30+ days ago - req5556

IT - Security Manager North East Asia - Linkou

IT

Other job categories

In a nutshell

Location

Linkou, Taiwan

Team

IT

Experience

8+ years

Degree

Bachelor

Job Category

Other job categories

Introduction

This Security Manager role (also known as Regional Security Officer) will be responsible for protecting computer and data asset in North East Asia by aligning the ASML Information Security strategy and policies, directing system and application security controls, policies and procedures, and monitoring and evaluating systems and applications in relation to customer IT/Information Security requirements. Also, continuously assess and report on security, operational, process, and physical threats to ASML North East Asia. Both ASML and Customer/Supplier IP.

Job Mission

To be completed

Job Description

Be the single contact and representative in ASML North East Asia for any Information security/security related topics or issues.
Assessing and mitigating risks associated to the ASML North East Asia network, systems and processes to provide a safe and secure environment.
Cooperate with IT and other sectors in understanding security requirements from customers in North East Asia and obtaining mutually agreed solutions.
Implement and educate ASML Management , IT and users on Information Security policies and standards and foster an attitudinal change for Security.
Support ASML Cyber Defense team in North East Asia to ensure a timely response on any major Information security incidents/crises for ASMLNorth East Asia.
To build excellent working relationships with ASML people and partners championing security risk management in North East Asia.
Advise on security improvements and additional controls by co-working with sectors’ Security Risk Managers and also NL IT/Information Security.

Education

CISSP/CISM or comparable certification
Knowledge of project management (Prince-2 / PMBOK/APMP)
Technical/IT/informatics background bachelor degree.
IT Risk assessment frameworks e.g.
Standard of Good Practice developed by Information Security Forum (ISF)
CSC Top 20 Controls
NIST SP 800 30 framework
ISO 27005 framework

Experience

More than 7 years’ experience as an Information Security professional in:
Conducting Security Gap Assessments
Translating the output of security assessment into security baseline/plan for the IT service
Communicating with Stake holders and Senior management
Security Awareness training for executive and employees

Personal skills

Analytical, precise, tenacious, autonomous
Deep technical knowledge of IT/Information Security
Good communication/organization skills

Context of the position

To be completed

Other information

PERSONAL CHARACTERISTICS

Passion: Be passionate about Security and protecting Intellectual Property
Diplomacy: Through diplomacy and team building handle Security issues in cooperative manner during mergers and acquisitions.
Behave Ethically: Understand ethical behavior and business practices, and ensure that own behavior and the behavior of others is consistent with these standards and aligns with the values of the organization.
Lead: Positively influence others to achieve results that are in the best interest of the organization
Make Decisions: Assess situations to determine the importance, urgency and risks, and make clear decisions which are timely and in the best interests of the organization
Fluent in English and Mandarin