30+ days ago - req32983

RBA - Factory/ICS Security Manager - Tainan

Other corporate functions

Computer science & software engineering

In a nutshell

Location

Tainan, Taiwan

Team

Other corporate functions

Experience

3-7 years

Degree

Bachelor

Job Category

Computer science & software engineering

Travel

20%

Introduction to the job

In Asia Region Security team we are looking for a Factory/ICS Security Manager as its title, to further strengthen our ability to protect the Intellectual Property of ASML, focusing on execution of factory security and ICS security related roadmap. Of course to prevent any business disruption in our factories environment.

Within ASML generic security capabilities are organized centrally via competences. So this position will also work closely with Security risk management at Operation Sector and the Security Risk Managers while more with local factory operation teams. The factory security officer has a specific role to:
•improve, monitor and advise on security within the factories.
•operationally responsible for all activities executed in the factory related to security.
•manages the performance of security in the factories.

Finally this functional manager role (based in Taiwan Tainan) will be also treated as an extension of this regional team currently based in north Taiwan and ensure any potential urgent supports needed in south. Of course also a support resources in south Taiwan for any general security campaigns or activities’ executions.

Role and responsibilities

This Security Manager will work closely with Factory VPs and all levels with focuses on Factory/ICS Security roadmap initialized/defined by Operations Security Risk Management team. To reduce the risk of loss of production continuity and a longer term view to improve the overall security maturity at factories to enable business while protect ASML’s intellectual property (IP), and confidential information of customers and suppliers. This role will manage or support key regional security objectives, projects and operations to make sure ASML global security strategy and roadmap are implemented consistently in local country where factories are focused.

•Drive and execute implementation of Factory and ICS security roadmap in Linkou and Tainan factories
•Lead by example in implementing security governance, processes and security services
•Responsible to manage implementation of security policies and processes and requirements collection; including security intake and requirements definition in projects and changes in the factory
•Operationally responsible for all activities executed in the factory related to security.
•Responsible to provide advice and support to other stakeholders on all aspects of cyber security
•Support local security incident response activities
•Educate and train the factory and ICS organization so security becomes embedded in day-day activities
•Setup metrics to monitor security performance and report to factory/CRE management and Operations SRM (Security Risk Management)
•Over time stepping back into 2nd LoD role, with the factory and CRE organization taking over 1st LoD

Education and experience

•Technical/IT/informatics background bachelor degree.
•CISSP/CISM or comparable certifications desired.
•Knowledge of project management (Prince-2 / PMBOK/APMP) as plus.
•Familiar with any IT/Security/Risk assessment frameworks as plus. e.g.
oCSC Top 20 Controls
oNIST Cybersecurity Framework, NIST 800-30
oISO27001, ISO27005

•Worked for a global organization sized similar to ASML with the proven ability to navigate complex, international work environments being sensitive to cultural differences
•Fluent in English (written and verbal)
•Pro: Experience in manufacturing / production environment
•Pro: Experience in OT/ICS programs and environments
•(At least) More than 4 years’ experience as an Information Security professional in two or more areas:
oConducting Information Security Gap Assessments or other security assessments
oTranslating the output of security assessment into security baseline/plan for the IT service
oCommunicating with stakeholders and business users
oSecurity Awareness training for executives and employees
oProject Management related to IT/Security services

Skills

Working at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems.
To thrive in this job, you’ll need the following skills:

•Solid job experience in dedicated security roles. CISSP/CISM or comparable ones as plus.
•Proven working experience in project management
•Knowledge of IT/Security/Risk assessment frameworks as plus. e.g.
oISO security related frameworks. E.g. ISO27001
oNIST frameworks related to security. Or any equivalent/well known industrial ones.
•Ability to identify issues and control weakness, translate complex process, application and IT/Information security technical controls into risk
Additionally,
•Good technical knowledge of IT/Information Security
•Good communication, time management & multi-tasking skills
•Ability to understand broader business issues
•Ability to communicate with, convince and inspire senior management
•Pragmatic, pro-active, hands-on mentality, motivated by realizing goals rather than personal acknowledgement and a proven ability to drive results

Diversity & Inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Other information

The position is based out of the Asia Region Security team to the Regional Security Officer Asia which is reporting hierarchically and functionally to the CISO of ASML. This role also works closely with Local Factory VPs and their factory operation teams and also Operation SRM team closely.

•Passion: Be passionate about Security and protecting Intellectual Property. Also on learning new techniques and skills.
•Diplomacy: Through diplomacy and team building handle Security issues in cooperative manner during mergers and acquisitions.
•Behave Ethically: Understand ethical behavior and business practices, and ensure that own behavior and the behavior of others is consistent with these standards and aligns with the values of the organization.
•Lead: Positively influence others to achieve results that are in the best interest of ASML.
•Make Decisions: Assess situations to determine the importance, urgency and risks, and make clear decisions which are timely and in the best interests of the organization
•Relationship builder; able to create and maintain a trusted network
•Able to influence / lead without mandate
•Analytical, precise, tenacious, autonomous

-20-25 % but mostly about domestic trips in Taiwan(particularly between Linkou and Tainan factories)

Need to know more about applying for a job at ASML? Read our frequently asked questions.


Learn more about this job