30+ days ago - req17749

IT Security Specialist


Other job categories

In a nutshell


Shenzhen, China




3-7 years



Job Category

Other job categories

Job Mission

The Security Specialist supports China Security Officer to enable business while protect ASML’s intellectual property (IP), and confidential information customers and suppliers entrusted to ASML, by managing security risks associated with systems, networks, procedures and practices.
This role will maintain and manage key regional security objectives, projects and operations to make sure ASML global security strategy and roadmap are implemented consistently in China.
The position will help ASML to comply with specific security requirements from government regulators and customers as well.

Job Description

Support and drive global and local security initiatives throughout project lifecycle.
Review system/application/procedure change request from security perspective, and manage documentation.
Work with related teams to coordinate response to security incidents in the region.
Develop training or awareness materials, and deliver training sessions to employees.
Track security related news, analyze potential impact on ASML, and have stakeholders updated in time.
Analyze new/existing laws, regulations, and standards, etc. around China Cyber Security Law and MLPS,identify applicable articles, and propose response plans.
Examine security data, discover trends & incident root causes, and deliver reports.


Technical/IT/informatics background bachelor degree.
Knowledge of project management
Knowledge of cloud computing (Azure, AWS, etc.)
Knowledge of prevalent risk assessment frameworks and methodologies, e.g.
Standard of Good Practice developed by Information Security Forum (ISF)
NIST SP 800 30 framework
ISO 27001
CISSP/CISM or comparable certification desired – CISATo be completed


More than 4 years’ experience as an Information Security professional in two or more of following areas:
IT and Security project execution
Security risk assessment
Translating the output of the assessment into security baseline/plan/action
Communication with internal and external stakeholders
Security awareness training for executive and employees

Personal skills

Good English communication, writing and reading skills
Be passionate about security and protecting intellectual property, and have interest in cybersecurity regulatory rules, requirements and enhancement
Behave Ethically: Understand ethical behavior and business practices, and ensure that own behavior and the behavior of others is consistent with these standards and aligns with the values of the organization.
Foster Teamwork: Work cooperatively and effectively with others to set goals, resolve problem, and make decisions that enhance organizational effectiveness.
Lead: Positively influence others to achieve results that are in the best interest of the organization