M365 System Security Analyst with 3+ years of experience to join our Information Security team.  This role focuses on operationalizing, monitoring, maintaining, and improving Lam’s security tools, including DLP, file encryption, vulnerability scanners, privilege management, and anti-malware systems.  Key responsibilities include ensuring smooth and effective operation of the security tools and the controls they provide, triaging alerts and coordinating remediation with the relevant IT teams and 3rd party vendors, and managing user requests via the ticketing system, including access requests.  In addition to that, this individual will need to support security incident response efforts as required by the Cyber Incident Response Plan (CIRP).

This position requires foundational experience in information security and/or enterprise IT systems administration, and offers opportunities to enhance skills and contribute to a robust security program.

Job Duties and Responsibilities

• Assist in the configuration and management of security tools and technologies
• Help ensure currency of our security tools (e.g.: patching of front and back-ends of tools)
• Help ensure currency and effectiveness of our tools’ policies and configurations
• Create, and maintain relevant documentation
• Abide by Lam’s change management processes
• Configure and conduct vulnerability scans, report findings, and recommendations to senior team members, and collaborate with other relevant teams to remediate findings
• Conduct user account audits and correct discrepancies/non-compliances
• Drive to improve operational health of the environment, and develop reports to highlight this
• Monitor Lam’s internal ticketing system and respond to internal customer requests
• Serve as a member of the “Security Operations Team” during a cyber incident
• Assist senior team members in meeting organizational needs and completing other duties as assigned

Preferred Qualifications

• Bachelor’s degree in cyber security, computer science or a related discipline, or relevant experience/certifications
• 3+ years of experience in a cyber or information security role
• IT support or administration experience
• Noted interest in learning and continuous development
• Ability to clearly express ideas and information to other team members
• Hands-on experience with Microsoft Intune and M365 security solutions preferred
• Hands-on experience with Netskope preferred
• Hands-on experience with security event monitoring and incident response
• Understanding of DLP, privilege management, and anti-virus tools
• Experience running vulnerability scans and processing results
• Understanding of security control frameworks and compliance standards (e.g., NIST)
• Understanding of operating systems such as Windows and Linux
• Ability to quickly adapt and change priorities as business needs change
• Must be detailed and results-oriented

Our Commitment

We believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results.

Lam Research ("Lam" or the "Company") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company's intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees.

Lam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories – On-site Flex and Virtual Flex. ‘On-site Flex’ you’ll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. ‘Virtual Flex’ you’ll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time.