Logo
ASML

IT Cloud Security Specialist

ASML, Greendale, Wisconsin, United States, 53129


ASML

ASML gives the world's leading chipmakers the power to mass produce patterns on silicon, helping to make computer chips smaller, faster and greener.ASML US, including its affiliates and subsidiaries, bring together the most creative minds in science and technology to develop lithography machines that are key to producing faster, cheaper, more energy-efficient microchips. We design, develop, integrate, market, and service these advanced machines, which enable our customers - the world’s leading chipmakers - to reduce the size and increase the functionality of their microchips, which in turn leads to smaller, more powerful consumer electronics. Our headquarters are in Veldhoven, Netherlands, and we have 18 office locations around the United States including main offices in Chandler, Arizona, San Jose and San Diego, California, Wilton, Connecticut, and Hillsboro, Oregon.Job MissionThis role is part of the Cloud Center of Excellence (CCoE). The CCoE is a global Agile Release Train, with presence in the Netherlands, US and East-Europe. The vision is to provide a flexible and reliable cloud platform to enable accelerated and sustainable adoption of cloud across ASML, and maximizing the ability to realize its benefits, while reducing risks. In this role you will work closely together with Products Owners, Cloud & Security Architects and Cloud Engineers to help build secure and robust enterprise-grade cloud platforms.The CCoE US Team is responsible for cloud onboarding and solutioning to guide other ASML DevOps teams in their onboarding journey to cloud, which includes aspects around architecture, cost management and security. During the cloud onboarding process there are steps that demand a Security Expert to evaluate and approve the design/solution to ensure that all workloads are fully compliant when they move to production.When workloads are in ‘run’, the CCoE US Team monitors security vulnerabilities and address those to Workload DevOps teams, ensuring that the given recommendations are actionable and get prioritized. Operational requests related to, or with a possible impact on our security posture, are also in scope of this role. There are topics that are extremely relevant for the US region, like export control, Engineering Top Secrets in Cloud and Generative AI in Cloud. These topics demand security expertise from CCoE; we help ensure workload teams are compliant and have all cloud security requirements in place. As these topics are relatively new, a dedicated Security Architect is paramount in the US Region, ensuring we stay ahead of all requirements.The Cloud Security Specialist will be responsible for the protection of ASML’s information, Intellectual Property (IP) and assets, and that of ASML’s customers and suppliers developed and used within ASML’s Public cloud (IaaS, PaaS), through the set-up and/or alignment of ASML Information Security strategies and security standards/ guidelines while interfacing with the Business, and enforcing system, application and access security controls within the cloud. This position will continuously assess and report upon the effectiveness of the security controls of the cloud at people, process and technology level.Duties and ResponsibilitiesServe as the single point of contact for security subjects within the Cloud Center of Excellence (CCoE) US Team.Be a linking pin between CCoE US and regional security & risk.Be the extension and contact person of the CCoE security team (mostly based in Netherlands) for the US region.Support in updating and maintaining the Cloud Security Framework.Develop, design and maintain Cloud security standards, guidelines and procedures to assure effective secured Cloud services and data protection within the IaaS / PaaS domain.Regularly assess Cloud workloads (people, process, technology) on security compliance and report upon findings, conclusions and propose risk reducing measures within the CCoE workload process and during the lifetime of cloud workloads.Assess and support mitigation of the risks associated to ASML’s public cloud to assure a continuously adequate level of security.Build excellent working relationships within ASML’s CCoE members and all cloud service users, including security officers and developers of new cloud services.Support ASML Security Incident Response Team (SIRT) activities with response on any major IT security incidents related to ASML’s IAAS / PAAS domain.Provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks.Hybrid role: 3 days per week in office (San Jose), 2 days per week remote, but with a flexible mindset & willing to be present more if deadlines, events, or customer facing meetings require it.Other duties as assigned.Education and ExperienceBachelor’s/master’s degree in IT, Business Management, Computer Science or Electronics.Must have 5+ years of experience as an IT Security professional in:Cloud security (IaaS/PaaS) governance and defining and maintaining Cloud Security Framework (Policies, Standards, processes, templates).Conducting Security Assessments (reactive) and Security Risk Assessments (proactive) within a Cloud environment.Scrum/Scaled Agile Framework experience.Understand agile and DevOps concepts in a security context such as “trust but verify”, central vs decentral controls, make agile teams as autonomous as possible while ensuring the teams adhere to the Non-Functional-Requirements.Translating the output of security (risk) assessment into security baseline/corrective actions and proposals for the Cloud services.Communicating with stakeholders, users and senior management.Experience with Microsoft Azure and/or Google Cloud Platform is a pre.Work experience from large, international companies and have dealt with or worked for global service providers.SkillsClear passion for cloud security, cloud technologies, SecDevOps and Artificial Intelligence.Hands-on and can-do mentality.Able to operate independently and show ownership.Ability to interact with all levels including engineers, executives and senior managers.Deep technical knowledge of Information Security and Cloud technology.Ability to overcome organizational resistance.Excellent organizational skills and the ability to prioritize multiple tasks, projects and assignments.Strong communication skills, willingness to work across time zones.Analytical, precise, tenacious, autonomous.Other InformationThis position is located on-site in San Jose, CA. It requires onsite presence to attend in-person work-related events, trainings and meetings and to further ensure teamwork, collaboration and innovation.A flexible workplace arrangement may be available to employees working in roles conducive to remote work (up to two days a week).Routinely required to sit; walk; talk; hear; use hands to keyboard, finger, handle, and feel; stoop, kneel, crouch, twist, reach, and stretch. Occasionally required to move around the campus.Occasionally lift and/or move up to 20 pounds.Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.Must be willing to work in a clean room environment, wearing coveralls, hoods, booties, safety glasses and gloves for entire duration of shift.EOE AA M/F/Veteran/DisabilityPotential candidates will meet the education and experience requirements provided on the above job description and excel in completing the listed responsibilities for this role. All candidates receiving an offer of employment must successfully complete a background check and any other tests that may be required.#LI-MO1The current base annual salary range for this role is currently: $108,750-181,250.IntroductionASML US, including its affiliates and subsidiaries, bring together the most creative minds in science and technology to develop lithography machines that are key to producing faster, cheaper, more energy-efficient microchips. We design, develop, integrate, market, and service these advanced machines, which enable our customers - the world’s leading chipmakers - to reduce the size and increase the functionality of their microchips, which in turn leads to smaller, more powerful consumer electronics. Our headquarters are in Veldhoven, Netherlands, and we have 18 office locations around the United States including main offices in Chandler, Arizona, San Jose and San Diego, California, Wilton, Connecticut, and Hillsboro, Oregon.Job MissionThis role is part of the Cloud Center of Excellence (CCoE). The CCoE is a global Agile Release Train, with presence in the Netherlands, US and East-Europe. The vision is to provide a flexible and reliable cloud platform to enable accelerated and sustainable adoption of cloud across ASML, and maximizing the ability to realize its benefits, while reducing risks. In this role you will work closely together with Products Owners, Cloud & Security Architects and Cloud Engineers to help build secure and robust enterprise-grade cloud platforms.The CCoE US Team is responsible for cloud onboarding and solutioning to guide other ASML DevOps teams in their onboarding journey to cloud, which includes aspects around architecture, cost management and security. During the cloud onboarding process there are steps that demand a Security Expert to evaluate and approve the design/solution to ensure that all workloads are fully compliant when they move to production.When workloads are in ‘run’, the CCoE US Team monitors security vulnerabilities and address those to Workload DevOps teams, ensuring that the given recommendations are actionable and get prioritized. Operational requests related to, or with a possible impact on our security posture, are also in scope of this role. There are topics that are extremely relevant for the US region, like export control, Engineering Top Secrets in Cloud and Generative AI in Cloud. These topics demand security expertise from CCoE; we help ensure workload teams are compliant and have all cloud security requirements in place. As these topics are relatively new, a dedicated Security Architect is paramount in the US Region, ensuring we stay ahead of all requirements.The Cloud Security Specialist will be responsible