Location
Veldhoven, Netherlands
Team
Legal, Compliance, Risk and Assurance
Work experience
10-15 years
Educational background
Other technical backgrounds, Other non-technical backgrounds
Travel
10%
Workplace type
Hybrid
Fulltime/parttime
Full time
Introduction
ASML is the largest supplier in the world of photolithography systems for the semiconductor industry and manufactures machines for the production of integrated circuits. It heavily relies on information to do so, and as such, protecting confidential information is of great importance and requires continuous improvement.
Within ASML security capabilities are organized centrally and security risk management is embedded within each of the sectors. For the sectors Sales and Customer Support we are looking for an Information Security Risk Manager to further strengthen our ability to protect the confidential information and being the interface to our account teams and customers. An unique opportunity to focus on information security while being part of the business.
The Security Risk Manager role is threefold: (1) Execute and participate in (information security) projects for the sectors Sales & Service and to mature information security capability company-wide (2) identify and assesses potential information security risks, recommends mitigations and helps the risk owners drive the implementation of mitigations to reduce the risk to an acceptable level (3) Collaborate and connect with our account teams and customers on information security inquiries.
Job Mission
Ensure security risks do not exceed the organization risk appetite by timely identifying risks. Support Sales & Service by setting-up collaboration and processes to address security inquiries and improvements with our external parties. Collaboration with stakeholders in the ASML security community and the account teams will be critical for success in this role.
Job Description
Collaborate and connect with our account teams and customers on information security inquiries;
Identify risks and perform/facilitate risk assessments;
Propagate decisions and risks controls in the sector and get commitment on risk mitigation;
Liaise and collaborate cross-sector to ensure the protection of (Customer) Confidential Information;
Drive compliance for contractual security agreements and ensure insight in compliance status;
Align with other sectors and security departments about specific security and customer inquiries;
Identity and Access Management Improvements;
Execution of and participation in various Information Security Projects.
Education
Master degree or equivalent combination of education and experience.
Information security risk management qualifications like CISSP, CISA, CRISC or CISM
Experience
Minimum of 10 years of relevant experience in (information security) risk management;
Proven experience with the ISO27001/2 risk management framework/control;
Good understanding of IT, security technologies and best practices;
Experience with coordinating (information security) projects in cooperation with the business;
Experience with security assessments and assessing security implications;
Experience in the semiconductor industry is a plus.
Personal Skills
Experience in stakeholder management & communicating with senior management
Excellent English communication and presentation skills.
Ability to translate threat, vulnerabilities and risks to stakeholder level and to drive risk mitigation.
Pro-active and self-motivated with the proven ability to drive results.
Creative when handling problems independently, commitment and flexibility.
Team player with strong analytical skills.
Context of the position
As Information Security Risk Manager you are part of the Security & Risk Management (Sales & Service) department and will report to the Sector Security Risk Manager.
You will be based in Veldhoven, the Netherlands. You will be a member of the ASML Security community; working closely together with the security risk management teams in other sectors and the central security competence teams.
Diversity and inclusion
ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.
Need to know more about applying for a job at ASML? Read our frequently asked questions.