דרושים ב-3m ב-United States, Austin

Job Description:

Intermediate SOC Analyst (L2)

Key Responsibilities:

• Monitor and analyze security alerts from SIEM, EDR, and other security platforms to identify potential threats.
• Perform in-depth investigation of suspicious activity, correlating data across multiple sources to determine scope and impact.
• Lead the resolution of low to moderately complex security incidents, including containment, eradication, and recovery actions.
• Escalate confirmed incidents to L3 analysts or incident response teams with detailed documentation and recommendations.
• Support containment and remediation efforts during active incidents.
• Conduct initial root cause analysis and contribute to post-incident reviews to identify gaps and improve future response efforts.

• Leverage threat intelligence, behavioral analytics, and contextual data to enhance detection, investigation, and resolution capabilities.
• Collaborate with detection engineering teams to develop, test, and tune detection rules and use cases.
• Perform basic malware analysis, log correlation, and network traffic inspection to support incident resolution.
• Maintain up-to-date knowledge of the threat landscape, including attacker tactics, techniques, and procedures (TTPs), and apply this knowledge to improve incident handling.

• Work closely with IT, OT, and business units to validate alerts, gather context, and coordinate incident resolution efforts.
• Document investigation steps, findings, and resolution actions in a clear, structured, and timely manner.
• Participate in SOC shift rotations to ensure 24/7 monitoring and rapid response to security events.
• Contribute to the continuous improvement of SOC processes, playbooks, and knowledge base, with a focus on enhancing incident resolution workflows

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires
(at a minimum) the following qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, or Computer Science (completed and verified prior to start)
• Two (2) years of experience in a SOC or cybersecurity operations role in a private, public, government or military environment

Additional qualifications that could help you succeed even further in this role include:

• Effective communicator with the ability to document investigations and collaborate with cross-functional teams
• Certifications such as CompTIA Security+, CySA+, or GCIH

• Proficiency in analyzing alerts from SIEM, EDR, and network monitoring tools
• Familiarity with threat intelligence, basic malware analysis, and log correlation techniques
• Understanding of common attack vectors, threat actor behaviors, and frameworks like MITRE ATT&CK
• Strong analytical and problem-solving skills with attention to detail
• Experienced in triaging and investigating security alerts across SIEM, EDR, and network platforms
• Skilled in correlating data from multiple sources to identify and escalate confirmed threats
• Proficient in supporting incident response efforts and conducting initial root cause analysis
• Strong understanding of threat intelligence and its application in operational workflows
• Effective communicator with the ability to document investigations clearly and collaborate across teams
• Committed to continuous learning and development in threat detection and response
• Analytical thinker with a proactive approach to identifying and mitigating risks
• Reliable team player in a 24/7 SOC environment, contributing to operational excellence

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Key Responsibilities:

• Lead end-to-end DFIR investigations for major incidents, coordinating across internal and external stakeholders. ​
• Own and refine investigation playbooks, escalation paths, and response workflows aligned with industry frameworks (NIST, SANS). ​
• Coach and mentor other investigations staff, driving technical skill development and case quality. ​
• Lead post-incident reviews and tabletop exercises to improve response maturity. ​
• Ensure all investigative activities comply with legal, regulatory, and internal policy requirements.​

• Conduct forensic acquisition and analysis across endpoints, servers, networks, and cloud (AWS, Azure, M365). ​
• Perform memory analysis, disk forensics, log correlation, and malware reverse engineering to support incident containment, eradication, and recovery. ​
• Reconstruct attack chains, identify root cause, and assess lateral movement by correlating SIEM, EDR/XDR, packet captures, and threat intelligence sources. ​
• Maintain chain-of-custody and evidentiary standards for legal and regulatory needs. ​
• Document investigations with clear timelines, evidence, and technical conclusions.​

• Act as the primary point of contact for high-severity investigations, providing timely updates to leadership. ​
• Work closely with Legal, HR, Compliance, and IT on internal and sensitive cases. ​
• Deliver investigation reports and briefings tailored to technical and executive audiences. ​
• Support audits, regulatory reviews, and law enforcement with evidence and documentation. ​
• Strengthen partnerships with MSSPs, threat intel vendors, and forensic service providers.

