Risk & Incident Manager

Introduction 

Within ASML, security capabilities are organized centrally and security risk management is embedded within each of the sectors. For Customer Solutions and Support (CS&S), which consists of the sectors Sales and Customer Support, we are looking for a Security Risk & Incident Manager to further strengthen our ability to protect the confidential information of both ASML and our customers. An unique opportunity to focus on information security while experiencing ASMLs business and way of working.  
  

Role and responsibilities

The primary task of the Security Risk & Incident Manager role is to identify and assess information security risks, and to coordinate and support in the security incident handling and decision-making process for incidents related to the CS&S sector in close collaboration with our Security Operations Center (SOC). 

You will ensure that security risks do not exceed the organization risk appetite by timely identifying risks, assessing risks and drive and participate in risk mitigation and monitor and report on progress related to CS&S information security incidents. Collaboration with stakeholders and peers in the ASML security community will be critical for success in this role. 

A grasp of your responsibilities:  

• Deliver business context, business knowledge, analysis for enrichment of the information security incidents. 
• Provide timely and accurate communication towards business regarding information security incidents. 
• Determine in close cooperation with the SOC team on the incident priority and define the scope and priority in line with the incident.
• Initiate sector response actions as well as eradicate and recover actions and allocate, perform or drive defined improvement action for business sector or responsible teams.
• Contribute to CS&S awareness by delivering input on lessons learned from security incidents. 
• Execution of and participation in (global) Information Security Projects related to security incident management. 
• Act as a security business partner towards a specific subsector of CS&S, where you support them in security inquiries and assessing (potential) risks. 

Who are we looking for?

We are looking for an experienced professional who has a keen eye for translating (ad-hoc) incidents into solutions. In line with managing incidents, it is key to manage and maintain communication with your (key) stakeholders through various channels. In this role you will also present risks, incidents and solutions/findings to your business stakeholders and senior management.

Experience 

• Master's degree or equivalent combination of education and experience. 
• Minimum of 10 years of relevant experience in information security incident response management. 
• Experience with the ISO27001/2 risk management framework/control. 
• Good understanding of IT, security technologies and best practices. 
• Experience with coordinating information security incidents in cooperation with the business. 
• Experience with security assessments and assessing security implications. 
• Experience in the semiconductor industry is a plus. 

Context of the position 

As Security Risk & Incident Manager you are part of the CS&S Security & Risk Management department positioned within Customer Solutions & Support and will report to the Sector Information Security Risk Manager.  

You will be based in Veldhoven, the Netherlands. You will be a member of the ASML Security community; working closely together with the security risk management teams in other sectors and the central security competence teams. 

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.