ASML is one of the world’s leading manufacturers of chip-making equipment.
Our vision is to enable affordable microelectronics that improve the quality of life. To achieve this, our mission is to invent, develop, manufacture and service advanced technology for high-tech lithography, metrology and software solutions for the semiconductor industry.
ASML's guiding principle is continuing Moore's Law towards ever smaller, cheaper, more powerful and energy-efficient semiconductors. This results in increasingly powerful and capable electronics that enable the world to progress within a multitude of fields, including healthcare, technology, communications, energy, mobility, and entertainment.
Working at ASML
We provide the world’s top chipmakers everything they need to create better performing, cheaper semiconductor chips. Simply put: we are an industry leader supporting industry leaders.
As such, you’ll be encouraged to bring your best ideas and act on them. You’ll have the freedom, trust, and support in your field to experiment and solve complex challenges. Things are rarely dull when you’re constantly breaking new ground.
But despite our fast-paced environment at the forefront of tech, we take your work-life balance and wellbeing seriously. A business is only as good as its employees.
So join us, and you’ll be a part of a global collaboration. One that promotes creativity, the inclusion of highly diverse teams, and an exciting and dynamic work environment. Join us, and you’ll be a part of progress.
Introduction
The Cloud Infrastructure Security Manager will be responsible for the protection of ASML’s information, Intellectual Property (IP) and assets, and that of ASML’s customers and suppliers developed and used within ASML’s Public cloud (IAAS, PAAS), through the set-up and/or alignment of ASML Information Security strategies and security standards/ guidelines while interfacing with the Business, and enforcing system, application and access security controls within the cloud. This position will continuously assess and report upon the effectiveness of the security controls of the cloud at people, process and technology level. The Cloud Infrastructure Security Manager is member of ASML’s Cloud Center of Excellence (CCoE).
Job Description
-Be the single point of contact for IT and Information security subjects within the Cloud Center of Excellence (CCoE).
-Develop and create a cloud native security control framework.
-Develop, design and maintain Cloud security standards, guidelines and procedures to assure effective secured Cloud services and data protection within the IAAS / PAAS domain.
-Regularly assess Cloud services (people, process, technology) for security updates and report upon findings, conclusions and next steps.
-Conduct, in close cooperation with the IT Security Risk Manager, security risk assessments upon new cloud services to be developed and used within ASML’s public Cloud and propose risk reducing measures.
-Assess and support mitigation of the risks associated to ASML’s public cloud to assure a continuously adequate level of security.
-Build excellent working relationships within ASML’s CCoE members and all cloud service users, including security officers and developers of new cloud services.
-Support ASML Cyber Defense Organization (CDO) activities and ensure 7/24/365 response on any major IT security incidents related to ASML’s IAAS / PAAS domain.
Education
-CCSP or comparable Cloud security certification is a must.
-CISSP/CISM/ CISA is a plus.
-Technical/IT/informatics background bachelor degree (or equivalent experience)
-Deep Knowledge of current Cloud technologies (e.g. IAAS, PAAS, VM’s) and governance (processes)
-Experience with AZURE, Google and AWS cloud technology (IAAS / PAAS) is a pre.
-IT Risk assessment frameworks e.g.
-CSC Top 20 Controls
-Cloud Security Alliance (CSA)
-NIST SP 800 30 framework
-ISO 27001 framework
Experience
More than 5 years’ experience as an IT Security professional in:
-Cloud security (IAAS / PAAS) governance and defining and maintaining Cloud Security framework (Policies, Standards, processes, templates).
-Conducting Security Assessments (reactive) and Security Risk Assessments (proactive) within a Cloud environment.
-Translating the output of security (risk) assessment into security baseline/corrective actions and proposals for the Private Cloud services
-Communicating with Stakeholders, users and Senior management
Personal skills
-Able to operate independently
-Ability to interact with all levels including engineers, executives and senior managers
-Deep technical knowledge of Information Security and Cloud technology.
-Ability to overcome organizational resistance
-Excellent organizational skills and the ability to prioritize multiple tasks, projects and assignments
-Analytical, precise, tenacious, autonomous
Other information
To attract and retain the best people, we have a competitive employment conditions package, including:
-Fixed 13th month;
-Attractive profit scheme; 5 year average (2017): 16.4%
-27 holidays and 13 additional free days.
ASML creates the conditions that enable you to realize your full potential. We provide state-of-the-art facilities, opportunities to develop your talents, international career opportunities, a stimulating and inspiring environment, and most of all, the dedication of a company that recognizes and rewards extraordinary performance.
-CCSP or comparable Cloud security certification is a must.
-CISSP/CISM/ CISA is a plus.
-Technical/IT/informatics background bachelor degree (or equivalent experience)
-Deep Knowledge of current Cloud technologies (e.g. IAAS, PAAS, VM’s) and governance (processes)
-Experience with AZURE, Google and AWS cloud technology (IAAS / PAAS) is a pre.
-IT Risk assessment frameworks e.g.
-CSC Top 20 Controls
-Cloud Security Alliance (CSA)
-NIST SP 800 30 framework
-ISO 27001 framework
- More than 5 years’ experience as an IT Security professional in:
-Cloud security (IAAS / PAAS) governance and defining and maintaining Cloud Security framework (Policies, Standards, processes, templates).
-Conducting Security Assessments (reactive) and Security Risk Assessments (proactive) within a Cloud environment.
-Translating the output of security (risk) assessment into security baseline/corrective actions and proposals for the Private Cloud services
-Communicating with Stakeholders, users and Senior management
-Able to operate independently
-Ability to interact with all levels including engineers, executives and senior managers
-Deep technical knowledge of Information Security and Cloud technology.
-Ability to overcome organizational resistance
-Excellent organizational skills and the ability to prioritize multiple tasks, projects and assignments
-Analytical, precise, tenacious, autonomous
To attract and retain the best people, we have a competitive employment conditions package, including:
-Fixed 13th month;
-Attractive profit scheme; 5 year average (2017): 16.4%
-27 holidays and 13 additional free days.
Education Backgrounds: |
Mechanical Engineering Software Engineering |
Specialties: |
Other |
Education Level: |
Postgraduate (Masters) Doctorate (PH.D) |
Experience: |
10 - 15 years 5 - 10 Years > 15 years |
Languages spoken: |
English |
Job Location: | Veldhoven, Netherlands |
Type: Job
Deadline: 22nd December 2024
Job reference (ID): 16966
Loading...