Title: Information Security Engineer 6 Location: US-CA-Fremont Requisition ID 194406 Work Location Model Virtual Flex Work Location Fremont-CA Work Country United States The group you’ll be a part of The Cyber Security Engineer will support the Information Security team in safeguarding Lam’s information system infrastructure and associated business systems, Operational Technology (OT) environments, and engineering/manufacturing environments. The impact you’ll make Lam Research is looking for a Security Engineer to join our team. The Cloud Security Engineer is responsible for performing services and activities to support Lam Information Security programs. This role will focus on owning and developing Lam’s cloud security posture and configuration vulnerability management across Azure. The Cloud Security Engineer will drive agentless and agent-based coverage, integrate findings to Microsoft Sentinel and ServiceNow and lead remediation across resource owners. This role blends engineering depth, program ownership, and focuses on automation and measurable risk reduction. What you’ll do - Own configuration, policy, and governance for Microsoft Defender for Cloud or other CSPM tools - Manage and operate cloud security posture management (CSPM) platforms (such as Wiz, Orca, or Defender for Cloud) including configuring policies, monitoring findings, analyzing risks, and working with stakeholders to remediate vulnerabilities - Provide technical expertise in interpreting findings, correlating them to risk and translating them into actionable remediation plans - Perform security reviews and architecture assessments of cloud solutions to identify gaps and recommend mitigation strategies - Develop KPIs and executive reporting metrics to measure cloud security program effectiveness and communicate outcomes to leadership - Work closely with Information Systems, Cloud Operations, and other Infosec teams to assure remediation and architecture changes to align with security recommendations - Contribute to the development and implementation of security principles, standards, baselines, and blueprints tailored for Azure Who we’re looking for - Solid foundation in Information Security Engineering with deep hands-on experience in Azure security - Experience in one or more of the following tools: Defender for Cloud, Wiz, Orca - Bachelor’s degree or Advanced Degree in Computer Science, Information Technology, Cybersecurity, or related discipline - 7+ years of experience in an Information Security role - 5+ years of experience with Microsoft Azure - Strong vulnerability management fundamentals - At least one of the following processional certifications required: Security+, CISSP, CISA, CISM, CEH, OSCP, GMON - Ability to communicate effectively, both verbal and written to a variety of audiences (immediate team, management, other business units) to provide guidance and direction when resolving technical challenges Preferred qualifications - Experience within a global semiconductor company or equivalent industry experience preferred - Ability to break down and understand complex problems and develop innovative ways to address them - Strong people and team/relationship building skills, work with cross functional global teams - Microsoft Certified: Azure Security Engineer Associate or similar Azure-focused certifications preferred Our commitment We believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results. Lam Research ("Lam" or the "Company") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company's intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees. Lam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories – On-site Flex and Virtual Flex. ‘On-site Flex’ you’ll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. ‘Virtual Flex’ you’ll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time. #LI-BW2 Salary CA San Francisco Bay Area Salary Range for this position: $137,000.00 - $287,000.00. The above salary range for this position is relevant to applicants that reside or work onsite in the California, San Francisco Bay Area only. Salary offers will depend on factors that include the location you work from, your level, education, training, specific skills, years of experience and comparison to other employees already in this role. Actual salary may vary from salary offered due to numerous factors including but not limited to unpaid time off, unpaid leave, company mandated shutdown, and other relevant factors. Our Perks and Benefits At Lam, our people make amazing things possible. That’s why we invest in you throughout the phases of your life with a comprehensive set of outstanding benefits.

• Driving the adoption of HPE Cybersecurity solutions across mid-to-large enterprise accounts. • Combining deep cybersecurity and networking technical acumen with strategic sales skills to identify, qualify, and close business opportunities. • Collaborating with HPE Networking account teams, solution architects, and partner ecosystems to position our Cybersecurity offerings effectively and deliver customer success. • Creating and managing a sales pipeline, identifying and developing leads resulting in New Logoes and account expansion. • Supporting strategic account development and solution positioning with cross-functional teams.

• Produce all required DOD compliance documentation for RMF, Audit Response and Remediation, Cyber Task Orders, Required Scorecards, Privacy documentation, and other compliance requirements as detailed in the DSCA CYBR Service Catalog. • Draft and coordinate cybersecurity-related documentation to meet required standards, controls, and metrics. • Support all steps of the RMF process (Steps 0-6) required to gain and maintain DOD Information Network (DODIN) and agency commercial network authority to operate. • Assist in categorization, control selection, implementation, and tailoring support, as well as support of assessments from the ISSO role. • Prepare and validate controls in eMASS packages for assessment and review. • Ensure that control requirements are well-defined and that necessary documentation and evidence are gathered for validation and assessment. • Work in the DOD GRC tool Enterprise Mission Assurance Support Service (eMASS) to support control validation. • Conduct continuous monitoring of information systems to detect vulnerabilities, threats, and security incidents. • Utilize security tools and technologies to perform regular scans, assessments, and analysis of system vulnerabilities. • Maintain and update continuous monitoring processes and procedures to ensure they are effective and aligned with organizational requirements. • Assist in the configuration and maintenance of security tools and technologies provided by the CSSP. • Assist in the detection, analysis, and response to cybersecurity incidents. • Participate in incident response activities, including triage, containment, eradication, and recovery. • Document and report on incident response activities, providing detailed analysis and recommendations for improvement. • Provide support to the Watch Officer in monitoring and managing cybersecurity events and incidents. • Maintain situational awareness of the organization's security posture and emerging threats. • Assist with the performance of daily and ad hoc/on-demand vulnerability scans, monthly audit scans, and monthly discovery scans. • Provide weekly vulnerability compliance reporting to ISSMs. • Review and adjust assets, subnets, credentials, and policies to properly manage C5ISR provided Assured Compliance Assessment Solution (ACAS) solutions. • Track and ensure configuration compliance of Enterprise Security Services (ESS) Suite with RMF, ATO, and Inspection requirements. • Assist with the maintenance of completed security waiver forms in coordination with EADSD and ISSM (PMO). • Work with TSD to implement effective scanning, COAMS System Registration, and Continuous Monitoring Scoring (CMRS) Tagging. • Maintain and update Ports, Protocols, and Services Management (PPSM) records, including emergency and exception requests. • Support the maintenance and accuracy of DoD Allow List entries. • Maintain accurate and up-to-date documentation of all RMF, IT, and FISCAM controls validation activities. • Prepare and submit regular reports on the status of security controls, RMF activities, and DevSecOps pipeline security. • Provide detailed documentation and evidence to support security assessments and audits. • Support the maintenance and configuration needed to maintain accurate ingestion of logs from all assets. • Provide summaries of events/incidents, including time of event/incident, anomalous activity identified, asset names and IPs, affected users, and POC for outreach/additional actions. • Complete Cybersecurity Incident Reporting Forms and assist with the detection and analysis of cybersecurity events and incidents. • Support accurate IR POC list, accurate hardware/software and IP inventory, and accurate summary of event/incident. • Document efforts involved in mitigating cybersecurity-related events/incidents that occur within the enterprise. • Support the generation of performance monitoring reports to monitor asset availability. • Support the generation of system health and security posture reports for system owners and ISSMs. • Support accurate hardware and software inventory, accurate ingestion of logs from all assets, and accurate system performance and security posture baselines. • Conduct specified areas of focus/detail for trend analysis. • Support migration information provided by affected system ISSM and report vulnerabilities to appropriate system ISSMs/POCs. • Assist with the reporting to outside agencies, including JFHQ, battle stations, external leadership, and other DOD Agencies. • Support the correlated agency-level POA&Ms with the coordination of POA&Ms from DSCA to outside entities. • Help complete the Cybersecurity Incident Reporting Form, including additional inputs such as personnel logs, system logs, event logs, and accurate software and hardware inventory list.

