Full Job DescriptionApplied Materials, Inc. is the leader in materials engineering solutions used to produce virtually every new chip and advanced display in the world.
Information Security threat landscape continues to remain increasingly complex and require constant vigilance to secure a large, global enterprises. Applied has an exciting opportunity to join a world-class information security team, working with a global team and external agencies to protect Applied Materials.
This position will be based in Bangalore, India and will be responsible for administration, maintenance, and integration of multiple security platforms for security operations technical analysis, assessment and recommendations in the areas of real-time security situational awareness, operational network & Identity management system and applications systems security monitoring
Key Responsibilities:
Support and lead security incident response in a cross-functional collaboration environment driving towards incident resolution
Acknowledge, analyze and validate incidents triggered from correlated events through SIEM solution (QRDAR, SPLUNK)
Perform L2/L3 analysis and validation on incidents received through other reporting mechanisms such as email, phone calls, management directions, etc.
Evaluate, analyze, and modify security alert rules, reports, and policies to minimize the number of false positives in the environment.
Analyze logs that could help in the incident containment and security investigation
Undertake first stages of false positive and false negative analysis
Understand the structure and the meaning of logs from different log sources such as FW, IDS, Windows DC, Network appliances, AV and antimalware software, email security, EDR etc.
Understand the subject of EDR alarms (Carbon Black/CrowdStrike)
Track and update incidents and requests based on analysis results
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
Monitor the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action
Work with Computer Security Incident Response Team (CSIRT) to manage & contain information security incidents and events to protect company IT assets, Intellectual Property, and company’s reputation
Promptly responding to all security incidents and providing thorough post-event analyses
Respond to advisory service requests to address and drive thru for closure as needed.
Perform technical research into advanced, targeted attacks, crimeware campaigns, malware and other emerging technologies and techniques to identify and report on cyber-attacks and attackers
Perform proactive research to identify, categorize and produce reports on new and existing threats
Display strong technical aptitude with: IT Security, Enterprise Firewalls, Intrusion Detection and Prevention, Antivirus, Web and Email Security, Server and application monitoring, Windows and Linux based Web Services
Skills Requirement:
Bachelor’s degree in Engineering or Computer Science preferred
Strong knowledge of Security Operations Center (SOC)
Previous experience in implementation of enterprise security software solutions
6+ years of experience in cyber security
Experience in threat hunting and exploit tools
Strong problem-solving and analytical skills, initiative, eagerness to learn, improve, and ability to work independently within a team structure
Proven ability to work under stress in emergencies, with the flexibility to handle multiple high-pressure situations simultaneously
Experience with an interpreted programming language (PHP, Python, Perl, Ruby, etc.)
Experience with operating system internals for both Linux and Windows platforms.
Experience with network and host-based collection tools such as Snort, Nxlog, CEF, or commercial Enterprise Detection and Response (EDR) platforms.
Understanding of network architecture.
Excellent time management, reporting, and communication skills.
Preferred certifications CEH, Security+
Impact
Impacts quality of own work and the work of others on the team; works within guidelines and policies
interpersonal Skills
Explains complex information to others in straightforward situations
Ability to work effectively as an individucal contributor or as part of a cross functional team to meet common objectives
Qualifications
Education:
Bachelor’s Degree
Skills
Certifications:
Languages:
Years of Experience:
4 – 7 Years
Work Experience:
Additional Information
Travel:
Yes, 10% of the Time
Relocation Eligible:
Yes
Applied Materials is committed to diversity in its workforce including Equal Employment Opportunity for Minorities, Females, Protected Veterans and Individuals with Disabilities.