Security Engineer
Veldhoven, Building 03, Netherlands
ASML
ASML gives the world's leading chipmakers the power to mass produce patterns on silicon, helping to make computer chips smaller, faster and greener.Is it your mission to protect organizations and their employees against cyber threats? And do you believe that anything is possible? Then you are one of us – ASML DevSecOps Group!
To make Metrology and Machine Control department future-proof (bigger machines, more sensors etc.). We are looking for Security Engineers with a startup mindset (or experience) and a clear vision of how to integrate this into our complex ecosystem. In other words: you and your colleagues create a new foundation to challenge what is possible! Are you ready for the challenge?
Role and responsibilities
Your role as a security engineer will be working on and improving the security of the products owned by the Metrology cluster. You’ll define security requirements and propose solutions that strengthen the security perimeters such they are in line with the industry regulations and security best practices. You’ll provide advice on vulnerabilities or potential vulnerabilities within architecture of the cloud-based products your team develops
Your role also includes:
- Assess the security perimeters and create threat models
- Develop alerting and detection strategies of any unusual behavior
- Proactively identify and reduce security risks
- Assess off-the shelf tools and integrate them if needed in the existing solution
- Educate cross-functional product teams on security best practices
- Focus on continuous improvement through automation and critical thinking
Education and experience
You have 1-3 years relevant job experience and a Master or Bachelor degree and relevant education in Information Security. You have knowledge of network security protocols and different technologies. Have a strong understanding of encryption algorithms, cryptographic protocols and network defense tactics and strategies.
Furthermore,
- You have excellent problem-solving and analytical skills to identify and address security vulnerabilities
- You are familiar with API, container and GCP Cloud security
- You have knowledge of Identity and Access Management processes, ISO31000 and (US) export regulations is a plus
- You have a continuous learning mindset to stay up-to-date with the evolving security landscape and emerging technologies.
- You have knowledge of standards, polices and frameworks is preferred (more is better): CIS, MITRE, CCPA, ISO, NIST.
- You have comprehensive knowledge of (more is better) TerraFrom, GitHub Actions, Ansible, Go, Black Duck, Artifactory, Xray
Location and Team:
You will be based in Veldhoven and be employed in the Innovation and DevSecOps group within the D&E Metrology and Machine Control cluster. You will become member of the Metrology development community and the ASML Security community, working closely with both the metrology engineers and D&E Security risk managers
Other information
This position may require access to controlled technology, as defined in the Export Administration Regulations (15 C.F.R. §730, it seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.
ASML does not accept unsolicited resumes from any agencies that have not signed a mutual service agreement. All unsolicited resumes will be considered ASML’s property, and ASML will not be obligated to pay a referral fee. This includes resumes submitted directly to hiring managers without contacting the resource center Department. ASML is GDPR-compliant, therefore we cannot process applications sent outside of our recruitment system.
If you are interested in this vacancy, please apply. Need to know more about applying for a job at ASML? Read our frequently asked questions.
Diversity and inclusion
ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.
Need to know more about applying for a job at ASML? Read our frequently asked questions.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible APIs Automation Black Duck C CCPA Cloud DevSecOps Encryption GCP GDPR GitHub IAM Network security NIST Vulnerabilities
Perks/benefits: Career development Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs