23 days ago - req26132

Regional Security Officer Korea

IT

Computer science & software engineering

In a nutshell

Location

Hwasung-Si, Korea

Team

IT

Experience

8+ years

Degree

Bachelor

Job Category

Computer science & software engineering

Job Mission

  • This Security Manager will be responsible for protecting computer and data asset in Korea by aligning the ASML Information Security strategy and policies, directing system and application security controls, policies and procedures, and monitoring and evaluating systems and applications in relation to local and international customer IT Security requirements. Also, continuously assess and report on security, operational, process, and physical threats to ASML Korea IT, networks, ASML and Customer IP.

Job Description

  • Be the IT/Information Security single contact and representative in ASML Korea for any Information security/security related topics or issues.
  • Assessing and mitigating risks associated to the ASML Korea network, systems and processes to provide a safe and secure environment.
  • Cooperate with IT/Customer Support sectors in understanding security requirements from customers in Korea and obtaining mutually agreed solutions.
  • Implement and educate ASML Korea IT/Users on Information Security policies and standards.
  • Raise management and employee Security awareness level of knowledge and foster an attitudinal change in Security knowledge, process, and requirements.
  • Support ASML Cyber Defense Organization (CDO) activities in Korea offices and ensure 7/24/365 response on any major Information security incidents/crises for Asia in Korea.
  • To build excellent working relationships with ASML people and partners championing security risk management in Korea.
  • Advise on security improvements and additional controls by co-working with Information Security Asia and also NL IT/Information Security.
  • Interface with HMI Korea.

Education

  • Technical/IT/informatics background bachelor degree.

Experience

12+ years experience with more than 5 years’ dedicated experience as an Information Security professional in ;

  • Conducting Security Gap Assessments
  • Translating the output of security assessment into security baseline/plan for the IT service
  • Communicating with Stake holders and Senior management
  • Security Awareness training for executive and employees

Knowledge :

  • CISSP/CISM or comparable certification
  • Knowledge of project management (Prince-2 / PMBOK/APMP)
  • IT Risk assessment frameworks e.g.
    - Standard of Good Practice developed by Information Security Forum (ISF)
    - CSC Top 20 Controls
    - NIST SP 800 30 framework
    - ISO 27005 framework

Personal skills

  • Passion: Be passionate about Security and protecting Intellectual Property
  • Diplomacy: Through diplomacy and team building handle Security issues in cooperative manner during mergers and acquisitions.
  • Behave Ethically: Understand ethical behavior and business practices, and ensure that own behavior and the behavior of others is consistent with these standards and aligns with the values of the organization.
  • Lead: Positively influence others to achieve results that are in the best interest of the organization
  • Make Decisions: Assess situations to determine the importance, urgency and risks, and make clear decisions which are timely and in the best interests of the organization
  • Fluent in English communication.
  • Analytical, precise, tenacious, autonomous
  • Deep technical knowledge of IT/Information Security
  • Good communication/organization skills