Information Security VM Analyst

As a Vulnerability Management Analyst at Lam Research, you will play an important role in supporting and executing our vulnerability management program. This position is well-suited for someone with a strong foundation in the vulnerability management lifecycle and reporting, who is motivated to contribute to and continuously enhance our overall security posture.

You will work across on-premises, application, and cloud environments, helping identify, assess, and manage vulnerabilities while collaborating with teams to drive effective remediation. A successful candidate will be comfortable working independently while also partnering closely with cross-functional teams.

This role benefits from a solid understanding of modern threat landscapes, including common attacker techniques and frameworks such as OWASP Top 10, SANS Top 25, and MITRE ATT&CK. You will apply this knowledge to help prioritize risks, support mitigation efforts, and strengthen the overall program.

As part of a globally distributed organization, you will collaborate with teams across regions, including India, Japan, and the United States, contributing to a cohesive and consistent approach to vulnerability management.

More broadly, this role also contributes to risk management and compliance efforts, helping ensure security standards are met while supporting ongoing improvements to the organization's overall security capabilities.

In this role, you will lead and support the delivery of our internal cybersecurity vulnerability management program. You will help guide the overall strategy while ensuring effective execution of vulnerability assessment and remediation efforts across the organization.

You will work closely with cross-functional teams to identify, assess, and prioritize vulnerabilities, helping to reduce risk in a way that aligns with the organization's environment and business needs. This includes evaluating new vulnerabilities, understanding their potential impact, and recommending practical mitigation approaches.

You will contribute to impact assessments and help ensure appropriate monitoring and coverage, while providing technical insights and recommendations to strengthen the program. The role also involves reviewing scan results, researching remediation options, and validating outcomes, with a focus on both infrastructure and cloud environments.

As part of continuous improvement, you will help develop and implement automation and workflow enhancements to reduce manual effort and increase efficiency. You will also bring a solid foundation in vulnerability management practices, including triage, prioritization, remediation, and threat modeling.

Strong collaboration will be key, as you will partner with IT and engineering teams to address aging vulnerabilities and drive timely remediation. You will also help establish regular communication and stakeholder engagement to maintain focus and accountability.

In addition, you will support the development of program metrics and reporting, helping translate technical findings into clear, business-relevant insights. Communicating risks and opportunities for improvement in a meaningful and actionable way will be an important part of the role.