Advanced Security Analyst – Security Incident Response Team

Introduction to the job

As an Advanced Security Analyst, you will take on a balanced role, focusing equally on monitoring security alerts (Cyber, IT, OT, DLP, Physical) and enhancing detection and response capabilities.

Role and Responsibilities

You will be responsible for primarily focused on analyzing medium-to-high risk incidents, fine-tuning detection systems, and executing security improvements. Additionally, you will act as a subject matter expert (SME) for specific security technologies or threat domains.

This role requires a deeper understanding of cyber threats and provides the opportunity to mentor junior analysts while driving improvements in security processes, tools, and techniques.

The Security Incident Response Team (SIRT) operates within the Security Operations Center (SOC) to detect and mitigate security threats in real time. As an Advanced security Analyst, you will be responsible for both operational security monitoring and security improvements.

In this role, you will: 

• Actively monitor security alerts for malicious activity or anomalies, ensuring swift response.

• Investigate, prioritize, and respond to security incidents, escalating as needed.

• Recognize patterns of attack, correlate related events, and identify indicators of compromise (IoCs).

• Reduce false positives and enhance detection accuracy by refining security monitoring rules.

• Implement improvements in SOC security technologies.

• Contribute to automating routine security tasks to improve efficiency.

• Assist in training and mentoring junior analysts to improve team capabilities.

Education and experience

We seek a critical thinker and team player with experience in security operations who can analyze security threats and implement improvements proactively. The ideal candidate will have:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or equivalent work experience.

• 3+ years in security operations, with hands-on experience in SIEM, EDR, and threat detection.

• Preferred certifications include GCIH, GCFA, CISSP, or equivalent.

Skills

• Strategic Thinking – Ability to assess incidents and understand their broader impact.

• Technical Proficiency – Strong knowledge of threat analysis, vulnerabilities, and security tools.

• Leadership – Ability to mentor junior analysts and drive security enhancements.

• Innovation – Proactively seek opportunities to improve security monitoring and response strategies.

Other Information

• The role may involve shift work or on-call duties to provide 24/7 security coverage.

• This position is primarily office-based, with the possibility of remote work.

• A valid work permit for the Netherlands is required.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.