Senior Core Security Engineer

Veldhoven, Building 03, Netherlands

ASML

ASML gives the world's leading chipmakers the power to mass produce patterns on silicon, helping to make computer chips smaller, faster and greener.

View all jobs at ASML

Apply now Apply later

Introduction to the job

We are looking for a skilled and detail-oriented Core Security Engineer to strengthen our security posture and ensure compliance across all levels of our Java-based applications and infrastructure. The ideal candidate will focus on security architecture, risk analysis, and vulnerability management while working closely with our development and DevSecOps teams to implement security controls and ensure robust compliance.

Role and responsibilities

  • Conduct thorough security assessments, including risk analysis, threat modeling, and vulnerability assessments.

  • Collaborate with DevSecOps teams to integrate security tools into CI/CD pipelines and ensure effective security testing (SAST, DAST, SCA).

  • Implement and manage secret management and access control policies across all environments.

  • Ensure security best practices in cloud, container, and on-premise environments (e.g., GCP, Docker, Kubernetes).

  • Monitor security incidents and support the incident response process.

  • Lead initiatives to implement and uphold industry compliance standards (e.g., SOC 2, EU CRA, ISO, NIST).

  • Develop and maintain security policies, standards, and guidelines.

  • Conduct training and knowledge-sharing sessions to promote security awareness. Educate and guide product, development, and operations teams on security best practices, fostering a strong security culture.

Education and Experience

  • A Bachelor or Master in a technical field

  • 3+ years of experience in security engineering or related roles.

  • Strong background in Java security, secure coding practices, and risk assessment.

  • Proficient in security assessment tools (e.g., SonarQube, Checkmarx, OWASP ZAP, Trivy) and hands-on experience with SAST, DAST, and SCA.

  • Familiarity with infrastructure as code tools (e.g., Terraform, Ansible) and CI/CD pipelines.

  •  Expertise in cloud and container security (AWS, Docker, Kubernetes).

  • In-depth knowledge of industry standards and frameworks (CIS, MITRE, ISO, NIST) and compliance standards (SOC 2, EU CRA).

  • Excellent analytical, problem-solving, and communication skills.

Nice to have

  • Experience with SIEM tools (e.g., Splunk, ELK) for monitoring and threat detection.

  • Knowledge of incident response and risk management frameworks.

Skills

  • Excellent collaboration and communication skills with technical and non-technical people

  • You have a passion for security.

  • You’re able to motivate your team, foster collaboration, and give directions

  • You’re enthusiastic about solving complex problems and translating them into modern, elegant and simple solution

  • You like to discuss technical challenges and you’re motivated to push the boundaries of technology

Other information

Please add your complete, recent CV and cover letter for this position to your application. We can't process your application without the above-mentioned documents. Need to know more about applying for a job at ASML? Read our frequently asked questions.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  6  0  0

Tags: Ansible AWS C Checkmarx CI/CD Cloud Compliance DAST DevSecOps Docker ELK GCP Incident response Java Kubernetes Monitoring NIST OWASP Risk analysis Risk assessment Risk management SAST Security assessment SIEM SOC SOC 2 SonarQube Splunk Terraform Threat detection Vulnerability management

Region: Europe
Country: Netherlands

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.