Sr. Cloud Security Risk Analyst
Company: ASML
Location: San Diego
Posted on: November 15, 2024
|
|
Job Description:
Introduction
Qualifications, skills, and all relevant experience needed for this
role can be found in the full description below.
ASML US, including its affiliates and subsidiaries, bring together
the most creative minds in science and technology to develop
lithography machines that are key to producing faster, cheaper,
more energy-efficient microchips. We design, develop, integrate,
market, and service these advanced machines, which enable our
customers - the world's leading chipmakers - to reduce the size and
increase the functionality of their microchips, which in turn leads
to smaller, more powerful consumer electronics. Our headquarters
are in Veldhoven, Netherlands, and we have 18 office locations
around the United States including main offices in Chandler,
Arizona, San Jose and San Diego, California, Wilton, Connecticut,
and Hillsboro, Oregon.
The mission of the Information Management department is to unleash
R&D's full potential by maximizing productivity. As Cloud
Security Risk Manager, you will be part of a creative and dynamic
team that collaborates to solve challenges that impact the R&D
organization.
This role focuses on information security in the cloud (IaaS /
PaaS), supporting Development & Engineering, Business Line
Applications, Corporate Intellectual Property, Research & System
Engineering. You will ensure that information security risks do not
exceed our risk appetite by identifying and assessing risks in both
existing and proposed applications - recommending mitigating
controls from our cloud security framework.
This role will have a wide range of internal interfaces that will
include teams outside of our department that may also include
Customer Support, Operations and Risk & Business Assurance. You
will also interface with other programs, projects and agile teams -
as well as R&D team members based out of Europe.
Duties and Responsibilities
Perform information security risk assessments on new cloud
initiatives; lead design reviews, recommending mitigating controls
and driving their implementation
Routinely align with other cloud security competences within the
security community on security matters linked to R&D
information assets
Ensure compliance with all security policies, standards and
regulations for controlled technology
Work closely with Legal, Privacy and corporate AI committee to
ensure a comprehensive security posture for all AI initiatives
Perform generic risk assessments and/or arrange penetration tests
on existing cloud-based applications; registering risks,
recommending controls and driving the mitigation of those
controls
Contribute towards the improvement of business managed equipment
policies, processes and organization within R&D
Perform other duties as assigned.
Education and experience
3-5 years proven experience in cloud security with a firm
understanding of cloud fundamentals, design and concepts.
Proven experience with the ISO27001 framework; familiarity with
related cloud security frameworks and best practices.
Solid knowledge on IaaS and PaaS (information) security risks
pertaining to Microsoft Azure and Google Cloud Platform.
Preferred security certifications include (but not required) are
CCSP, CISSP/CISM or CRISC.
Experience with hybrid multi cloud a plus.
Knowledge of US export regulations a plus.
Skills
Results driven. Demonstrates ownership and accountability,
following through on assignments with minimal supervision.
Strong communications skills, with the ability to influence,
negotiate and build consensus with key stakeholders.
Strong analytical and problem-solving skills with attention to
detail.
Ability to understand and translate information security threats
and vulnerabilities into business risk for stakeholders.
Ability to work both independently and in a team environment where
flexibility, creativity, and commitment are important.
Ability to think strategically for long-term vision in terms of
culture, behavior, business processes and tools, yet can tailor
solutions to be fit-for-purpose and deliver quick wins.
Continuous learner with a passion for staying ahead of security
trends and technologies
Other Information
This position is located in San Diego, CA and works on a hybrid
schedule; 3 days onsite, 2 days remote.
Routinely required to sit; walk; talk; hear; use hands to keyboard,
finger, handle, and feel; stoop, kneel, crouch, twist, reach, and
stretch. Occasionally required to move around the campus.
Occasionally lift and/or move up to 20 pounds.
Specific vision abilities required by this job include close
vision, color vision, peripheral vision, depth perception, and
ability to adjust focus.
Must be willing to work in a clean room environment, wearing
coveralls, hoods, booties, safety glasses and gloves for entire
duration of shift.
While performing the duties of this job, the employee routinely is
required to sit; walk; talk; hear; use hands to keyboard, finger,
handle, and feel; stoop, kneel, crouch, twist, reach, and
stretch.
This position may require access to controlled technology, as
defined in the Export Administration Regulations (15 C.F.R. - 730,
et seq.). Qualified candidates must be legally authorized to access
such controlled technology prior to beginning work. Business
demands may require the Company to proceed with candidates who are
immediately eligible to access controlled technology.
Potential candidates will meet the education and experience
requirements provided on the above job description and excel in
completing the listed responsibilities for this role. All
candidates receiving an offer of employment must successfully
complete a background check and any other tests that may be
required.
EOE AA M/F/Veteran/Disability
The current base annual salary range for this role is
currently:
$115,125-191,875
Pay scales are determined by role, level, location and alignment
with market data. Individual pay is determined through interviews
and an assessment of several factors that that are unique to each
candidate, including but not limited to job-related skills,
relevant education and experience, certifications, abilities of the
candidate and pay relative to other team members.
The Company offers employees and their families, medical, dental,
vision, and basic life insurance. Employees are able to participate
in the Company's 401k plan. Employees will also receive eight (8)
hours of vacation leave every month and (13) paid holidays
throughout the calendar year. For more information, please contact
the Recruiter or click on this link Compensation & Benefits in the
US.
All new ASML jobs have a minimum application deadline of 10
days.
This position requires access to controlled technology, as defined
in the United States Export Administration Regulations (15 C.F.R. -
730, et seq.). Qualified candidates must be legally authorized to
access such controlled technology prior to beginning work. Business
demands may require ASML to proceed with candidates who are
immediately eligible to access controlled technology.
Diversity and inclusion
ASML is an Equal Opportunity Employer that values and respects the
importance of a diverse and inclusive workforce. It is the policy
of the company to recruit, hire, train and promote persons in all
job titles without regard to race, color, religion, sex, age,
national origin, veteran status, disability, sexual orientation, or
gender identity. We recognize that diversity and inclusion is a
driving force in the success of our company.
Need to know more about applying for a job at ASML? Read our
frequently asked questions.
Request an Accommodation
ASML provides reasonable accommodations to applicants for ASML
employment and ASML employees with disabilities. An accommodation
is a change in work rules, facilities, or conditions which enable
an individual with a disability to apply for a job, perform the
essential functions of a job, and/or enjoy equal access to the
benefits and privileges of employment. If you are in need of an
accommodation to complete an application, participate in an
interview, or otherwise participate in the employee pre-selection
process, please send an email to USHR_Accommodation@asml.com to
initiate the company's reasonable accommodation process.
Please note: This email address is solely intended to provide a
method for applicants to initiate ASML's process to request
accommodation(s). Any recruitment questions should be directed to
the designated Talent Acquisition member for the position.
Keywords: ASML, Buena Park , Sr. Cloud Security Risk Analyst, Professions , San Diego, California
Click
here to apply!
|