Senior Cloud Security Engineer

The group you’ll be a part of

The Cyber Security Engineer will support the Information Security team in safeguarding Lam’s information system infrastructure and associated business systems, Operational Technology (OT) environments, and engineering/manufacturing environments.

The impact you’ll make

Lam Research is looking for a Security Engineer to join our team. The Cloud Security Engineer is responsible for the engineering, operationalization, and continuous improvement of Microsoft Defender for Endpoint (MDE) and Microsoft Defender for Identity (MDI) capabilities across the enterprise. This role will take ownership of existing MDI/MDE capabilities, driving security posture improvement, platform governance, and cross-functional alignment with SOC, GIS, and infrastructure teams.

What you’ll do

• Own end-to-end engineering and lifecycle management for:
  • Microsoft Defender for Endpoint (MDE)Microsoft Defender for Identity (MDI).
  • Maintain and enhance platform configurations aligned with Microsoft best practices and Lam security standards.
• Drive continuous improvement of detection, prevention, and response capabilities.
• Perform security reviews and architecture assessments of cloud solutions to identify gaps and recommend mitigation strategies.
• Develop KPIs and executive reporting metrics to measure cloud security program effectiveness and communicate outcomes to leadership.
• Lead roadmap.
• Develop and execute remediation plans for misconfigurations, coverage gaps, and security findings.
• Partner with internal and external stakeholders.

Who we’re looking for

• Solid foundation in Information Security Engineering with deep hands-on experience in Azure security.
  
• Experience in one or more of the following tools: Defender for Endpoint, Defender for Identity.
• Bachelor’s degree or Advanced Degree in Computer Science, Information Technology, Cybersecurity, or related discipline.
• 7+ years of experience in an Information Security role.
• Strong understanding of Active Directory/identity security, Endpoint security, RBAC and access governance.
• Experience integrating with Microsoft Intune and SIEM/SOAR.
• Strong vulnerability management fundamentals.
• At least one of the following processional certifications required: Security+, CISSP, CISA, CISM, CEH, OSCP, GMON.
• Ability to communicate effectively, both verbal and written to a variety of audiences (immediate team, management, other business units) to provide guidance and direction when resolving technical challenges.

Preferred qualifications

• Experience within a global semiconductor company or equivalent industry experience preferred.
• Ability to break down and understand complex problems and develop innovative ways to address them.
• Strong people and team/relationship building skills, work with cross functional global teams.

Our commitment

We believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results.

Lam Research ("Lam" or the "Company") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company's intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees.

Lam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories – On-site Flex and Virtual Flex. ‘On-site Flex’ you’ll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. ‘Virtual Flex’ you’ll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time.

#LI-BW2