Cybersecurity Analyst - External Assessments

Base Pay Range: $67,100.00 - $114,100.00 Annually
Primary Location: USA-MI-Ann Arbor-KLA
KLA's total rewards package for employees may also include participation in performance incentive programs and eligibility for additional benefits identified below. Interns are eligible for some of the benefits identified below. Our pay ranges are determined by role, level, and location. The range displayed above reflects the minimum and maximum pay for this position in the primary location identified in this posting. Actual pay depends on several factors, including location, job-related skills, experience, and relevant education level or training. If applicable, your recruiter can share more about the specific pay range for your preferred location during the hiring process.
Company Overview
KLA is a global leader in diversified electronics for the semiconductor manufacturing ecosystem. Virtually every electronic device in the world is produced using our technologies. No laptop, smartphone, wearable device, voice-controlled gadget, flexible screen, VR device or smart car would have made it into your hands without us. KLA invents systems and solutions for the manufacturing of wafers and reticles, integrated circuits, packaging, printed circuit boards and flat panel displays. The innovative ideas and devices that are advancing humanity all begin with inspiration, research and development. KLA focuses more than average on innovation and we invest 15% of sales back into R&D. Our expert teams of physicists, engineers, data scientists and problem-solvers work together with the world's leading technology providers to accelerate the delivery of tomorrow's electronic devices. Life here is exciting and our teams thrive on tackling really hard problems. There is never a dull moment with us.
Job Description/Preferred Qualifications
The Cybersecurity group at KLA is involved in every aspect of the global business. The KLA Cybersecurity group defends against cyber-attacks and provides cybersecurity tools, incident response services, and assessment capabilities to safeguard the environments that support the critical operations of KLA. We are passionate about identifying adversarial activities and anticipating a wide variety of threats to strengthen our defenses and the overall protection of KLA Intellectual Property.
We are in search of a Cyber Security Governance Analyst to help mature our Cyber Security Program and support activities related to review and assessment of third-party organizations, verification of standards and controls, and evaluation against industry standards (i.e. ISO 27001, SOC2). Additionally, the qualified individual will work with the broader cybersecurity team to mature our program, assess security risks, and communicate/facilitate remediation of those risks.
This position will work closely with the KLA Procurement teams, and partners across the company. Strong organization and communication skill will be vital.
What You Will Be Doing

• Apply frameworks and regulation guidelines to third part entities KLA is considering partnerships with
• Perform risk-based analysis on potential vendors and partners
• Assess potential vendors and partners by applying NIST Cyber Security/Risk Management Framework and document areas of risk and remediations needed
• Assess IT risks through mergers and acquisitions and recommend mitigation strategies
• Work with KLA business units and IT to perform internal reviews as requested
• Connect with team leads from IT and business units to ensure awareness and impact of identified risks
• Conduct information system risk assessments, review compliance documentation, validate system accreditation

Minimum Qualifications

• Completion of a Bachelor's degree from an accredited course of study, in Information Assurance, Cybersecurity, IT Security, Computer Science, Information Technology or similar; or work experience equivalent
• Knowledge of cloud computing and associated security standard processes

Desired Qualifications:

• Experience in a Cybersecurity Governance, or related position
• Computer, infrastructure (full tech stack), and operating system knowledge
• Ability to multi-task, adapt to changes quickly and handle heavy ticket volumes
• Self-motivated with the ability to work in a fast-paced environment
• Knowledge of the NIST, ISO, and SOC security frameworks
• Knowledge of ISO 27001 and SOC2 Type 2 certifications
• Knowledge of confidentiality, integrity, and availability principles
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins)
• Knowledge of authentication, authorization, and access control methods.
• Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
• Experience performing risk assessments

The company offers a total rewards package that is competitive and comprehensive including but not limited to the following: medical, dental, vision, life, and other voluntary benefits, 401(K) including company matching, employee stock purchase program (ESPP), student debt assistance, tuition reimbursement program, development and career growth opportunities and programs, financial planning benefits, wellness benefits including an employee assistance program (EAP), paid time off and paid company holidays, and family care and bonding leave.
KLA is proud to be an Equal Opportunity Employer. We do not discriminate on the basis of race, religion, color, national origin, sex, gender identity, gender expression, sexual orientation, age, marital status, veteran status, disability status or any other status protected by applicable law. We will ensure that qualified individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us at talent.acquisition@kla.com to request accommodation.