28 days ago - req23412

Information Security Assessor

Other corporate functions

Other job categories

In a nutshell


Veldhoven, Netherlands


Other corporate functions


8+ years



Job Category

Other job categories




This role will be responsible for strengthening ASML information security capabilities, specifically in the area of Software as a Service (SaaS) applications. In addition, this role will also perform assessments to ensure security of the SaaS applications are aligned with industry good practices and compliant with the ASML policies and standards.

Job Mission

Ensure the use of SaaS applications stay within ASML risk appetite by performing information security risk and compliance assessments and advise risk mitigating controls.

Job Description

  • Perform security risk and compliance assessments on the SaaS applications and propose risk mitigating controls
  • Provide reasonable level of assurance of the SaaS applications security and compliancy for the ASML business functions
  • Maintain and continuously improve the SaaS security risk and compliance assessment methodology
  • Align the SaaS security risk and compliance assessment outcomes with other relevant security measures within the context of ASML policies and standards


Bachelor or Master degree or equivalent combination of education and experience.


  • Minimum 4 years professional experience focusing on information security, risk management and compliance
  • Experience in security and compliance assessment of SaaS applications
  • Experience in ISO27001/ISO31000 risk management framework
  • Experience in AICPA Trust Services Criteria, i.e. SOC reports
  • Knowledgeable or willing to learn about the CSA Cloud Control Matrix
  • Information security risk management qualifications like CRISC, CISSP, CISA or CISM, is a plus

Personal skills

  • Analytical and precise
  • Fluent in both written and spoken English
  • Good communication and organization skills
  • Strong stakeholder management skills and capable of doing so at various organizational levels
  • Pro-active and highly-motivated to drive results
  • Team player, accompanied by good leadership traits

Context of the position

The position is based out of the Veldhoven location and working in the Information Security Competence Center within the CISO of ASML.

Other information

This position requires access to U.S. controlled technology, as defined in the United States Export Administration Regulations. Qualified candidates must be legally authorized to access such U.S. controlled technology prior to beginning work.

ASML does not accept unsolicited resumes from any agencies that have not signed a mutual service agreement. All unsolicited resumes will be considered ASML’s property, and ASML will not be obligated to pay a referral fee. This includes resumes submitted directly to hiring managers without contacting the Resource Center Department.

ASML is GDPR compliant, therefore we cannot process applications sent outside of our recruitment system.

If you are interested in this vacancy please apply.