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree in Cybersecurity, Digital Forensics, Information Technology or Computer Science (completed and verified prior to start)
• Six (6) or more years of experience in cybersecurity investigations, digital forensics, or incident response in a private, public, government or military environment
• One or more certifications involving incident response, cyber security (GCIH, E CEH, E CIH), or network forensics (GIAC Network Forensic Analyst (GNFA), NICCS Certified Network Forensics Examiner (CNFE)

Additional qualifications that could help you succeed even further in this role include:

• Strong investigative mindset with experience leading complex cyber investigations​
• Proficient in digital forensics tools and techniques across Windows, Linux, and cloud environments​
• Familiar with legal and regulatory considerations related to evidence handling and privacy​
• Effective communicator with the ability to present findings to executive and legal audiences​
• Collaborative and discreet, with a high degree of integrity and professionalism​
• Strong analytical and critical thinking skills with attention to detail​
• Experience in manufacturing or industrial environments is a plus​
• Drives continuous process improvement​
• Demonstrates excellent analytical and problem-solving skills​
• Demonstrates and encourages innovative thinking, continuous learning and sharing of best practices
• Demonstrated knowledge of Incident Response and Investigative Methodology.​
• Prior experience serving as an expert witness in legal proceedings.
• Demonstrate advanced proficiency in utilizing common digital forensic artifacts and tools such as ELK, Axiom, Encase, FTK (Forensic Toolkit), Open-Source, or comparable industry-standard tools. ​
• Familiarity with compliance frameworks such as NIST, ISO 27001, and industry-specific regulations.​
• Highest level of integrity and management of confidential information.

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Job Description:

Operations Lead, Cyber Defense Data and Application Security

The Impact You Will Make in this Role

As the Operations & Reporting Lead in the Cyber Defense team at our global manufacturing company, you will oversee financial and operational reporting, data governance, budget planning, resource allocation, and the management of our application security testing program. You’ll partner closely with Finance, IT Security, Engineering, and Business Unit leaders to ensure data integrity, cost-effective operations, and robust security validation of critical applications.

Key Responsibilities:

• Develop, maintain, and distribute monthly/quarterly operational and financial dashboards to senior leadership
• Design ad-hoc reports and analyses to support business decision-making
• Ensure accuracy and timeliness of KPI tracking (production throughput, quality metrics, security testing outcomes)
• Align with 3M data standards, taxonomies, and data quality processes
• Develop a Cyber Defense data strategy to support management and operational decision making and reporting
• Manage Cyber Defense data quality, support corrective actions as necessary, and implement improvements
• Own the annual operating and capital budget for reporting, data management, and security testing activities
• Track actuals vs. budget; analyze variances and present recommendations for cost optimization
• Partner with Finance to forecast resource and tool investments for the coming fiscal year
• Plan headcount, contractors, and vendor engagements to meet operational and testing needs
• Conduct quarterly capacity reviews and adjust resourcing plans to align with project pipelines
• Mentor and develop a team of analysts, data stewards, and security-testing coordinators
• Evolve the current application security testing program
• Manage the pipeline of static, dynamic, and interactive application-security tests (SAST, DAST, IAST)
• Build and maintain relationships with third-party security testing vendors and ensure SLA adherence

Your Skills and Expertise
To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree in Business Administration, Information Systems, Finance , or Computer Science (completed and verified prior to start)
• Five (5) years of operations or project management experience in a manufacturing or highly regulated industry in a private, public, government or military environment

Additional qualifications that could help you succeed even further in this role include:

• Master’s degree (MBA or MS in Information Systems)
• Experience in global rollouts and cross-cultural team leadership
• Certifications: PMP, CISSP, CISA, CISM, or Security+
• Proven expertise in financial reporting, budget management, and data governance frameworks
• Understanding of application security testing methodologies and tools
• Proficiency with BI tools (e.g., Power BI, Tableau)
• Excellent leadership, communication, and stakeholder management skills

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Job Description:

Attack Surface Management Lead

The Impact You Will Make in this Role:

The Attack Surface Management (ASM) Lead will drive the identification, analysis, and reduction of the organization's digital and physical exposure across cloud, on-prem, OT, and third-party environments. This role will lead the enterprise-wide ASM strategy, combining external threat visibility with internal exposure reduction, and will oversee related functions such as vulnerability management, asset discovery, and exposure monitoring. ​

Key Responsibilities:

​

• Define and execute the enterprise Attack Surface Management strategy across cloud, on-premises, and external environments. ​

