Enterprise Vulnerability Management Analyst

KLA•Ann Arbor, MI

About The Position

We are in search of a Cyber Security Governance Analyst to join our Enterprise Vulnerability Management (EVM) program. The qualified individual will work with the broader security team to mature our program, assess security risks, and communicate/facilitate remediation of those risks. The position must collaborate with others on the team for remediation and additional validation, as well as contribute to other collaborative approaches driven by the security team strategy. This position will be assisting with critical initiatives for short- as well as long-term plans to identify and reduce the attack surface across the infrastructure landscape. Use of automated tools to identify, assess, and report is critical, with emphasis placed on effective communication to constituents relying on applications and systems that support their business. Vulnerability management analysts take an active role to inform and partner with business units to help better secure their operations.

Requirements

Completion of a bachelor’s degree from an accredited course of study, in Information Assurance, Cybersecurity, IT Security, Computer Science, Information Technology or corresponding years of professional experience in an IT or Cybersecurity role
Experience as an IT Administrator supporting different domains of IT infrastructure (Network, Systems, etc.)
Experience working collaboratively across departments and coordinating project tasks and tracking to completion

Nice To Haves

Pursuit or completion of Security related certification (CISSP, PNPT, Sec+, etc.)
Experience with vulnerability management in an enterprise environment
Computer, infrastructure (full tech stack) and operating system knowledge
Ability to multi-task, adapt to changes quickly and handle heavy ticket volumes
Self-motivated with the ability to work in a fast-paced environment
Familiarity with various network and host-based security applications and tools, such as assessment/scanning tools, intrusion detection systems, and other security software packages
Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins)
Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy

Responsibilities

Use tooling to identify, classify, and report on vulnerabilities in all KLA environments
Assist in execution of efforts to protect the organization’s information assets
Work with internal and external tools and services to identify and classify vulnerabilities and risk to the company
Work with IT and business partners to mitigate risks and develop remediation plans
Conduct system, network, or software vulnerability audits, assessments, and penetration testing in accordance with established processes and procedures
Conduct information system risk assessments and support compliance documentation and system accreditation requirements
Maintain an active curiosity about Cybersecurity trends and advisories to stay current on up-to-date vulnerabilities and exploits

Benefits

KLA’s total rewards package for employees may also include participation in performance incentive programs and eligibility for additional benefits including but not limited to: medical, dental, vision, life, and other voluntary benefits, 401(K) including company matching, employee stock purchase program (ESPP), student debt assistance, tuition reimbursement program, development and career growth opportunities and programs, financial planning benefits, wellness benefits including an employee assistance program (EAP), paid time off and paid company holidays, and family care and bonding leave.
Interns are eligible for some of the benefits listed.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume