30+ days ago - req33455

Intake Analyst GRC


Other job categories

In a nutshell


Veldhoven, Netherlands




3-7 years



Job Category

Other job categories



Introduction to the job

To perform the GRC Intake assessment (also referred to as BIA, Business Impact Assessment, in other companies). This function is at the helm of the assessment of all ASML change initiatives, projects, programs from a Governance, Risk and Compliance perspective.

Role and responsibilities

The process involves the administration of the completed GRC Intake form, the engagement of the correct stakeholders to perform validations and the management of the GRC Intake Database & Repository tool:
-Use the GRC Intake tool, database and repository. In future Service Now (SNOW)
-Ensure the correct performance and conclusion of GRC Intake assessments
-Ensure GRC Intake forms are completed and in clean order
-Liaise with Customer (Project/Change Lead) and assist them in determining the correct compliance domains that are impacted by their initiative
-Process GRC Intake forms in the GRC database and ensure the correct stakeholders are selected to perform their scope validations i.e. Sector Security Managers, Corporate Compliance, specific Compliance domains etc. in a timely manner
-Ensure that all Customers submit their initiatives to the Privacy Office in order that proper registration, quick scan, MPIA, DPIA as applicable are performed the outcome of which must be sent back to the GRC Intake
-Schedule and facilitate any assessment meetings to ensure alignment amongst stakeholders and documentation of agreement points
-Process the conclusion of the GRC Intake back to Customer with all associated documentation.

Education and experience

- Bachelor’s degree level education
- 3 - 6 years minimum experience in Legal, Information Security, Compliance, Governance or Risk Management
- Awareness of industry related standards e.g. ISO 27000, ISO 31000 etc.
- Awareness of industry related laws and regulations with experience of impact and applicability
- With limited experience of the initiative, ability to discern security, legal & compliance impact from information provided by customer
- 2 years’ experience in an IT Service/Security environment


Working at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems.
To thrive in this job, you’ll need the following skills:

- Important personal competencies for this job are:
- good social and effective communication skills; persuasiveness and ability to influence;
- overcoming barriers for change and engages others to take action;
- making complex topics simple and transparent;
- combining clear, critical thinking with decisiveness;
- proactive / hands-on attitude;
- ensuring accountability by holding self and other accountable to meet deadlines.
- Able to work independently and as part of a team
- Able to develop connections and build stakeholder relationships

Diversity & Inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Other information

The key deliverable or product of the GRC Intake process is the GRC Intake database and repository that comprise the system of truth or record for all related documentation including the GRC Intake form. This consists of the validated Confidentiality, Integrity & Availability rating of the initiative, the validated Compliance Domain impact, the validated Internal Controls involvement and the next steps to ensure that the internal customer incorporates requirements in their project.
Position in the value chain: We do operate with internal customers as we provide a service to ASML projects. Stakeholders (different compliance teams and sectors) are a wide community so part of the challenge of this team is to build trust and relationship cross functions/sectors

Are you interested in this position? Please apply with your CV and cover letter.
Need to know more about applying for a job at ASML? Read our frequently asked questions.

Need to know more about applying for a job at ASML? Read our frequently asked questions.