Company Description Microchip Technology Inc. is a leading provider of embedded control applications. Our product portfolio comprises general purpose and specialized 8-bit, 16-bit, and 32-bit microcontrollers, 32-bit microprocessors, field-programmable gate array (FPGA) products, a broad spectrum of high-performance linear, mixed-signal, power management, thermal management, radio frequency (RF), timing, safety, security, wired connectivity and wireless connectivity devices, as well as serial Electrically Erasable Programmable Read Only Memory (EEPROM), Serial Flash memories, Parallel Flash memories, and serial Static Random Access Memory (SRAM). We also license Flash-IP solutions that are incorporated in a broad range of products.
The Security Analyst 1 - Trainee is a transition role within the IT Security Team. An Ideal candidate will be one that are midlevel with a high motivation to learn. The L1 trainee assists in the management of company wide information security activities, and continuously improves the overall security posture of the company to meet the challenges of evolving threats. The Analyst will manage and respond to high severity incidents, act as a technical expert for the IS personnel on the front line, and perform security monitoring / incident response functions as a critical escalation point. The individual reports to the IT Security Supervisor in US directly and dotted reports to local IS leader for daily routine management.
Act as an escalation point for incident response cases and help mentor entry level security analysts in re-enforcing weekly and monthly trainings.
Assist with the monitoring of current security policies, standards and processes that encompass all of Microchip and include areas such as network security, application security, data security, and privacy.
Review potential security events and incidents utilizing (SIEM technology). Identify and investigate events and review tier one analyst cases for escalation.
Aid in the creation and monitoring of IOCs / Dashboards of high priority campaigns.
Aid in working with other IS teams in the remediation of compromised systems.
Perform general OSINT gathering processes and apply current security intelligence to proactive investigations.
Analyze security events via firewall logs, DNS logs, AV logs… …etc.
In addition to aiding in the day to day tasks of threat hunting, active security monitoring, analysis, and other security related tasks, the L1 Trainee will learn advanced topics within the following areas:
Advanced Hunting Techniques
Emerging Security Technology Design
Advanced Networking Concepts
The L1 Trainee will participate in weekly trainings and complete assignments in order to progress towards becoming a L1 Analyst.
Degree in computer science or engineering.
2+ years of experience in an information security role (offensive or defensive).
Fundamental knowledge in networking and Internet protocols such as TCP/IP, DNS, HTTP/S, packet capturing, switching, routing, DMZ and firewall configurations.
Solid working knowledge of Windows and Linux; advanced command-line usage is desirable.
Understanding of network and host based intrusion detection system (alerts and analysis).
Knowledge of memory / file system forensics for both Windows and Linux systems a plus.
Experience with SLA environments a plus
Security Incident and Event Monitoring (SIEM) experience a plus
Experience in IT/systems and network administration; including both Linux and Windows.
A deep understanding of the common network and software security vulnerabilities.
Ability to analyze root causes and deliver strategic recommendations for mitigation.
Programming and/or scripting languages Python, Java, js, HTML, PHP, bash, and RegEx a plus.
Familiar with analyzing pcap data for intrusions and/or malware analysis.
Network Certification such as CCNA a plus.
Ideal Candidates should have an industry security certification, such as Comptia S+, EC-Council CEH, or GIAC Certifications