30+ days ago - req17749
IT Security Specialist
Other job categories
In a nutshell
Other job categories
The Security Specialist supports China Security Officer to enable business while protect ASML’s intellectual property (IP), and confidential information customers and suppliers entrusted to ASML, by managing security risks associated with systems, networks, procedures and practices.
This role will maintain and manage key regional security objectives, projects and operations to make sure ASML global security strategy and roadmap are implemented consistently in China.
The position will help ASML to comply with specific security requirements from government regulators and customers as well.
Support and drive global and local security initiatives throughout project lifecycle.
Review system/application/procedure change request from security perspective, and manage documentation.
Work with related teams to coordinate response to security incidents in the region.
Develop training or awareness materials, and deliver training sessions to employees.
Track security related news, analyze potential impact on ASML, and have stakeholders updated in time.
Analyze new/existing laws, regulations, and standards, etc. around China Cyber Security Law and MLPS,identify applicable articles, and propose response plans.
Examine security data, discover trends & incident root causes, and deliver reports.
Technical/IT/informatics background bachelor degree.
Knowledge of project management
Knowledge of cloud computing (Azure, AWS, etc.)
Knowledge of prevalent risk assessment frameworks and methodologies, e.g.
Standard of Good Practice developed by Information Security Forum (ISF)
NIST SP 800 30 framework
CISSP/CISM or comparable certification desired – CISATo be completed
More than 4 years’ experience as an Information Security professional in two or more of following areas:
IT and Security project execution
Security risk assessment
Translating the output of the assessment into security baseline/plan/action
Communication with internal and external stakeholders
Security awareness training for executive and employees
Good English communication, writing and reading skills
Be passionate about security and protecting intellectual property, and have interest in cybersecurity regulatory rules, requirements and enhancement
Behave Ethically: Understand ethical behavior and business practices, and ensure that own behavior and the behavior of others is consistent with these standards and aligns with the values of the organization.
Foster Teamwork: Work cooperatively and effectively with others to set goals, resolve problem, and make decisions that enhance organizational effectiveness.
Lead: Positively influence others to achieve results that are in the best interest of the organization