Profile Summary

Requires specialized depth and/or breadth of expertise in insider-threat and/or UEBA tools. Interprets internal or external business issues and recommends best practices. Solves complex problems; takes a broad perspective to identify innovative solutions. Works independently, with guidance in only the most complex situations. May lead functional teams or projects.

**This job is located onsite at our Santa Clara, CA campus

The candidate will be responsible for managing services and activities to support the Insider Threat program. This role will focus on monitoring Insider Threat solutions and perform analysis/investigations as appropriate in accordance with established incident response processes. The ideal candidate should be a motivated self-starter who proactively take on multiple challenges and assignments, working independently, and with minimal oversight.  The candidate should also demonstrate experience with data protection controls, end user behavioral analysis and significant experience analyzing and managing large sets of technical data.

Job Description/Key Responsibilities

Identify and create use cases to further mature existing user entity behavior analytics (UEBA) solution.  Primary focus is to identify IOCs leading up to data exfiltration scenarios and map existing or new log sources to specific IOC’sMonitor, detect, analyze, respond to Insider Threat alerts, and perform investigations as appropriate in accordance with incident response processesIdentify, analyze, and make recommendations to address security gapsEnforce data loss prevention policies with preventive controls and toolsIdentify recurring incidents within the organization and determine the need to address security control gapsAnalyze and make recommendations for enhancing AI security governance & controlsDefine, develop, and review performance indicators; analyze trends identified through reporting, and propose changes to Cybersecurity policies and proceduresParticipate in various Insider Threat assessments, drills, campaigns, and other processesWorking knowledge in technical domains such as: DLP, networking, firewalls, change management, systems administration, cloud computing, and information security best practicesManagement and administration of Insider Threat toolsStrong documentation skills with the ability to produce/maintain supporting procedures and processesAbility to work dependently and collaboratively in a global environmentExcellent written and verbal communication skills to communicate security and business risk to a broad range of technical and non-technical audiences

Qualification

5 years of demonstrated experience in areas such as insider risk8 years of demonstrated experience in security content development, log source analysis, threat modeling or related fieldsDegree and/or certifications in related field with a strong technical backgroundScripting skills (e.g., Perl, Python, Bash, PowerShell )Prior experience in operationalizing use cases for SOC/SIEM preferredDeploy, configure and lead operations multiple insider-threat technologies and appliances.Act as primary escalation support and consultancy for information security issues. Work across teams to develop and define project/program information security metrics & dashboards.Develop and maintain information security standards, procedures & guidelines and review/approve exceptions.Refine, configure and implement application roles, review and monitor access controls and process routine & emergency system access requests.Monitor events, collate and analyze data to assess the environment for information security risk, policy violations, & unusual activity and perform root cause analysis.Architect and implement new or updates to security solutions. Provide technical advice to clients and teams on design, installation and maintenance of information security.Evaluate on-premise & Cloud services to ensure information and personal information security. Work with the end users and project teams to design, implement and support information security best practices.Lead internal and external assessments and audits. Remediate identified issues and implement compensating controls. Assist with information security administration processes and practices violation investigations.Monitors and directs contingent workers in the delivery of project and support services. Evaluates contingent worker KPI's and provides timely updates to management. Responsible for approving contingent worker timesheets. Adheres to compliance processes and procedures

Functional Knowledge

Demonstrates depth and/or breadth of expertise in own specialized discipline or field 

Business expertise

Interprets internal/external business challenges and recommends best practices to improve products, processes or services
Has a good understanding of industry standard frameworks (NIST, CIS etc.)

Leadership

May lead functional teams or projects with moderate resource requirements, risk, and/or complexity 

Problem Solving

Leads others to solve complex problems; uses sophisticated analytical thought to exercise judgment and identify innovative solutions

Impact

Impacts the achievement of customer, operational, project or service objectives; work is guided by functional policies

Interpersonal Skills

Communicates difficult concepts and negotiates with others to adopt a different point of view
When required, act as a good mentor and train junior engineers appropriately

Qualifications

Education:

Bachelor's Degree

Skills:

Certifications:

Languages:

Years of Experience:

7 - 10 Years

Work Experience:

Additional Information

Time Type:

Full time

Employee Type:

Assignee / Regular

Travel:

Yes, 10% of the Time

Relocation Eligible:

No

U.S. Salary Range:

$152,000.00 - $209,000.00

The salary offered to a selected candidate will be based on multiple factors including location, hire grade, job-related knowledge, skills, experience, and with consideration of internal equity of our current team members. In addition to a comprehensive benefits package, candidates may be eligible for other forms of compensation such as participation in a bonus and a stock award program, as applicable.

For all sales roles, the posted salary range is the Target Total Cash (TTC) range for the role, which is the sum of base salary and target bonus amount at 100% goal achievement.

Applied Materials is an Equal Opportunity Employer committed to diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, national origin, citizenship, ancestry, religion, creed, sex, sexual orientation, gender identity, age, disability, veteran or military status, or any other basis prohibited by law.