6 days ago - req17974

Database/Storage Security Specialist

Other corporate functions

Other job categories

In a nutshell

Location

Veldhoven, Netherlands

Team

Other corporate functions

Experience

3-7 years

Degree

Bachelor

Job Category

Other job categories

Travel

No

Job Mission

Do you have a passion for databases and storage security? Do you wish to have an impact on how we conduct security assessments? “Then we would like to talk to you!”As specialist in databases and storage security you will be part of the IT Application Security team in and work together with about 20 of your colleagues in Technology Security. You will be responsible for conducting detailed security assessments on applications, with strong emphasize on database and storage services, assist and advice projects on security related questions and help drive the security improvements for ASML. You will be interacting with stakeholders on different levels in in IT, but also within ASML sectors.

Job Description

-Undertaking of database and storage vulnerability assessments
-Performing detailed security assessments on applications, databases and storage services
-Assessing IT security exception requests on validity and provide advice to the team lead application security and business stakeholder for acceptance or rejection including advice on additional security controls
-Ensuring the audit ability of databases and storage
-Conducting, on a regular basis, security reviews of new and existing systems
-Reviewing and monitoring security designs
-Monitoring of existing security controls in the database and storage domain
-Develop and maintain policies, standards and procedures to provide governance for database and storage security
-Providing secure baselines
-Utilizing in-depth knowledge of database and storage security to create implementation plans, ensuring successful completion of those plans in a timeline manner that maintains current, recommended levels of protection
-Owning and promoting the security strategy for protecting databases and storage and integrating it with the wider security strategy
-Researching latest best practices, make recommendations and assist in implementation of security measures for Oracle, MySQL and SQL Server databases and the associated applications to ensure the highest level of security available
-Being sufficiently proficient with Database Security, features and utilities (Database Vault, Directory Services, Audit Vault, Database firewall, Advanced security option, Oracle Identity and access Management, SQL Server Configuration Manager, etc.), combining the knowledge of these tools with technology roadmaps and implementation plans to move ASML into a sustainable maturity model for database security

Candidates will need to have DBA experience in an Oracle Enterprise environment (Oracle, SQL Server and/or MySQL) and ideally experience of risk assessment, security architecture and data sanitization techniques and tools. Also desired are skills in scripting languages (Perl, bash, ruby, python), safe backup and recovery technologies, data replication techniques, SQL, PL/SQL, and UNIX shell scripting and good OS administration skills (ideally Linux & MS SQL). Experience with and knowledge of NetApp SolidFire and NetApp EF-Series storage systems. Experience with and knowledge of the NFS, CIFS and SMB protocols.

Education

Academic qualifications are an advantage, but not a substitute for professional experience.
-CISSP/CISM/ CISA or equivalent is a plus
-CCSP or equivalent is a plus
-Security/Technical/IT/informatics background bachelor’s degree (or equivalent experience)
-Deep Knowledge of current security technologies and governance processes
-IT audit experience is a plus
-Risk management experience is a plus
-In-depth working knowledge of IT Risk / security frameworks and best practices, e.g.: o NIST Cyber Security Framework o ISF Standard of Good Practice for Information Security o NIST SP 800 30 framework o ISO 27001/2 framework

Experience

-Min 6+ years of professional experience with at least 4+ years of relevant experience with a focus on databases, storage security, risk and compliance.
-Experience in executing Threat and Vulnerability analysis (TVA) or IT Security risk assessments
-Experience with a wide range of SAP applications is a plus (no authorization management)
-Experience with Cloud security and 3rd party management
-Experience in collecting information through research and interviews
-Good working knowledge of Office suite applications like Excel and SharePoint

Personal skills

-Excellent English communication and presentation skills. Command of the Dutch language is a plus
-Able to operate independently/with minimal supervision, self-starter
-Ability to interact with all levels including users, engineers, executives and senior managers
-Analytical, precise, tenacious, autonomous
-Knowledge of IT-security, Information Security and Architecture methodology
-Ability to overcome organizational resistance
-Excellent organizational skills and the ability to prioritize multiple tasks and assignments
-Able to digest large amounts of new information quickly
-Able to grasp the deep technical characteristics of new environments quickly
-Able to draft clear and concise visualizations of complex processes and environments
-Able to stand your ground in a flexible / changing environment

Other information

ASML creates the conditions that enable you to realize your full potential. We provide state-of-theart facilities, opportunities to develop your talents, international career opportunities, a stimulating and inspiring environment, and most of all, the dedication of a company that recognizes and rewards extraordinary performance.