We use cookies for a variety of purposes, such as website functionality and helping target our marketing activities. Some functional cookies are required in order to visit this website.
You can withdraw your consent at any time on our cookie consent page.
Configure your cookie settings and confirm to save your settings. You can withdraw or change your consent at any time on our cookie consent page.In a nutshell
Location
Veldhoven, Netherlands
Team
Sales & marketing
Experience
3-7 years
Degree
Master
Job Category
Other job categories
Travel
No
Introduction to the job
ASML is the largest supplier in the world of photolithography systems for the semiconductor industry and manufactures machines for the production of integrated circuits. It heavily relies on information to do so, and as such, protecting confidential information is of great importance and requires continuous improvement.
Within ASML security capabilities are organized centrally and security risk management is embedded within each of the sectors. For the sector Sales and Customer Management we are looking for an Information Security Risk Manager to further strengthen our ability to protect the confidential information of both ASML and our customers. An unique opportunity to focus on information security while experiencing ASMLs success and way of working.
The Security Risk Manager role is threefold:
(1) Execute and participate in (information security) projects for the sector Sales & Customer Management and to mature information security capability company-wide
(2) identify and assesses potential information security risks, recommends mitigations and helps the risk owners drive the implementation of mitigations to reduce the risk to an acceptable level
(3) creating awareness and educating all sectors on how to handle customer confidential information is a key responsibility for each member of the team.
Role and responsibilities
Ensure security risks do not exceed the organization risk appetite by timely identifying risks and maintaining the security risk register, assessing risks and drive risk mitigation (projects) and monitor and report on progress. Collaboration with stakeholders and peers in the ASML security community will be critical for success in this role.
Job Description
- Execution of and participation in various Information Security Projects;
- Liaise and collaborate cross-sector to ensure the protection of Customer Confidential Information;
- Identify risks and perform/facilitate risk assessments (e.g. new projects / applications);
- Propagate decisions and risks controls in the sector and get commitment on risk mitigation;
- Provide advice and guidance to the business on information security questions;
- Drive compliance to security policies and standards and ensure insight in compliance status;
- Set-up and execute information security awareness initiatives;
- Align with other sectors and security departments about specific security and customer demands;
- Investigate and report upon Information Security Incidents.
Education and experience
Education
- Master degree or equivalent combination of education and experience.
- Information security risk management qualifications like CISSP, CISA, CRISC or CISM
Experience
- Minimum of 5 years of relevant experience in information security risk management;
- Proven experience with the ISO27001/2 risk management framework/control;
- Good understanding of IT, security technologies and best practices;
- Experience with coordinating information security projects in cooperation with the business;
- Experience with security assessments and assessing security implications;
- Experience with creating (security) awareness and initiatives;
- Experience in the semiconductor industry is a plus.
Skills
Working at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems.
To thrive in this job, you’ll need the following skills:
- Experience in stakeholder management & communicating with senior management
- Excellent English communication and presentation skills.
- Ability to translate threat, vulnerabilities and risks to stakeholder level and to drive risk mitigation.
- Pro-active and self-motivated with the proven ability to drive results.
- Creative when handling problems independently, commitment and flexibility.
- Team player with strong analytical skills.
Diversity & Inclusion
ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.
Other information
As Information Security Risk Manager you are part of the Sales Operations department within the sector Sales & Customer Management and will report to the Sector Information Security Risk Manager.
You will be based in Veldhoven, the Netherlands. You will be a member of the ASML Security community; working closely together with the security risk management teams in other sectors and the central security competence teams.
Need to know more about applying for a job at ASML? Read our frequently asked questions.