Vulnerability Management Specialist
Veldhoven, Building 46, Netherlands
ASML
ASML gives the world's leading chipmakers the power to mass produce patterns on silicon, helping to make computer chips smaller, faster and greener.
Introduction to the job
In the role as Vulnerability Management Specialist you’ll bring the best of security and IT disciplines together. You’ll be in the driver’s seat to challenge and protect our IT infrastructure and information assets for both our current state as well for our future technologies.
Role and responsibilities
The role involves cyber security management of assets and critical vulnerabilities. This role is positioned within the Infrastructure Security team, part of the Risk & Business Assurance department of ASML. The team currently consists out of 6 Vulnerability Management Specialists from across the world.
You will be responsible for scheduling, detecting, analyzing, reporting and managing the (Emergency) Patching Process activities within the company’s technology domains (servers, networks and all infrastructure supporting production applications for the enterprise, as well as development environments).
This includes applying your analytical, reasoning & specialized technical security expertise to investigate, isolate and track critical security vulnerabilities in a risk-based manner. You will be interacting with stakeholders on different levels in ASML IT, but also within ASML sectors.
You will be reporting upon and performing quality assurance on the vulnerability management processes and procedures.
A grasp of your responsibilities:
Develop and maintain the patch & vulnerability management policies and standards, and support the development of processes, systems and measurements that enable the organization to manage released patches and assure compliance towards the standards;
Conduct IT security assessments upon IT Services, network infrastructure and applications and report upon findings;
Align upon proposed next steps with stakeholders and monitor and report upon progress of agreed risk mitigation.
Vulnerability Management is active in the area of infrastructure, applications, containers, workplace, API’s amongst others. Depending on the knowledge, experience and interest of the candidate.
Education and experience
Working as a Vulnerability Management Specialist means you’ll be working in an environment where your communicative skills are key for building relationships and bridges with your peers in the other sectors of ASML. Your keen analytical mindset will help you in assessing and judging the criticality of vulnerabilities and risks. As ASML is growing rapidly, our Vulnerability Management capabilities and tools are used more and more, meaning if you’ll enjoy being creative and innovative to improve managing complex and big volumes of data, you’ll be at the right place for this role.
Ideally you’ll bring the below competences along:
Preferable experience as a security analyst in a large organization– approx. 3-4 years minimum. For this role we also are willing to talk to people who have less and/or more experience to learn if there is a potential fit;
Experience in Executing Threat and Vulnerability Analysis (TVA) and/or IT Security risk assessments on IT services, network & Cloud infrastructure and (web + mobile) applications;
Good knowledge and experience in server and network infrastructure, as cloud technologies are also upcoming, this would be a big plus;
A degree in computer science, information technology, computer engineering or equivalent experience Vulnerability Management Specialist.
If you have industry certifications such as CISSP, ISO 2700x or NIST-CSF, that would be a plus to bring along due to the complex nature of the position.
Other information
If you don’t meet the above mentioned requirements, and you still feel your profile is a great match with this job description, please apply and we’d like to get in touch.
This position requires access to controlled technology, as defined in the Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.
EOE AA M/F/Veteran/Disability
Need to know more about applying for a job at ASML? Read our frequently asked questions.
Diversity and inclusion
ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.
Need to know more about applying for a job at ASML? Read our frequently asked questions.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs C CISSP Cloud Compliance Computer Science IT infrastructure NIST Risk assessment Security assessment Vulnerabilities Vulnerability management
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs