Introduction to the job
Do you like Information and Cyber Security Controls, auditing and contract negotiating within a Strategic Sourcing & Procurement (SS&P) environment? Come join ASML as a Cyber Security Specialist to support Supplier Security and Security Risk Management Team.
Supplier Security and Security Risk Management (the team) is a team that does support contracting security requirements, execute our part when security incidents happen at suppliers, risk based assessing of suppliers, gap closure/improvement of suppliers and mature information and cyber security in the eco-system (external focus).
The team also does security for the sector SS&P and also P&D like assessing applications, awareness, risk management, security incidents and more (internal focus).
Job Mission
ASML has many different type of suppliers worldwide. Security maturity of these suppliers as also the security maturity of the SS&P and P&D sectors are important to protect ASML.
By understanding our external supplier eco-system and our internal eco-system (example IT assets) , we identify security risks and together with suppliers/ASML IT we drive improvement.
Role and responsibilities
We are looking for a Cyber Security Specialist who will be responsible in collaboration with other security specialists to perform:
Supplier Security way of working (give input together with team):
Update the supplier security policy and supplier security standard based on experience, relevant trends from outside and law/regulations
Continues improvement of process, people and technology
Dashboarding/reporting (update your part of the dashboards):
For all activities dashboard and reports are generated at fixed moments.
Cyber Quick scan (your role after trigger from contracting):
Perform cyber quick scan for supplier selection and/or onboarding of new supplier.
Cyber Security at suppliers (your role):
Assessing and improving Cyber Security risks at suppliers identified by our Cyber Security Tool
Maintain and improve cyber security knowledge
Maintain the Cyber Security Tool (technical/functional application owner) including access rights/review and developments of the tool
Maintain means & methods related to Cyber Security of suppliers
Cyber incidents at suppliers (your role to support, together with team and ASML SOC):
Be the specialist to guide/support cyber incidents at a supplier and report/communicate with SS&P stakeholders and team and ASML SOC
Cyber score of ASML (your role together with ASML SOC):
Monitor and improve ASML security score
Master classes for PR and NPR suppliers (your role to give input):
Use risks identified during cyber security at suppliers to develop master classes to improve suppliers in 1 to many events
Education and experience
Master/Bachelor degree in an IT technical field or equivalent professional experience
IT auditor or equivalent certification (par example CISA)
Valid industry security related certifications such as the Certified Information Systems Security Professional (CISSP)
Overseeing the whole ISO27001 version 2021 with in-depth knowledge of each aspect is preferred
Having Information and Cyber Security knowledge on a management level and being able to be a counterpart for Subject Matter Experts
Having a pragmatic approach and can act differently depending on the specific situation
Knowledge and experience with security audit frameworks and standards
Skills
Working at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems.
To thrive in this job, you’ll need the following skills:
Analytical, precise, tenacious, autonomous
Process minded and Project Management skills
Diplomatic and good negotiations skills
Ability to interact with all levels including executives and senior managers
Ability to build a strong relationship with suppliers/stakeholders
Strong interpersonal, presentation, analytical and statistical sampling skills
Exceptional written and verbal communication skills are required
ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that inclusion and diversity is a driving force in the success of our company.
Need to know more about applying for a job at ASML? Read our frequently asked questions
Who are we?
ASML is an innovation leader in the global semiconductor industry. We make machines that chipmakers use to mass produce microchips. Founded in 1984 in the Netherlands with just a handful of employees, we’ve now grown to over 40,000 employees, 143 nationalities and more than 60 locations around the world.
What do we do?
We provide chipmakers with hardware, software and services to mass produce patterns on silicon through lithography. Our lithography systems use ultraviolet light to create billions of tiny structures on silicon that together make up a microchip. We push our technology to new limits to enable our customers to create smaller, faster and more powerful chips.
Who are our people?
While you may think that only engineers and mathematicians work at ASML, you'll be surprised to find out that our people come from a wide variety of backgrounds. Across ASML, we have dedicated teams that manage customer support, communications and media, IT, software development and more. Every team in the company is essential for pushing our technology and the industry forward.
If you love to tackle challenges and innovate in a collaborative, supportive and inclusive environment with all the flexibility and freedom to unleash your full potential, ASML is the place to be.
Join us!