About Lumen Lumen connects the world. We are igniting business growth by connecting people, data and applications – quickly, securely, and effortlessly. Together, we are building a culture and company from the people up – committed to teamwork, trust and transparency. People power progress. We’re looking for top-tier talent and offer the flexibility you need to thrive and deliver lasting impact. Join us as we digitally connect the world and shape the future. The Role The Sr Engineer will lead and participate in multiple team environments and to provide independent efforts to all aspects of system integration including design, needs analysis, design review, testing, implementation, and validation. As a highly technical and hands-on position, the Sr Engineer will be responsible for systems in support of Lumen’s Government and commercial managed security services platforms addressing .gov and critical infrastructure protection missions. The Main Responsibilities - Recommends optimized solutions to support current and long-range planning and collaborates with project team leads in the selection, recommendation, and approvals of tools and technologies to improve efficiencies, reduce costs and increase customer satisfaction. - Create and maintain reports for patch compliance and system audit data. - Participate in ongoing operational projects. - Provide recommendations for system automation. - Troubleshoot hardware and software issues as they arise. Document issues and associated resolutions to problems. - Participate in OS patch management and coordination. - Develop and test Windows security patch packages. - Troubleshoot Windows OS and Microsoft application security patch installations. - Ongoing maintenance & administration of assigned systems. - Adherence to policies, processes, and procedures within your areas of responsibility. - Assistance with the execution of projects related to areas of responsibility. - Evaluate, build, integrate, test and prepare systems for operational use and patches for rapid remediation and deployment. What We Look For in a Candidate Basic Qualifications - Knowledge and experience should include computer network operations, network access and protection techniques and technologies, software coding, encryption, and cross-domain solutions - Knowledge and experience in system architecture and engineering disciplines. Specific technical knowledge of enterprise level networking and network security. - Available 24/7 for Network Outages and Maintenance window work. - Must be willing to work rotating, on-call, and or work after hours as needed. - Candidate must be a US Citizen with an active DoD TOP SECRET/SCI Level clearance Preferred Qualifications: - Bachelor’s degree and/or advanced degree in Electrical/Computer Engineering or Computer Science and experience, or a strong interest in, the cybersecurity field. - 5+ years of experience in Information Security, Information Assurance (IA), or Cyber Security programs. - 5+ years of experience with system security concepts, system security assessments, threat and vulnerability management, penetration testing, vulnerability assessments, vulnerability mitigation, and/or implementing and managing penetration testing tools. - 5+ years of experience in reporting status and recommendations for improvements to either federal government or commercial leadership. Develop and implement patch management methodologies using various automation toolsets - Demonstrated ability to work in a consultative manner with others, i.e. establish rapport, interview/fact-find, define requirements, present options/recommend solutions, follow-up, and customer focused behavior. - Proven ability to work in a dynamic team environment with changing requirements and competing priorities Compensation This information reflects the anticipated base salary range for this position based on current national data. Minimums and maximums may vary based on location. Individual pay is based on skills, experience and other relevant factors. Location Based Pay Ranges: $82,969 - $110,625 in these states: AL, AR, AZ, FL, GA, IA, ID, IN, KS, KY, LA, ME, MO, MS, MT, ND, NE, NM, OH, OK, PA, SC, SD, TN, UT, VT, WI, WV, and WY. $87,117 - $116,156 in these states: CO, HI, MI, MN, NC, NH, NV, OR, and RI. $91,266 - $121,688 in these states: AK, CA, CT, DC, DE, IL, MA, MD, NJ, NY, TX, VA, and WA. Lumen offers a comprehensive package featuring a broad range of Health, Life, Voluntary Lifestyle benefits and other perks that enhance your physical, mental, emotional and financial wellbeing. We're able to answer any additional questions you may have about our bonus structure (short-term incentives, long-term incentives and/or sales compensation) as you move through the selection process. Learn more about Lumen's: - Benefits - Bonus Structure #LI-Remote Requisition #: 341444 Background Screening If you are selected for a position, there will be a background screen, which may include checks for criminal records and/or motor vehicle reports and/or drug screening, depending on the position requirements. For more information on these checks, please refer to the Post Offer section of our FAQ page. Job-related concerns identified during the background screening may disqualify you from the new position or your current role. Background results will be evaluated on a case-by-case basis. Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records. Equal Employment Opportunities We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, gender expression, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training. Disclaimer The job responsibilities described above indicate the general nature and level of work performed by employees within this classification. It is not intended to include a comprehensive inventory of all duties and responsibilities for this job. Job duties and responsibilities are subject to change based on evolving business needs and conditions. In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information. Please be advised that Lumen does not require any form of payment from job applicants during the recruitment process. All legitimate job openings will be posted on our official website or communicated through official company email addresses. If you encounter any job offers that request payment in exchange for employment at Lumen, they are not for employment with us, but may relate to another company with a similar name.