for the protection of ASML’s information, Intellectual Property (IP) and assets, and that of ASML’s customers and suppliers developed and used within ASML’s Public cloud (IaaS, PaaS), through the set-up and/or alignment of ASML Information Security strategies and security standards/ guidelines while interfacing with the Business, and enforcing system, application and access security controls within the cloud. This position will continuously assess and report upon the effectiveness of the security controls of the cloud at people, process and technology level.Duties and ResponsibilitiesServe as the single point of contact for security subjects within the Cloud Center of Excellence (CCoE) US Team.Be a linking pin between CCoE US and regional security & risk.Be the extension and contact person of the CCoE security team (mostly based in Netherlands) for the US region.Support in updating and maintaining the Cloud Security Framework.Develop, design and maintain Cloud security standards, guidelines and procedures to assure effective secured Cloud services and data protection within the IaaS / PaaS domain.Regularly assess Cloud workloads (people, process, technology) on security compliance and report upon findings, conclusions and propose risk reducing measures within the CCoE workload process and during the lifetime of cloud workloads.Assess and support mitigation of the risks associated to ASML’s public cloud to assure a continuously adequate level of security.Build excellent working relationships within ASML’s CCoE members and all cloud service users, including security officers and developers of new cloud services.Support ASML Security Incident Response Team (SIRT) activities with response on any major IT security incidents related to ASML’s IAAS / PAAS domain.Provide cyber security expertise in the analysis, assessment, development, and evaluation of security solutions and architectures to secure applications, operating systems, databases, and networks.Hybrid role: 3 days per week in office (San Jose), 2 days per week remote, but with a flexible mindset & willing to be present more if deadlines, events, or customer facing meetings require it.Other duties as assigned.Education and ExperienceBachelor’s/master’s degree in IT, Business Management, Computer Science or Electronics.Must have 5+ years of experience as an IT Security professional in:Cloud security (IaaS/PaaS) governance and defining and maintaining Cloud Security Framework (Policies, Standards, processes, templates).Conducting Security Assessments (reactive) and Security Risk Assessments (proactive) within a Cloud environment.Scrum/Scaled Agile Framework experience.Understand agile and DevOps concepts in a security context such as “trust but verify”, central vs decentral controls, make agile teams as autonomous as possible while ensuring the teams adhere to the Non-Functional-Requirements.Translating the output of security (risk) assessment into security baseline/corrective actions and proposals for the Cloud services.Communicating with stakeholders, users and senior management.Experience with Microsoft Azure and/or Google Cloud Platform is a pre.Work experience from large, international companies and have dealt with or worked for global service providers.SkillsClear passion for cloud security, cloud technologies, SecDevOps and Artificial Intelligence.Hands-on and can-do mentality.Able to operate independently and show ownership.Ability to interact with all levels including engineers, executives and senior managers.Deep technical knowledge of Information Security and Cloud technology.Ability to overcome organizational resistance.Excellent organizational skills and the ability to prioritize multiple tasks, projects and assignments.Strong communication skills, willingness to work across time zones.Analytical, precise, tenacious, autonomous.Other InformationThis position is located on-site in San Jose, CA. It requires onsite presence to attend in-person work-related events, trainings and meetings and to further ensure teamwork, collaboration and innovation.A flexible workplace arrangement may be available to employees working in roles conducive to remote work (up to two days a week).Routinely required to sit; walk; talk; hear; use hands to keyboard, finger, handle, and feel; stoop, kneel, crouch, twist, reach, and stretch. Occasionally required to move around the campus.Occasionally lift and/or move up to 20 pounds.Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.Must be willing to work in a clean room environment, wearing coveralls, hoods, booties, safety glasses and gloves for entire duration of shift.EOE AA M/F/Veteran/DisabilityPotential candidates will meet the education and experience requirements provided on the above job description and excel in completing the listed responsibilities for this role. All candidates receiving an offer of employment must successfully complete a background check and any other tests that may be required.#LI-MO1The current base annual salary range for this role is currently: $108,750-181,250.

#J-18808-Ljbffr