30+ days ago - J-00231068-283

Information Security Risk Manager

Sales & marketing

Other job categories

In a nutshell

Location

Veldhoven, Netherlands

Team

Sales & marketing

Experience

3-7 years

Degree

Master

Job Category

Other job categories

Travel

No

Introduction to the job

ASML is the largest supplier in the world of photolithography systems for the semiconductor industry and manufactures machines for the production of integrated circuits. It heavily relies on information to do so, and as such, protecting confidential information is of great importance and requires continuous improvement.

Within ASML security capabilities are organized centrally and security risk management is embedded within each of the sectors. For the sector Sales and Customer Management we are looking for an Information Security Risk Manager to further strengthen our ability to protect the confidential information of both ASML and our customers. An unique opportunity to focus on information security while experiencing ASMLs success and way of working.

The Security Risk Manager role is threefold:

(1) Execute and participate in (information security) projects for the sector Sales & Customer Management and to mature information security capability company-wide

(2) identify and assesses potential information security risks, recommends mitigations and helps the risk owners drive the implementation of mitigations to reduce the risk to an acceptable level

(3) creating awareness and educating all sectors on how to handle customer confidential information is a key responsibility for each member of the team.

Role and responsibilities

Ensure security risks do not exceed the organization risk appetite by timely identifying risks and maintaining the security risk register, assessing risks and drive risk mitigation (projects) and monitor and report on progress. Collaboration with stakeholders and peers in the ASML security community will be critical for success in this role.

Job Description

  • Execution of and participation in various Information Security Projects;
  • Liaise and collaborate cross-sector to ensure the protection of Customer Confidential Information;
  • Identify risks and perform/facilitate risk assessments (e.g. new projects / applications);
  • Propagate decisions and risks controls in the sector and get commitment on risk mitigation;
  • Provide advice and guidance to the business on information security questions;
  • Drive compliance to security policies and standards and ensure insight in compliance status;
  • Set-up and execute information security awareness initiatives;
  • Align with other sectors and security departments about specific security and customer demands;
  • Investigate and report upon Information Security Incidents.

Education and experience

Education

  • Master degree or equivalent combination of education and experience.
  • Information security risk management qualifications like CISSP, CISA, CRISC or CISM

Experience

  • Minimum of 5 years of relevant experience in information security risk management;
  • Proven experience with the ISO27001/2 risk management framework/control;
  • Good understanding of IT, security technologies and best practices;
  • Experience with coordinating information security projects in cooperation with the business;
  • Experience with security assessments and assessing security implications;
  • Experience with creating (security) awareness and initiatives;
  • Experience in the semiconductor industry is a plus.

Skills

Working at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems.

To thrive in this job, you’ll need the following skills:

  • Experience in stakeholder management & communicating with senior management
  • Excellent English communication and presentation skills.
  • Ability to translate threat, vulnerabilities and risks to stakeholder level and to drive risk mitigation.
  • Pro-active and self-motivated with the proven ability to drive results.
  • Creative when handling problems independently, commitment and flexibility.
  • Team player with strong analytical skills.

Diversity & Inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Other information

As Information Security Risk Manager you are part of the Sales Operations department within the sector Sales & Customer Management and will report to the Sector Information Security Risk Manager.

You will be based in Veldhoven, the Netherlands. You will be a member of the ASML Security community; working closely together with the security risk management teams in other sectors and the central security competence teams.

Need to know more about applying for a job at ASML? Read our frequently asked questions.


Learn more about this job