Listing Description

Samsung Semiconductor Inc. (SSI) is advancing the world’s technology. As a leader in Memory, System, LSI and LCD technologies, our US teams contribute to breakthroughs in 5G, SOC, memory and display. With our global perspective and diversity of thought, we proudly serve our customers around the world. We are looking for team members who share our commitment to learning and growth and excel when collaborating within and across teams.

SSI is headquartered in the heart of Silicon Valley and is a wholly-owned U.S. subsidiary of Samsung Electronics Co., Ltd. - the #1 employer in the world (Forbes, 2020 & 2021) and top patent-holder in the U.S. Want to advance the world’s technology with us?

Job Title

Cyber Security Operations Analyst

Location

San Jose, CA

Job #

42012

OVERVIEW & IMPACT:

Cyber Security Operations Analyst is responsible for safeguarding information system assets by identifying and solving potential and actual security problems to ensure the confidentiality, integrity, and availability of IT resources and their associated data.

JOB RESPONSIBILITIES:

• Analyze and track the cyber threat landscape, including identifying and investigating cyber threats actors and their activities to enhance cyber security posture.


• Perform security monitoring, security event triage, and incident response using SIEM and CASB solutions. Analyze alert patterns to provide recommendations for policy improvement.


• Create content (queries, dashboards, reports, etc.) in security tools like Splunk SIEM, Netskope CASB, DLP & others.


• Respond to daily security incidents following established incident response methodology.


• Identify, monitor, and present data points which includes daily dashboards, metrics, and reporting.


• Ensure continuous improvement of security operations processes and procedures.


• Create and maintain technical documentation for existing security tools and solutions.


• Conduct incident response activities as appropriate including triage, root cause analysis, kill chain analysis, escalations, notifications, and communication with the relevant parties.


• Perform threat hunting across the network for proactive detection of anomalous events and possible intrusions/attacks.


• Work on Cyber Security projects providing technical support and guidance to IT and other teams.


• Identify gaps in IT infrastructure by providing insight into advanced threat attackers TTPs


• Enhance department and organization reputation by delivering quality results and exploring opportunities to increase value and raise awareness of Cyber Security Program.


• Balance concurrent projects with ongoing operational responsibilities.


• Stay informed on recent security trends and vulnerabilities, and proactively apply this knowledge to reduce risk.

QUALIFICATIONS & REQUIRED SKILLS:

• Bachelor's degree in Computer Science, Information Systems, Cyber Security or relevant field.


• 1-2+ years of work experience in Security Operations, Threat Intelligence, or Incident Response.


• Hands-on experience with Splunk Enterprise Security & Netskope CASB solution is required.


• Extensive knowledge in two or more of the following Security tools:  SIEM, CASB, Advanced DLP, SOAR, EDR, Email Gateway, Enterprise Immune System.


• Understanding of TCP/IP networking, and network services such as DNS, SMTP, DHCP, etc.


• Hands on experience with networking commands or any scripting language in existing role.


• Advanced understanding of business processes, internal control risk management, IT controls, audit, and related standards.


• Energetic, analytical and keen problem solver who works well in a collaborative environment.


• Takes a metric-driven approach in remediation and problem-solving.


• Strong ability to manage multiple demands, with a strong sense of accountability and urgency.

Additionally, we look for the following universal qualities in all candidates:

• Resourceful Achiever: self-motivated and proactive, you flex to try new approaches and creatively solve problems 


• Avid Learner: you thrive with challenges, seek continuous growth and improvement, and seek data to prove your hypotheses


• Devoted Professional: you are diligent and deliberate in your work, leveraging your expertise to deliver results without ego  


• Thoughtful Collaborator: you build relationships across teams, offering help and welcoming ideas from others to drive work forward in an inclusive manner

PREFERRED SKILLS

• Relevant security certifications or vendor certifications in the above security tools is preferred.

COVID-19 POLICIES

• Successful applicants must comply with company COVID-19 policies, which are subject to change in response to public health, regulatory and business circumstances


• Current policies are subject only to emergency or legally-required exceptions and include: mandatory reporting of vaccination status; vaccination requirement for office access, external meetings and business travel; mask usage in office; and daily screening procedures at offices