R&D Security Incident Manager

Introduction to the job

As a R&D Security Incident Manager, you will play a critical role in protecting intellectual property, sensitive data, and innovation processes from cyber threats. You will work within a dynamic environment where cutting-edge research meets complex security challenges, helping to detect, analyze, and respond to security incidents that could impact the organization’s technological edge.

Role and responsibilities

• Monitor and analyze security alerts and events to identify potential incidents.
• Lead investigations into security breaches, coordinating containment, eradication, and recovery efforts.
• Collaborate with IT, R&D, and security and compliance teams across sectors to assess impact and ensure proper incident documentation.
• Develop and maintain incident response playbooks tailored to R&D-specific threats.
• Contribute to post-incident reviews and root cause analyses to improve future response capabilities.
• Support threat hunting activities and contribute to proactive detection strategies.
• Stay current with emerging threats, vulnerabilities, and attack techniques relevant to the R&D landscape.

Education and experience

Bachelor’s or Masters degree in Information or Cyber Security, Computer Science, or a related field.

• 3–5 years of experience in information operations, security operations, incident handling and response, or digital forensics.
• Affinity or Experience in environments with high-value intellectual property or regulated data (e.g., export control, trade secrets) is a plus.
• Familiarity with ServiceNow, SIEM tools, endpoint detection and response (EDR), and forensic analysis platforms.

Skills

Working at the cutting edge of technology, you will always have new challenges and new problems to solve. Working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you collaborate with supportive colleagues. There is always space for creative and unique points of view. You will have the flexibility and trust to choose how best to tackle tasks and solve problems. To thrive in this job, you take responsibility for your actions and your opinions. You need the following skills:

• Strong analytical and problem-solving skills with attention to detail.
• Proficiency in log analysis, and network traffic / activity inspection.
• Knowledge of security frameworks and threat intelligence integration.
• Effective communication skills for reporting incidents and collaborating across teams.
• Ability to work under pressure and manage multiple incidents simultaneously.
• Understanding of regulatory requirements and data protection standards relevant to R&D.

Other information

• Occasional travel may be needed to support investigations or collaborate with global teams.
• Opportunities for growth into senior incident response, threat intelligence, or security architecture roles.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

Inclusion and diversity

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that inclusion and diversity is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.