IT Security Analyst

About Veeco
You probably don’t realize it, but what we do at Veeco touches the lives of every person, every day. It’s a bold statement, but it’s true. From the smartphones in our pockets that access the world’s collective knowledge, to the cloud-based services where all that information lives, to high-speed wireless communication and computing power needed to drive artificial intelligence, augmented and virtual reality, gaming and so much more, our technology is all around us. 
 

We design, develop, manufacture, and service highly complex, cutting-edge machines used by our customers to create the essential devices that drive the digital age, connect the world, and improve the human experience. Along with the world’s leading technology companies, many of which are household names, we help solve their most difficult material science challenges, enabling technologies for a more connected, sustainable, and convenient world.
 

We’re looking for material difference-makers to join our growing team. Interested? Learn more at www.veeco.com/careers.

Overview:

Veeco Instruments is seeking a Level II Security Analyst to help shape the future of Incident Response. We are seeking a highly skilled and experienced candidate to join our dynamic team. The ideal candidate will have a strong background in Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), Alert Monitoring, System Tuning, and Incident Detection and Response (IDR). The Level II Security Analyst will be responsible for configuration, monitoring, analyzing, and responding to security events and incidents to protect our organization's information systems and data. This position will play a crucial role in ensuring the holistic security and integrity of Veeco’s systems, networks, and data.

Responsibilities:

• Investigate, remediate, and tune alerts generated by our various cybersecurity tools.
• Work with business stakeholders to identify alerts and triage identified incidents.
• Engage the managed detection and response (MDR) team and SOC vendor to prioritize threat detection measures and optimize our security posture.
• Ensure proper configuration of security events are forwarded to our SIEM.
• Lead or assist with incident response managed by the team.
• Develop and maintain the incident response plan, guidelines, and procedures.
• Participate in ongoing threat research and intelligence gathering.
• Identify gaps in our protections and make recommendations to correct.
• Monitor and analyze threat intelligence sources to proactively identify changes to Veeco’s threat landscape and recommend appropriate countermeasures.
• Continue to grow and mature our SIEM/SOAR Platform
• Stay current on the latest technologies, trends, and practices in cybersecurity, Incident Response Frameworks, and relevant threat groups to continuously improve our Incident Response Program.
• Participate in ongoing threat research and intelligence gathering.
• Mentor and provide guidance to junior cybersecurity team members fostering their professional development.
• Implement best practices, strategies, methodologies, and approaches to all assigned tasks and complex projects.
• Up to 10% travel is required.

Qualifications:

• Bachelor’s degree in computer science, Computer Information Systems, Cybersecurity, or other applicable field with 4 or more years of experience working in security controls, incident response, or other applicable cybersecurity fields is required.
• Relevant Incident Response or cybersecurity certifications (CISSP, CISM, CISA, GCIH) are also required.

Knowledge, Skills & Abilities:

• In-depth knowledge of and related experience in applying incident response procedures and methodologies in an enterprise environment, including NIST CSF.
• Strong understanding of threat detection, incident response, and vulnerability management
• Familiarity with security technologies used to implement security controls, including tools such as SIEM, EDR, DNS Protections and endpoint security solutions.
• Proficient in developing and tuning alerts in cybersecurity tools based on threat intelligence.
• Experience working with Managed Detection and Response (MDR) providers.
• Exceptional analytical, problem-solving, and critical thinking skills to investigate and respond to security incidents.
• Speak your mind when you find opportunities for technology or process improvement.
• Develop repeatable policy and processes to ensure process uniformity and quality.
• Document, deploy, and improve incident response processes.
• Work well in cross-team troubleshooting efforts.
• Push your knowledge through Veeco-funded advanced training opportunities.
• Be comfortable saying, “I don’t know.”

Salary and Benefits
The expected salary range for this position is $74,880 — $94,848, plus a bonus opportunity. We will consider your location, experience, and other job-related factors when determining your pay. If your salary requirements exceed the advertised range and you remain interested in Veeco, we encourage you to apply or email your resume to recruiting@veeco.com.

Other benefits include:

• Medical, Dental, and Vision
• Employee Stock Purchase Plan (ESPP)
• 401(k) with Company Match
• Holiday, Vacation, and Sick Time
• Flexible Spending Accounts (FSA)
• Commuter Benefits
• Life and Accident Insurance
• Disability Insurance
• Tuition Reimbursement
• Employee Assistance Program (EAP)
• Identity Theft Remediation
• Emergency Travel Assistance

Veeco is an equal opportunity employer. We evaluate applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information, and other legally protected characteristics. Veeco is committed to working with and providing reasonable accommodations to individuals with disabilities.

Notice to Applicants:
All communication about open positions and hiring will come from someone with a @veeco.com email address. You will always have multiple interviews and meet several team members (in-person or virtually) before we present an offer. We may also check references or conduct a background investigation as part of the offer process. We will never ask you for money for any reason, especially to send equipment or for pre-employment training. If you have any questions or concerns, or if someone has reached out to you and you think it might be a scam, please get in touch with us at recruiting@veeco.com.