Cloud Security Risk Manager - San Diego, CA, United States - ASML

    ASML
    ASML San Diego, CA, United States

    Found in: Jooble US O C2 - 1 week ago

    Default job background
    Description

    ASML US, including its affiliates and subsidiaries, bring together the most creative minds in science and technology to develop lithography machines that are key to producing faster, cheaper, more energy-efficient microchips.

    We design, develop, integrate, market, and service these advanced machines, which enable our customers - the world's leading chipmakers - to reduce the size and increase the functionality of their microchips, which in turn leads to smaller, more powerful consumer electronics.

    Our headquarters are in Veldhoven, Netherlands, and we have 18 office locations around the United States including main offices in Chandler, Arizona, San Jose and San Diego, California, Wilton, Connecticut, and Hillsboro, Oregon.

    The mission of the Information Management department is to unleash R&D's full potential by maximizing productivity.

    As Cloud Security Risk Manager, you will be part of a creative and dynamic team that collaborates to solve challenges that impact the R&D organization.

    This role focuses on information security in the cloud (IaaS / PaaS), supporting Development & Engineering, Business Line Applications, Corporate Intellectual Property, Research & System Engineering.

    You will ensure that information security risks do not exceed our risk appetite by identifying and assessing risks in both existing and proposed applications – recommending mitigating controls from our cloud security framework.

    Additionally, this role will have a wide range of internal interfaces with multiple IT teams, Customer Support, Operations and Risk & Business Assurance.

    You will also interface with other programs, projects and agile teams – as well as R&D team members based out of Europe.

    This position requires access to controlled technology, as defined in the Export Administration Regulations (15 C.Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.

    Perform information security risk assessments on new cloud initiatives; lead architectural design reviews, recommending mitigating controls and driving their implementation.

    Routinely align with other cloud security competences within the security community on security matters linked to R&D information assets.

    Ensure compliance with all security policies, standards and regulations for controlled technology.

    Serve as an authority on AI security, advising the security risk management team, developers, and project managers on standard processes and security measures.

    Work closely with Legal, Privacy and corporate AI committee to ensure a comprehensive security posture for all AI initiatives.

    Perform generic risk assessments and/or arrange penetration tests on existing cloud-based applications; registering risks, recommending controls and driving the mitigation of those controls.

    Contribute towards the improvement of business managed equipment policies, processes and organization within R&D.
    Bachelor's degree in Information Security, Audit, Cloud Computing or combination of education and/or equivalent related work experience.
    3-5 years proven experience in cloud security with a firm understanding of architecture, design and concepts.
    familiarity with related cloud security frameworks and best practices.
    Solid knowledge on IaaS and PaaS (information) security risks pertaining to Microsoft Azure and Google Cloud Platform.
    Experience with hybrid multi cloud a plus.
    Demonstrates ownership and accountability, following through on assignments with minimal supervision
    Ability to understand and translate information security threats and vulnerabilities into business risk for stakeholders
    Ability to think strategically for long-term vision in terms of culture, behavior, business processes and tools, yet can tailor solutions to be fit-for-purpose and deliver quick wins
    3 days onsite, 2 days remote.

    Must be willing to work in a clean room environment, wearing coveralls, hoods, booties, safety glasses and gloves for entire duration of shift.

    EOE AA M/F/Veteran/Disability

    Potential candidates will meet the education and experience requirements provided on the above job description and excel in completing the listed responsibilities for this role.

    Pay scales are determined by role, level, location and alignment with market data. Diversity and inclusion

    It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity.

    We recognize that diversity and inclusion is a driving force in the success of our company.
    % %%finance%%