• Lead and mentor a cross-functional ASM team, including direct oversight of the Vulnerability Management (VM) and Threat Intel & Testing Manager

• Establish clear goals, success metrics, and maturity roadmaps for ASM including VM and Threat Intel & Testing functions. ​

• Collaborate with IT, cloud, OT, and third-party risk teams to align ASM initiatives with organizational risk priorities. ​

• Manage vendor relationships and toolsets supporting ASM, external scanning, and attack surface discovery platforms.​

• Lead efforts to map, monitor, and validate known and unknown assets, services, and digital exposures. ​

• Implement continuous discovery and monitoring of exposed assets and services, including shadow IT, abandoned infrastructure, expired domains, and misconfigured cloud resources. ​

• Develop and maintain asset classification and tagging strategies to support risk-based prioritization and contextual analysis. ​

• Correlate ASM findings with threat intelligence feeds and vulnerability data to identify high-risk exposures and inform remediation efforts. ​

• Define and implement processes for validation, triage, and escalation of ASM findings in coordination with vulnerability management and SOC teams. ​

• Oversee integration of ASM platforms with SIEM/SOAR solutions (e.g., Sentinel, Splunk, ServiceNow) to automate alerting, ticketing, and response workflows. ​

• Collaborate with security engineering and architecture teams to implement preventive controls, such as automated remediation, segmentation, or blocking of exposed services. ​

• Analyze trends and patterns in exposure data to identify systemic issues, control gaps, and architectural weaknesses.​

• Translate ASM insights into business risk terms and influence remediation priorities with stakeholders. ​

• Report attack surface trends, exposure metrics, and risk posture to senior leadership and governance forums. ​

• Collaborate with Security Architecture and GRC to integrate ASM outputs into risk registers and architectural reviews. ​

• Ensure ASM-related processes and reporting support regulatory, compliance, and audit requirements.

Your Skills and Expertise:

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor's degree in cybersecurity or computer science (completed and verified prior to start) from an accredited university.

• Seven (7) years of experience in cybersecurity, with at least 2 years focused on ASM, external threat management, or exposure reduction in a private, public, government or military environment ​

Additional qualifications that could help you succeed even further in this role include:

• Relevant certifications (e.g., CISSP, OSCP, GIAC, CRTO) preferred.​

• Proven leadership experience managing security functions and personnel, ideally including vulnerability management. ​

• Strong understanding of enterprise architectures, networking, cloud environments (Azure, AWS, GCP), and OT/IoT systems. ​

• Experience with ASM tools (e.g., Randori, Censys, Shodan, Palo Alto Xpanse) and vulnerability platforms (e.g., Wiz, Qualys, Microsoft Defender TVM). ​

• Familiarity with threat modeling frameworks, MITRE ATT&CK, and risk-based prioritization methodologies. ​

• Strong verbal and written communication skills, including experience presenting to executives and technical stakeholders. ​

• Strong leadership and people management skills with cross-functional influence. ​

• Deep understanding of ASM concepts, tools, and exposure management lifecycle. ​

• Experience managing or integrating vulnerability management functions. ​

• Expertise in asset discovery, external reconnaissance, and attack path mapping. ​

• Ability to translate technical risks into business impacts. ​

• Familiarity with hybrid infrastructure (cloud, on-prem, OT, third-party). ​

• Knowledge of security architecture principles and IT/OT convergence challenges. ​

• Skilled in vendor evaluation, tool selection, and capability building. ​

• Competence in data analysis and reporting using dashboards or BI tools. ​

• Excellent documentation and communication skills, with a focus on executive reporting and technical clarity.​

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

The Impact You’ll Make in this Role

As a Product Engineering Specialist, you will have the opportunity to tap into your curiosity and collaborate with some of the most innovative and diverse people around the world. Here, you will make an impact by:

• Supporting and contributing as a technical lead for products, processes, and sustaining activities with expertise in the area of Energy Markets (cable accessories for medium and high voltage applications).

• Exploration and sustaining of technologies, processes, and approaches supporting accelerated business growth, quality, and sustainability.

• Interfacing with cross-functional team members (marketing, manufacturing, supply chain, sales, technical service, quality, regulatory, etc.) to ensure successful program delivery.

• Leading technical interactions with cross-functional teams including corporate labs, division labs, manufacturing plants, and other groups to support technologies, processes, and materials focusing on Energy Markets.

