Cookies op Tweakers

Tweakers maakt gebruik van cookies, onder andere om de website te analyseren, het gebruiksgemak te vergroten en advertenties te tonen. Door gebruik te maken van deze website, of door op 'Ga verder' te klikken, geef je toestemming voor het gebruik van cookies. Wil je meer informatie over cookies en hoe ze worden gebruikt, bekijk dan ons cookiebeleid.

Meer informatie

ASML · Standplaats: Veldhoven · 30 september 2020

ASML is an innovation leader in the semiconductor industry. Find out what we do and why we do it.

Get to know ASML and learn about our vision and mission, our history, and how we operate.

  • Find out what it's like working at a semiconductor industry leader. Discover job benefits, clubs and events, and our culture.

Find out how we provide our customers with the hardware, software and services they need to mass produce patterns on silicon.

  • There's value in being ahead of the curve. Learn how we make technological advances and generate opportunities.

  • We release annual and quarterly financial results to ensure investors, both current and potential, are kept informed.

today - req18745

Senior Application Security Specialist

Other corporate functions

Other technical job categories

In a nutshell

Location

Veldhoven, Netherlands

Team

Other corporate functions

Experience

3-7 years

Degree

Other technical job categories

Travel

No

Introduction

We at ASML enable groundbreaking technology to solve some of humanity's toughest challenges. Together with our partners, we provide leading patterning solutions that drive the advancement of microchips.
Would you like to contribute by having security embedded in the processes and Information Technology?

We have a job for you!

Job Mission

As an Application Security Specialist you are part of the Application Security team within the Technology Security Competence Center (TSCC) which is part of the Risk & Business Assurance (R&BA) department of ASML Corporate.
You will be responsible for conducting detailed security assessments mainly on new and existing applications and IT services within ASML, assist and advice projects on security related questions and help drive the security improvements for ASML. You will be interacting with stakeholders on different levels in ASML IT, but also within ASML sectors.
SAP technology plays a key role in the security assessments. Experience with a security of a wide range of SAP applications is a plus in this role.
The role is contributing in protection of ASML's information, Intellectual Property (IP) and assets, and that of ASML's customers and suppliers for the scope of the projected solution. This includes the alignment of the solution with ASML Information Security strategies and security policies/standards/ guidelines, and where necessary suggesting additions and improvement to standards.

Job Description

As an Application Security Specialist you will be responsible for:

  • performing project intake assessments in cooperation with the Project Security Officer;
  • assessing applications and systems to be implemented or actual implementations based on assessments of high and low level designs, interviews and/or testing;
  • assessing existing or new IT services (on premise or cloud) on technical vulnerabilities and weaknesses based on ASML process and tooling;
  • translating assessment results into an Information Security Specification (security plan for service);
  • communicate observations to the relevant stakeholders, advise on mitigation and follow up on actions;
  • adding information to the different security registers from Business Impact assessments (BIA's), IT Security Assessments (ITSA's), penetration/security tests, vulnerability scans, exceptions and other sources;
  • adding information to security finding register, which contains all security assessment findings and risks that are reported within the TSCC, and is used to follow up on security assessment findings;
  • improving and maintaining an Application Security Register, manage and follow-up on actions and register application progress;
  • keep track of follow up actions and deliver management reporting;
  • represent, on occasion, the TSCC in IT projects and intake boards where required;
  • assess IT security exception requests on validity and provide advice to the team lead application security and business stakeholder for acceptance or rejection including advice on additional security controls;
  • improve procedures to keep the security registers, application registers and assessment processes up to date;
  • advise on security improvements and additional controls;
  • update and maintain security baselines and standards;
  • assist IT Security risk management.

Education

  • Valid industry certifications such as CISSP, CISM and/or CISA are a plus;
  • CCSP or equivalent is a plus;
  • Security/Technical/IT/informatics background bachelor's degree (or equivalent experience).

Experience

  • Min 6+ years professional experience with a focus on IT applications / information security, risk and compliance;
  • Experience in executing Threat and Vulnerability Analysis (TVA) or IT Security risk assessments on IT services and applications;
  • Experience with a wide range of SAP applications is a plus (no authorization management);
  • Experience with Cloud security and 3rd party management;
  • Experience in collecting information through research and interviews;
  • Good working knowledge of Office suite applications like Excel, SharePoint and Teams.
  • Deep Knowledge of current security technologies and governance processes;
  • IT audit experience is a plus;
  • In-depth working knowledge of IT Risk / security frameworks and best practices, such as: NIST Cyber , security, framework,ISF Standard of Good Practice for Information Security, NIST SP 800 30 framework, ISO 27001/2 framework,
  • Knowledge of the Scaled Agile Framework (SAFe) is a plus

Personal skills

  • Able to operate independently/with minimal supervision, self-starter;
  • Ability to interact with all levels including users, engineers, executives and senior managers;
  • Analytical, precise, tenacious, autonomous;
  • Knowledge of IT-security, Information Security and Architecture methodology;
  • Ability to overcome organizational resistance;
  • Excellent organizational skills and the ability to prioritize multiple tasks and assignments;
  • Able to manage large amounts of new information quickly; grasp the deep technical characteristics of new environments; draft clear and concise visualizations of complex processes and environments, stand your ground in a flexible / changing environment

Other information

ASML does not accept unsolicited resumes from any agencies that have not signed a mutual service agreement. All unsolicited resumes will be considered ASML's property, and ASML will not be obligated to pay a referral fee. This includes resumes submitted directly to hiring managers without contacting the Resource Center Department.
ASML is GDPR compliant, therefore we cannot process applications sent outside of our recruitment system.
If you are interested in this vacancy please apply.

Search jobs

Senior Application Security Specialist

Meld Misbruik

ASML

Standplaats: Veldhoven

30 september 2020

Vacature kenmerken


Functiegroep
Automatisering / Internet
Functie
application security specialist
Branche
Industrie
Dienstverband
Vast
Uren
1 - 40 uur per week
Opleidingsniveau
HBO
Carriere
Ervaren
Werklocatie
De Run, Veldhoven

Software engineer Applicatiebeheerder Web Developer Systeembeheerder Full Stack Developer Software Developer PHP Developer Java Developer IT Manager Devops Engineer

Tweakers vormt samen met Hardware Info, AutoTrack, Gaspedaal.nl, Nationale Vacaturebank, Intermediair en Independer DPG Online Services B.V.
Alle rechten voorbehouden © 1998 - 2020 Hosting door True