Medior Security Analyst - Security Incident Response Team
Veldhoven, Building 46, Netherlands
Applications have closed
ASML
ASML gives the world's leading chipmakers the power to mass produce patterns on silicon, helping to make computer chips smaller, faster and greener.As a Medior Security Analyst you are a pivotal member of Security Incident Response Team. Responsible for conducting detailed analysis of security incidents, developing detection techniques, and executing containment and response actions you resolve medium complexity incidents.
Role and responsibilities
The Security Incident Response Team (SIRT) as part of the Security Operations Center within ASML minimizes the damage caused by threat actors bypassing ASML preventative security controls through real time detection & response and therefore protecting ASML assets. By constantly acting on alerts, improving and adapting our monitoring controls you enable ASML to operate in an increasingly hostile environment.
In this position, you have 3 main focus points:
Security Monitoring: Continuously monitor security alerting systems for signs of malicious activity or anomalies, adhering to the 24/7 operational requirements of the SOC.
Incident Handling: Conduct in-depth analysis and investigation of escalated security incidents, determining scope, impact, and remediation steps.
Response Coordination: Lead the coordination of response activities for less complex confirmed incidents, ensuring timely and effective mitigation.
Additionally you will participate in the continual improvement of detection and response capabilities both on a technical level as well as through mentoring and self development on a people level. This role requires a deeper understanding of cyber threats and the ability to mentor junior analysts.
The Security Expertise Community has approx. 250 FTE across ASML. Together with the rest of the community, you protect ASML’s assets and you’re at the center of everything that’s digitally exchanged.
Education and experience
Ideally, we are looking for a team player and critical thinker, having a keen sense of how to manage internal- and external stakeholders under pressure. You have the capacity to analyze complex security events and make informed decisions quickly. You are able to recognize patterns indicative of security threat or anomalies and show the ability to identify potential events of interest to correlate during investigations. Naturally, SOC is team work, collaborating and working effective with your peers is important.
Some key competences that come natural to you in this position:
3+ years of experience in security, specifically in operations roles with a proven track record of handling incidents.
Bachelor’s degree in Computer Sciences, Information Technology, Cybersecurity or related field working and thinking level.
Strategic Thinking: Ability to assess incidents from a strategic perspective, understanding their broader impact on the organization.
Technical Proficiency: Advanced technical skills in analyzing threats, vulnerabilities, and exploits.
Leadership: Capability to lead incident response efforts and mentor junior team members effectively.
Innovation: Continuously seeks to improve detection capabilities and response strategies.
A CISSP, GCIH, GCFA or similar certificate is highly regarded.
Other information
This role requires the ability to work in fast-paced environment, often under pressure.
The position may involve shift-work or on-call duties to provide 24/7 coverage for the organization’s security operations.
The role is primarily office-based, with the possibility of remote working depending on the organization’s policies
You are in possession of a valid work permit for The Netherlands.
If you don’t meet the above mentioned requirements, and you still feel your profile is a great match with this job description, please apply and we’d like to get in touch.
This position requires access to controlled technology, as defined in the Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.
Diversity and inclusion
ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.
Need to know more about applying for a job at ASML? Read our frequently asked questions.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: C CISSP Exploits GCFA GCIH Incident response Monitoring SOC Vulnerabilities
Perks/benefits: Team events
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.