Job mission

In order to manage the Security First Line of Defense within IT, the Assurance & Resilience department has been created. For this department we are looking for a IT Continuity & Cybersecurity Resilience Specialist.

The IT Continuity & Cybersecurity Resilience Specialist is pivotal in safeguarding the organization’s digital infrastructure and ensuring its resilience based on information security resources and capabilities in place (e.g., people, hardware, software, policies). This role is dedicated to provide IT Sector with the assurance that the Continuity and Resilience features, practices, procedures, and architecture of our information systems accurately mediate and enforce our IT BCM security policies & standards. In case of incompliance, the IT Continuity & Cybersecurity Resilience Specialist proactively intervenes, and drives mitigations and improvements.

The role involves close collaboration with various IT subsectors and departments to integrate IT Continuity and Cyber Resilience into every facet of the organization’s operations, thereby enabling secure and efficient business processes.

Ultimately, the mission is to establish a strong resilience posture that supports the organization’s goals and objectives, builds stakeholder trust, and ensures business continuity in the context of the evolving threat landscape.

Job description

As a IT Continuity & Cybersecurity Resilience Specialist you are part of a team that will work interchangeable on our Respond and Recover capabilities, within several areas. The capabilities cover (a.o.) the following topics:

Response and Recovery strategy and plansMonitor, measure, and report on adherence to policies and standards ( such as IT RTO/RPO standards )Crisis Management PlansExercise and test means and methods

Working as a IT Continuity & Cybersecurity Resilience Specialist gives you a wide range of responsibilities and deliverables. A grasp of what you can expect in this position:

Support with translating BCM and security policies and standards into requirements and controls for the purpose of deploymentTrain and educate operational teams in to reach a higher level of compliancyMonitor and evaluate compliancy of operational teams to get a better insight into incompliancyDrive the execution of mitigation plan and review to confirm that actions were effectiveCreate, share and present reporting with insight into compliancyEvaluate, learn and continuously improve from mitigation efforts creating and executing an improvement planWork with other 2nd Line colleagues to align on policies and standards.

Skills

Technical skills:

Strong understanding of IT infrastructure, enterprise architecture, cloud environments, and cybersecurity principles.Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001 / 22301).Experience with disaster recovery scenario's, continuity plans, crisis management plansFamiliarity with cloud based continuity best practices and solutions.Knowledge of continuity best practices and compliance requirements.

Analytical skills:

Ability to analyze complex continuity issues and develop effective recovery strategies.

Interpersonal skills:

Strong collaboration and teamwork skills.Sensitive to organization maturity in relation to adoption of resilience concepts.Ability to manage multiple priorities and work under pressure.Decisive personality, taking responsibility.Ability to explain technical concepts to non-technical stakeholders.Strong presentation and training skills.

Educational and professional qualifications:

Academic working and thinking level; a Bachelor’s degree in Computer Science, Information Security, or an equivalent is preferred.5-7 years of experience in a role with focus on IT Continuity, Cyber Resilience or Assurance and Compliance.Relevant certifications such as FBCI, CRISC, CBCP, CBCM, CISSP, CISM or CISA.Understanding of GDPR, NIST 800-34, ISO 27001, ISO 22301 and other industry-specific resilience requirements.

If you don’t meet the above-mentioned requirements, or only a part of them, and you still feel your profile is a great match with this job description, please apply and we’d like to get in touch.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.