IT-Cloud Security Manager


Computer Science & Software Engineering

In a nutshell


Veldhoven, Netherlands




3-7 years



Job Category

Computer Science & Software Engineering




The Cloud Infrastructure Security Manager will be responsible for the protection of ASML’s information, Intellectual Property (IP) and assets, and that of ASML’s customers and suppliers developed and used within ASML’s Public cloud (IAAS, PAAS), through the set-up and/or alignment of ASML Information Security strategies and security standards/ guidelines while interfacing with the Business, and enforcing system, application and access security controls within the cloud. This position will continuously assess and report upon the effectiveness of the security controls of the cloud at people, process and technology level. The Cloud Infrastructure Security Manager is member of ASML’s Cloud Center of Excellence (CCoE).

Job Description

-Be the single point of contact for IT and Information security subjects within the Cloud Center of Excellence (CCoE).
-Develop and create a cloud native security control framework.
-Develop, design and maintain Cloud security standards, guidelines and procedures to assure effective secured Cloud services and data protection within the IAAS / PAAS domain.
-Regularly assess Cloud services (people, process, technology) for security updates and report upon findings, conclusions and next steps.
-Conduct, in close cooperation with the IT Security Risk Manager, security risk assessments upon new cloud services to be developed and used within ASML’s public Cloud and propose risk reducing measures.
-Assess and support mitigation of the risks associated to ASML’s public cloud to assure a continuously adequate level of security.
-Build excellent working relationships within ASML’s CCoE members and all cloud service users, including security officers and developers of new cloud services.
-Support ASML Cyber Defense Organization (CDO) activities and ensure 7/24/365 response on any major IT security incidents related to ASML’s IAAS / PAAS domain.


-CCSP or comparable Cloud security certification is a must.
-CISSP/CISM/ CISA is a plus.
-Technical/IT/informatics background bachelor degree (or equivalent experience)
-Deep Knowledge of current Cloud technologies (e.g. IAAS, PAAS, VM’s)and governance (processes)
-Experience with AZURE, Google and AWS cloud technology (IAAS / PAAS) is a pre.
-IT Risk assessment frameworks e.g.
-CSC Top 20 Controls
-Cloud Security Alliance (CSA)
-NIST SP 800 30 framework
-ISO 27001 framework


More than 5 years’ experience as an IT Security professional in:
-Cloud security (IAAS / PAAS) governance and defining and maintaining Cloud Security framework (Policies, Standards, processes, templates).
-Conducting Security Assessments (reactive) and Security Risk Assessments (proactive) within a Cloud environment.
-Translating the output of security (risk) assessment into security baseline/corrective actions and proposals for the Private Cloud services
-Communicating with Stakeholders, users and Senior management

Personal skills

-Able to operate independently
-Ability to interact with all levels including engineers, executives and senior managers
-Deep technical knowledge of Information Security and Cloud technology.
-Ability to overcome organizational resistance
-Excellent organizational skills and the ability to prioritize multiple tasks, projects and assignments
-Analytical, precise, tenacious, autonomous

Other information

To attract and retain the best people, we have a competitive employment conditions package, including:
-Fixed 13th month;
-Attractive profit scheme; 5 year average (2017): 16.4%
-27 holidays and 13 additional free days.

ASML creates the conditions that enable you to realize your full potential. We provide state-of-the-art facilities, opportunities to develop your talents, international career opportunities, a stimulating and inspiring environment, and most of all, the dedication of a company that recognizes and rewards extraordinary performance.