Country Security Lead US

The Country Security Lead (CSL) for ASML US acts as the extension of the ASML CISO and protects and secures ASML's Intellectual property, digital assets and technologies in US, in line with ASML's Risk Appetite. The CSL for US develops and implements comprehensive security strategies for US, in alignment with the US Virtual Security Team (VST), to safeguard sensitive data against cyber and physical threats and ensure compliance with relevant regulations.

Role and responsibilities

The CSL forms and drives the VST existing of US's first and second line security representatives and other relevant stakeholders, to improve the level of security maturity in US by coordinating in-country VST security issues and initiatives to remove in-country security silos, overlaps and gaps.

While ASML in the US is actually a combination of four businesses, the CSL serves as the primary contact for the US business Line Managers (BLMs) and briefs the US BLMs on in-country risks and initiatives.

Provides ASML CISO with comprehensive status of US 1st and 2nd line Security performance against stated security objectives and standards.

• Overall: responsible for running the US security organization, driving the development and delivery of second line security services in US Challenge and verify the adequate performance of security controls in US, against ASML and US risk appetite and as executed by the first line of responsibility in the sectors in US
• Strategy: Define and execute the central security strategy as determined by the CISO and adding country specific aspects to it to improve security maturity.
• Risk management: Collaboration with the 1st line sector SRMs to identify, assess and mitigate security risks, overseeing and reporting via the US Virtual Security Team (VST). Identify improvement opportunities of 1st line sector SRMs' processes and activities and provides necessary support for improvements.
• Incident response: overseeing the development of country specific response plans, assuring the timely and thorough handling of security indents under coordination of the central Security Operations Centre
• Compliance oversight: ensuring adherence to centrally determined or country specific laws and regulations related to information security.
• Team leadership & capability building: (virtually) leading the team of security managers in US, and assure the capabilities as required by the central Second Line Security, Intelligence Fusion Centre and Security Operations Center teams are developed and maintained, as well as organizing Security activities related to risk culture and awareness initiatives
• Stakeholder engagement: Providing regular updates, in alignment with the local first line sector Security Risk Managers van the VST, to senior management in US on the status of information security in US and the central information security program.
• Security Awareness Training: Partner with the RBA&S Cultural and Transformation team to meet in-country awareness training objectives.
• Other duties as assigned.

• Bachelor's degree in Computer Science, Information Assurance or related field. Master's degree preferred.

• Minimum of 10 years Information Security experience.

• Minimum of 5 years' IT working experience.

• Enterprise Security risk expertise: Strong understanding of risk frameworks, strategic security risk mgt, policy management, and business continuity management.

• Security Risk mitigation & advisory: Ability to identify, assess, manage and monitor security risk mitigation strategies at a country level.

• Business acumen: Deep understanding of ASML business context, priorities, processes, and dependencies in US or related to US.

• Security leadership: Strong knowledge and leadership in Security Risk and Compliance, including regulatory requirements, governance, security control (frameworks) and risk management.

• Stakeholder management: Ability to engage, influence, and advise key stakeholders in the business.

• Strategic thinking: Anticipate future security risks and opportunities, translating them into effective strategies.

• Collaborate: Proven ability to build strong relationships, establish and foster interactions across levels and across teams, working closely with business leaders and risk owners to ensure security risk management is an integrated function.

• Inspire: Proven ability to set a compelling security vision, motivate teams into actions, and act as a role model for all people leaders.

• Ensure accountability: Act with a clear sense of ownership and ensures risk accountabilities are clear, accepted, and acted upon.

• Communicate effectively: Ensure transparency in risk reporting, effectively communicating risk insights to senior leadership.

• Valid industry certifications such as the Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), , Certified Cloud Security Professional (CCSP), etc.

• Experience with multiple frameworks (e.g. ISO 27001, NIST).

• Knowledge on country specific laws and regulations related to information security.

Skills

• Highly-motivated, with a strong work ethic and able to work effectively under minimal supervision.

• Able to engage with Senior Leadership in US.

• Ability to build strong, trusting relationships with technical and non-technical user base.

• Experience in driving security awareness programs and fostering a strong risk culture.
• Ability to create, review, and enforce security policies and standards across diverse business units.

  Skilled in developing and overseeing country-specific incident response plans and coordinating with SOC teams.
• Ability to define and implement security strategies aligned with organizational goals and risk appetite.
• Proven ability to communicate effectively and influence senior leadership and cross-functional teams.

Other Information

• This position is located on-site in San Diego, CA . It requires onsite presence to attend in-person work-related events, trainings and meetings and to further ensure teamwork, collaboration and innovation.

• A flexible workplace arrangement may be available to employees working in roles conducive to remote work (up to two days a week).
• Some travel will be required to other ASML offices in US, and abroad (+/- 20%).
• Routinely required to sit; walk; talk; hear; use hands to keyboard, finger, handle, and feel; stoop, kneel, crouch, twist, reach, and stretch. Occasionally required to move around the campus.
• Occasionally lift and/or move up to 20 pounds.
• Specific vision abilities required by this job include close vision, color vision, peripheral vision, depth perception, and ability to adjust focus.

• Must be willing to work in a clean room environment, wearing coveralls, hoods, booties, safety glasses and gloves for entire duration of shift.
• While performing the duties of this job, the employee routinely is required to sit; walk; talk; hear; use hands to keyboard, finger, handle, and feel; stoop, kneel, crouch, twist, reach, and stretch.

EOE AA M/F/Veteran/Disability

Potential candidates will meet the education and experience requirements provided on the above job description and excel in completing the listed responsibilities for this role. All candidates receiving an offer of employment must successfully complete a background check band any other tests that may be required.

#LI-MO1

The current base annual salary range for this role is currently:

Pay scales are determined by role, level, location and alignment with market data. Individual pay is determined through interviews and an assessment of several factors that that are unique to each candidate, including but not limited to job-related skills, relevant education and experience, certifications, abilities of the candidate and pay relative to other team members.

The Company offers employees and their families, medical, dental, vision, and basic life insurance. Employees are able to participate in the Company's 401k plan. Employees will also receive eight (8) hours of vacation leave every month and (13) paid holidays throughout the calendar year. For more information, please contact the Recruiter or click on this link Compensation & Benefits in the US.

All new ASML jobs have a minimum application deadline of 10 days.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. * 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that inclusion and diversity is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.

ASML provides reasonable accommodations to applicants for ASML employment and ASML employees with disabilities. An accommodation is a change in work rules, facilities, or conditions which enable an individual with a disability to apply for a job, perform the essential functions of a job, and/or enjoy equal access to the benefits and privileges of employment. If you are in need of an accommodation to complete an application, participate in an interview, or otherwise participate in the employee pre-selection process, please send an email to USHR_Accommodation@asml.com to initiate the company's reasonable accommodation process.

Please note: This email address is solely intended to provide a method for applicants to initiate ASML's process to request accommodation(s). Any recruitment questions should be directed to the designated Talent Acquisition member for the position.