Junior Security Business Analyst

Opdrachtnummer: MY20091624   |   Sluitingstijd: 05-10-2022

calendar_icon

05-10-2020 t/m 05-10-2022

pin_icon

Veldhoven

clock_icon

40 uur per week

We at ASML enable groundbreaking technology to solve some of humanity’s toughest challenges. Together with our partners, we provide leading patterning solutions that drive the advancement of microchips.

Would you like to contribute by having Security embedded in the processes and technology? Then we would like to talk to you.
As Jr. Security Business Analyst you are part of the Application Security team within the Technology Security Competence Center (TSCC) which is part of the Risk & Business Assurance (R&BA) department of ASML Corporate.

You will be responsible for analyzing (business) requirements that could require unique or specific security controls. Research security enhancements and make recommendations. Assist with the security design of IT security solutions in several domains from infrastructure to applications and where required security solutions and guidance for specific projects. Analyze and create proposals to improve processes and supporting the teams within the TSCC.
Tasks include assistance with creation of security-specific parts of the solution design in close cooperation with the overall solution designer. Aligning security designs with all relevant stakeholders on people, process and technology level. The Jr. Security Business Analyst is reporting to the Team Lead Application Security but will also assist the TSCC in a more broad sense.

The role is contributing in protection of ASML’s information, Intellectual Property (IP) and assets, and that of ASML’s customers and suppliers for the scope of the projected solution. This includes the alignment of the solution with ASML Information Security strategies and security policies/standards/ guidelines, and where necessary suggesting additions and improvement to standards.

Job Description
As Jr. Security Business Analyst you will be responsible for:
-Being a point of contact for the internal organization, projects and Information security subjects within agile teams;
-Analyze and define processes for Architecture and Security Services;
-Prepare reporting;
-Leverage expertise from individual departments and teams;
-Assist internal projects;
-Build excellent working relationships and interact with stakeholders in-, but also out-side the TSCC

Education
-Bachelor / Master;
-Experience with Cyber security;
-Studying for / or industry (associate) certifications such as the Certified Information Systems Security Professional (CISSP) or Cloud Security (CCSP) are a plus;
-Security/Technical/IT/informatics background bachelor’s degree (or equivalent experience);
-Knowledge of current IT Security technologies and governance processes;
-Knowledge of IT audit processes is a plus;
-Knowledge of Scaled Agile Frameworks (SAFe) is a plus

Experience
-More than 2 years of experience in the field of IT Security and analysis;
-Experience with both business as well as technical side of IT Security and information security;
-Knowledge of aspects of IT infrastructure and applications;
-Knowledge of Microsoft Azure IAAS/PAAS and of other Cloud platforms (e.g. Google, AWS);
-Assist with translating the output of security (risk) assessment into security design;
-Communicating with Stakeholders, users, engineers, senior management;
-Good working knowledge of Office suite applications like Excel, SharePoint and Teams

Personal skills
-Excellent English communication and presentation skills. Command of the Dutch language is a plus;
-Able to operate independently/with minimal supervision, self-starter;
-Ability to interact with all levels including users, engineers, executives and senior managers;
-Analytical, precise, tenacious, autonomous;
-Knowledge of IT-security, Information Security and Architecture methodology;
-Ability to overcome organizational resistance;
-Excellent organizational skills and the ability to prioritize multiple tasks and assignments;
-Able to:
-digest large amounts of new information quickly
-grasp the deep technical characteristics of new environments quickly
-draft clear and concise visualizations of complex processes and environments
-stand your ground in a flexible / changing environment