Analysis Skills, Computer Security, Employee Retention, Incident Response, Information Assets, Information/Data Security (InfoSec), Internet Security, Leadership, Malware, Metrics, Operations Management, Phishing, Photonics, Power Amplifier, Problem Solving Skills, Risk, Security Analysis, Security Monitoring, Systems Administration/Management
IPG Photonics is revolutionizing the laser industry as the pioneering developer and leading producer of fiber lasers and amplifiers. Headquartered in Marlborough, MA, IPG has over 4,800 employees in more than 30 locations around the world. We aspire to work together with our employees and customers to apply light in ways that improve life.
Our mission is to develop innovative laser solutions to make the world a better place. To accomplish this mission, we are committed to attracting and retaining the best talent and an engaged and thriving workforce that drives a sustainable future for our company and society.
Working at IPG Photonics, you can expect challenging projects, a motivating and friendly environment, and competitive benefits.
The cybersecurity analyst is a member of the global cybersecurity team and works closely with the team to develop and implement a comprehensive cybersecurity program. This includes assisting with security operations tasks, and helping to document security processes and standards. The cybersecurity analyst works with the IT department to deploy technical, operational, and management controls that meet specific security requirements, and ensures that security configurations are maintained. The cybersecurity analyst will report to the Global Director, Information Security.
Roles and Responsibilities
Primary Duties
- Assists in the coordination and completion of global cybersecurity projects.
- Participates in an information security operations capacity on a daily basis.
- Reports to cybersecurity leadership concerning residual risk, vulnerabilities and other security exposures, including the misuse of information assets and noncompliance.
- Collaborates on critical IT projects to ensure that security issues are thoroughly addressed.
- Helps to develop and document security processes and procedures to, and measure their success with security metrics to ensure that security controls are effective and maintained.
- Assist with security incident response processes on an ad hoc basis and with tuning our incident detection capabilities.
- Support the relationship with our Managed Detection and Response vendor as they provide us with Tier-1 and Tier-2 SOC services.
- Manage phishing and security awareness testing and training.
Additional Duties
Security Monitoring and Vulnerability Assessments
- Works with a common set of security tools, and conducts reviews of tool output.
- Performs assessments to identify control weaknesses and determine the effectiveness of existing controls.
- Works on deploying, tuning and operating various security solutions.
- Assists with developing and validating baseline security configurations for operating systems and software applications.
- Investigate suspicious activities such as malware alerts and suspicious sign-in activity.
Incident Detection and Response
- Helps to provide incident response and analysis support during a security incident.
- Participates as a member of the Incident Response Team helping to resolve any security incidents.
- Assist with monitoring daily or weekly reports and security alerts for any events of interest.
- Researches and assesses new threats and security alerts, and recommends remedial actions.