Teamcenter Security Architect/Technical Lead

Introduction to the job

Our PLM and Configuration Management department is responsible for delivering solutions that push the limits of technology to unlock the business value of digital design and Product Lifecycle Management (PLM). We deliver cutting-edge PLM solutions to solve some of ASML’s toughest challenges. Together with our partners, and based on global best practices, we deliver the digital foundation of product innovation. In this role you'll be the bridge between the PLM functional and IT-technical areas.

It will be your goal to design and implement best possible security solutions to secure our PLM applications and related IT Infra and make sure the risks are pro-actively mitigated according to ASML’s security policies and guidelines.

Role and responsibilities

As IT PLM Security Architect/Tech lead, and being a PLM / IT Security Subject Matter Expert (SME), you will work closely together with the IT PLM System Architects, IT and D&E Security teams on the security related topics, risks and guidelines for IT PLM solution teams. You'll help the Agile Release Train teams by translating security policies and standards to actionable security requirements to ensure “secure by design”.

You'll drive the definition & creation of the IT PLM security roadmap and related epics/features both short and long term and this in alignment with the overall IT security roadmap. You'll act as a product owner and lead an PLM security agile team. You (and your team) will identify risks, weaknesses, vulnerabilities and short comings in the currently applied security measures and data access controls and make sure mitigation actions are defined and executed according plan. You will report upon the security posture and progress and escalate where applicable to stakeholders.

As Teamcenter Security Architect/Technical Lead you'll:

• Develop and maintain a comprehensive Teamcenter Security Roadmap covering both application and infrastructure layers

• Define and enforce access control models (e.g., ACLs, RACs, project-based security)

• Design and implement data classification, encryption, and secure collaboration strategies

• Act as a Product Owner of the PLM Security team and Interact with key stakeholders on team level, PO's and the trains 'Leading Coalition' (RTE, CPO, System Architect)

• Define and prioritize the security product backlog including timely implementation of export control compliance rules.

• Collaborate with PLM and DevOps teams to ensure secure development and deployment practices.

Education and experience

To help us tackle the technical challenges we face, you’ll need experience working on HighTech products and with complex processes. As Teamcenter Security Architect/ Technical Lead, you’ll need:

• Master’s degree, preferably in IT/Computer Science or Engineering field

• 10-15 years of experience as a PLM Security Architect/Manager or in similar role in a high-tech complex environment

• Relevant and proven experience in large PLM application environments with regards to IT security in the area of access- and data model, export controls in Teamcenter Unified Architecture

• Experience with one or more international security standards and best practices like ISO27001, NIST CSF, OWASP, CSA framework and CIS baselines (certification is preferred)

• Relevant experience regarding Export control compliancy regulations

• Sound understanding of TcSS with enterprise IAM solution (e.g., LDAP, SSO, MFA)

• Conversant with network firewalls, Windows group policies, cloud security

• Knowledge of ISO 27001, NIST, other cybersecurity frameworks

• Ability to manage vulnerability assessments, penetration testing, and incident response planning

• Skilled in Agile & SAFE way of working

Technical Skills:

You must be an expert in the following TC modules:

• Access Manager

• ADA Licensing – ITAR/IP

• Classification

• Active Workspace (AWC)

• Teamcenter BMIDE, SOA and ITK APIs 

• Infrastructure & Cybersecurity  (Preferred)

Preferred Certifications:

• Siemens Certified Teamcenter Professional

• AWS Certified Security – Specialty or Azure Security Engineer Associate

• CISSP, CISM, or CISA

• Agile PO/PM

Skills

Working at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems. To thrive in this job, you’ll need the following skills:

• ‘Security by Design’ mindset

• High level of initiative, accountability, and strategic thinking

• Ability to lead cross-functional teams and mentor junior architects

• Stakeholder management and excellent communication skills

• Strong analytical thinking and problem-solving abilities

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.