• Travel occasionally to our manufacturing facilities to develop, validate process, improve product/process performance, and validate material specification.

• Contributing to change management as it relates to product/process changes driven by product modification, life cycle management, product/quality improvement, supply changes, regulatory requirements, and cost reduction.

• Collaborate with cross-functional teams to identify and solve complex problems and to apply/implement new or modified products/processes.

• Multitasking and prioritizing various projects, as needed.

• May review intellectual property positions at the business level, including proprietary advances, ROI's, patents, trade secrets.

• Role focused on Energy Markets with a requirement to become familiar with various portfolios in the division.

• Interfacing with suppliers and service providers on production and product changes

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree or higher in Engineering or Science discipline like Mechanical Engineering, Process Engineering, Chemical Engineering, Material Science, Electrical/Power Engineering and/or Physics (completed and verified prior to start)

• Three (3) years of experience with manufacturing technologies like extrusion and molding in a private, public, government or military environment

Additional qualifications that could help you succeed even further in this role include:

• Master’s degree or higher in an engineering discipline or a physical science. Experience with adhesives and tape backings. This includes knowledge and experience in the following: performance, testing, manufacturing processes, and performance simulation tools.
• Experience in developing and testing medium voltage cable accessories
• Experience with electrical and mechanical testing of medium voltage components and materials
• Experience with EPDM and silicone formulation and processing technologies
• Experience with 3M manufacturing operations. Experience with developing material standards and specifications – membership or activity with standards-setting organizations like ASTM and Underwriters Laboratory.
• Familiar with PLM system for: RM substitutions (and the 3M change management process), NPI process, SKU creation, BOM creation, PFMEA, DFMEA, HOQ, test method development.
• Knowledge of statistics and experience with: MSAs, capability studies, data analysis (e.g., in Minitab or Excel), root cause analysis, Six Sigma.
• Ability to work with minimal supervision (self-motivated) and in teams.
• Ability to conform to shifting demands, timelines, and priorities.
• Willingness to travel (within the US mainly).
• Protect 3M Intellectual Property through the understanding and appropriate use of competitive technology awareness, government regulation awareness, supplier/consultant agreements, records of invention, patents, technical notebooks, and technical reports.

Hybrid 4 days per week local

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.

Software/Firmware Developer

The Impact You’ll Make in this Role

As a
Software/Firmware Developer, you will have the opportunity to tap into your curiosity and collaborate with some of the most innovative and diverse people around the world. Here, you will make an impact by:

• Architecting, specifying, designing and developing embedded software for innovative sensing and analytics systems
• Testing and debugging embedded software and accompany transfer to device manufacturing including e.g. factory acceptance testing and protocols
• Supporting data analytics in close collaboration with expert team members
• Communicating technical progress, timelines and project risks to stakeholders
• Collaborating effectively with the global Business, R&D and Utility Key Account leader(s) and as part of a multi-disciplinary, international team to develop the firmware and technical solutions as part of the overall smart grid strategy

Your Skills and Expertise

To set you up for success in this role from day one, 3M requires (at a minimum) the following qualifications:

• Bachelor’s degree in electrical/electronic engineering, software engineering, computer sciences (completed and verified prior to start) from an accredited institution
• Three (3) years of software development experience involving languages like C, C++, Python, Perl

Additional qualifications that could help you succeed even further in this role include:

• Master’s degree (completed and verified prior to start) from an accredited institution
• Industry experience with power utility systems, system integration and applicable standards
• Experience as a firmware architect or in a similar technical leadership role
• Experience with working on software projects involving real-time operating systems such as FreeRTOS, ThreadX running on ARM based microcontrollers such as ST Micro, Renesas utilizing a broad range of peripherals
• Experience with embedded protocols and system architecture
• Experience working with AWS or MS Azure cloud platforms
• Experience with implementation of protocols such as DNP3, IEC 61850, TLS layer, cyber cryptography, and encryption algorithms
• Experience with agile project management methods and collaboration with external service providers
• Understanding of power utility industry best practices

Work location:

• Hybrid Eligible (Job Duties allow for some remote work but require travel to 3M Austin, TX at least 3 days per week)
• Austin, TX

Please note: your application may not be considered if you do not provide your education and work history, either by: 1) uploading a resume, or 2) entering the information into the application fields directly.

Please access the linked document by clicking select the country where you are applying for employment, and review. Before submitting your application, you will be asked to confirm your agreement with the terms.