Security Automation Engineer

Introduction to the job

As a security automation engineer, you play a crucial role to enhance ASML’s ability to proactively detect, respond to, and mitigate security threats.

Role and responsibilities

We are seeking a highly motivated and experienced Security Automation Engineer to join our team. In this role, you will develop and implement security automation solutions to streamline the detection and remediation of security threats. You will collaborate closely with cross-functional teams to design and implement secure automation processes that align with organizational goals and proactively identify areas where security processes can be automated to improve efficiency, minimize manual intervention, and reduce the overall risk to the organization.  

You ensure continuous improvement on existing automation workflows, tools and processes based on lessons learned from past security incidents, new threat intelligence, and changing business requirements.  You stay up to date with emerging security threats and trends and participate in ongoing research of new security technologies, automation frameworks, and threat intelligence sources to improve the organization’s security posture.  

• Leverage automated tools to quickly identify, investigate, and respond to security incidents across the organization’s infrastructure, both on-premises and in the cloud.  

• Develop and fine-tune detection and response playbooks for common security incidents ensuring that these playbooks are fully automated within SOAR systems.  

• Automate security audits, compliance checks and evidence collecting and reporting for industry standards using scripting, configuration management tools and security tools, ensuring continuous compliance across cloud and on-premises environments.  

• Design, develop and consume Restful and GraphQL APIs for System integrations. 

• Implementing and Managing data platforms, working with ETL (Extract, Transform, Load) pipelines to move and process data across platforms, using event-driven architecture for real time data processing.

• Automate the configuration and security of Azure and Kubernetes resources in a secure and scalable manner.  

• Deploy and manage Kubernetes clusters, ensuring security best practices are applied in a containerized environment.  

Education and experience

This position requires hands on experience and expertise in security engineering, scripting and automation tools to improve the efficiency of security operations while minimizing risks. The ideal candidate will also have:

• Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field. 

• At least 5 years of experience in security operations, security engineering, or automation engineering, preferably within an enterprise environment. 

• Hands-on experience with security tools and frameworks used for automation in network security, vulnerability management, and incident response. 

• Strong knowledge of security operations, incident detection, and response automation, including automated playbook creation and management.  

• Hands-on experience with network security, including firewalls, intrusion detection systems, and vulnerability management tools.  

• Expertise in automation scripting languages (Python, PowerShell, Bash), experience with SOAR tools for automating and orchestrating security processes.  

• Experience in design, building and maintaining of Automation platforms.

Skills

You are a team player, self-starting who enjoys driving improvements, looks ahead, helps to design the roadmap and takes accountability. In this role, you will support, coach and guide others within the team on a technical level.

• Design, develop, and maintain security automation solutions to reduce manual interventions in security processes. 

• Strong familiarity with DevSecOps practices, integrating security into CI/CD pipelines using tools like Azure DevOps and automation tools.

• Solid understanding of Linux and Windows OS security configurations, vulnerability management, and patch automation.  

• Familiarity with network protocols, security protocols, and encryption standards. 

• Strong analytical and problem-solving skills. 

• Excellent communication and collaboration abilities to work with cross-functional teams. 

• Ability to think critically and work under pressure in high-stakes situations. 

• Detail-oriented with the ability to understand and prioritize risk. 

• Expertise in Kubernetes and container security, including deploying, managing, and securing Kubernetes clusters.  

Other information

Are you interested in this role? Please apply with your CV and cover letter, detailing your motivation for this position.

Additional relevant certifications in cybersecurity, automation, or cloud platforms would be advantageous. 

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.