Cybersecurity Analyst
KLA Corporation
- Chennai, Tamil Nadu
- Permanent
- Full-time
- Assess risks, threats and vulnerabilities of the product assets and production system in accordance with accepted industry, and government standards to ensure security design integrity, availability, confidentiality, and regulatory compliance.
- Work closely with the development team to identify and address security vulnerabilities throughout the product/software development lifecycle.
- Developing and implementing product security policies and procedures
- Conducting proactive research to analyze security weaknesses and recommend appropriate strategies.
- Liaising with vendors to implement security solutions.
- Identify and define system security requirements; Documenting security certification.
- An enthusiasm for staying up to date with the very latest updates about security threats and solutions.
- Great communicator and collaborator; Good written and verbal communication skills.
- Completion of a Bachelor's degree from an accredited course of study, in Information Assurance, Cybersecurity, IT Security, Computer Science, Information Technology or similar.
- Pursuit or completion of Security related certification (CISSP or CEH, etc.).
- Computer, infrastructure (full tech stack) and operating system knowledge.
- Ability to multi-task, adapt to changes quickly and handle heavy ticket volumes.
- Self-motivated with the ability to work in a fast paced environment.
- Familiarity with various network and host-based security applications and tools, such as assessment/scanning tools, intrusion detection systems, and other security software packages.
- Knowledge of the NIST CSF, 800-171 and 800-53, CIS Top 20.
- Knowledge of the SEMI (E187, E188) Cybersecurity Policies.
- Knowledge of confidentiality, integrity, and availability principles.
- Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
- Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, DNS and directory services.
- Knowledge of authentication, authorization, and access control methods.
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.