IT Security Analyst

About The Position

Requirements

• Bachelor's degree in computer science, Computer Information Systems, Cybersecurity, or other applicable field.
• 4 or more years of experience working in security controls, incident response, or other applicable cybersecurity fields.
• Relevant Incident Response or cybersecurity certifications (CISSP, CISM, CISA, GCIH).

Nice To Haves

• In-depth knowledge of and related experience in applying incident response procedures and methodologies in an enterprise environment, including NIST CSF.
• Strong understanding of threat detection, incident response, and vulnerability management.
• Familiarity with security technologies used to implement security controls, including tools such as SIEM, EDR, DNS Protections and endpoint security solutions.
• Proficient in developing and tuning alerts in cybersecurity tools based on threat intelligence.
• Experience working with Managed Detection and Response (MDR) providers.
• Exceptional analytical, problem-solving, and critical thinking skills to investigate and respond to security incidents.
• Ability to develop repeatable policy and processes to ensure process uniformity and quality.
• Comfortable with cross-team troubleshooting efforts.

Responsibilities

• Investigate, remediate, and tune alerts generated by our various cybersecurity tools.
• Work with business stakeholders to identify alerts and triage identified incidents.
• Engage the managed detection and response (MDR) team and SOC vendor to prioritize threat detection measures and optimize our security posture.
• Ensure proper configuration of security events are forwarded to our SIEM.
• Lead or assist with incident response managed by the team.
• Develop and maintain the incident response plan, guidelines, and procedures.
• Participate in ongoing threat research and intelligence gathering.
• Identify gaps in our protections and make recommendations to correct.
• Monitor and analyze threat intelligence sources to proactively identify changes to Veeco's threat landscape and recommend appropriate countermeasures.
• Continue to grow and mature our SIEM/SOAR Platform.
• Stay current on the latest technologies, trends, and practices in cybersecurity, Incident Response Frameworks, and relevant threat groups to continuously improve our Incident Response Program.
• Mentor and provide guidance to junior cybersecurity team members fostering their professional development.
• Implement best practices, strategies, methodologies, and approaches to all assigned tasks and complex projects.
• Up to 10% travel is required.

Benefits

• Medical, Dental, and Vision
• Employee Stock Purchase Plan (ESPP)
• 401(k) with Company Match
• Holiday, Vacation, and Sick Time
• Flexible Spending Accounts (FSA)
• Commuter Benefits
• Life and Accident Insurance
• Disability Insurance
• Tuition Reimbursement
• Employee Assistance Program (EAP)
• Identity Theft Remediation
• Emergency Travel Assistance