Degree Bachelor Experience 3-7 years Team Other corporate functions Job category Other job categories Travel No Reference req17974
Do you have a passion for databases and storage security? Do you wish to have an impact on how we conduct security assessments?
Then we would like to talk to you! As specialist in databases and storage security you will be part of the IT Application Security team in and work together with about 20 of your colleagues in Technology Security.
You will be responsible for conducting detailed security assessments on applications, with strong emphasize on database and storage services, assist and advice projects on security related questions and help drive the security improvements for ASML.
You will be interacting with stakeholders on different levels in in IT, but also within ASML sectors.
Undertaking of database and storage vulnerability assessments
Performing detailed security assessments on applications, databases and storage services
Assessing IT security exception requests on validity and provide advice to the team lead application security and business stakeholder for acceptance or rejection including advice on additional security controls
Ensuring the audit ability of databases and storage
Conducting, on a regular basis, security reviews of new and existing systems
Reviewing and monitoring security designs
Monitoring of existing security controls in the database and storage domain
Develop and maintain policies, standards and procedures to provide governance for database and storage security
Providing secure baselines
Utilizing in-depth knowledge of database and storage security to create implementation plans, ensuring successful completion of those plans in a timeline manner that maintains current, recommended levels of protection
Owning and promoting the security strategy for protecting databases and storage and integrating it with the wider security strategy
Researching latest best practices, make recommendations and assist in implementation of security measures for Oracle, MySQL and SQL Server databases and the associated applications to ensure the highest level of security available
Being sufficiently proficient with Database Security, features and utilities (Database Vault, Directory Services, Audit Vault, Database firewall, Advanced security option, Oracle Identity and access Management, SQL Server Configuration Manager, etc.
combining the knowledge of these tools with technology roadmaps and implementation plans to move ASML into a sustainable maturity model for database security
Candidates will need to have DBA experience in an Oracle Enterprise environment (Oracle, SQL Server and / or MySQL) and ideally experience of risk assessment, security architecture and data sanitization techniques and tools.
Also desired are skills in scripting languages (Perl, bash, ruby, python), safe backup and recovery technologies, data replication techniques, SQL, PL / SQL, and UNIX shell scripting and good OS administration skills (ideally Linux & MS SQL).
Experience with and knowledge of NetApp SolidFire and NetApp EF-Series storage systems. Experience with and knowledge of the NFS, CIFS and SMB protocols.
Academic qualifications are an advantage, but not a substitute for professional experience.
CISSP / CISM / CISA or equivalent is a plus
CCSP or equivalent is a plus
Security / Technical / IT / informatics background bachelor’s degree (or equivalent experience)
Deep Knowledge of current security technologies and governance processes
IT audit experience is a plus
Risk management experience is a plus
In-depth working knowledge of IT Risk / security frameworks and best practices, e.g. : o NIST Cyber Security Framework o ISF Standard of Good Practice for Information Security o NIST SP 800 30 framework o ISO 27001 / 2 framework
Min 6+ years of professional experience with at least 4+ years of relevant experience with a focus on databases, storage security, risk and compliance.
Experience in executing Threat and Vulnerability analysis (TVA) or IT Security risk assessments
Experience with a wide range of SAP applications is a plus (no authorization management)
Experience with Cloud security and 3rd party management
Experience in collecting information through research and interviews
Good working knowledge of Office suite applications like Excel and SharePoint
Excellent English communication and presentation skills. Command of the Dutch language is a plus
Able to operate independently / with minimal supervision, self-starter
Ability to interact with all levels including users, engineers, executives and senior managers
Analytical, precise, tenacious, autonomous
Knowledge of IT-security, Information Security and Architecture methodology
Ability to overcome organizational resistance
Excellent organizational skills and the ability to prioritize multiple tasks and assignments
Able to digest large amounts of new information quickly
Able to grasp the deep technical characteristics of new environments quickly
Able to draft clear and concise visualizations of complex processes and environments
Able to stand your ground in a flexible / changing environment
ASML creates the conditions that enable you to realize your full potential. We provide state-of-theart facilities, opportunities to develop your talents, international career opportunities, a stimulating and inspiring environment, and most of all, the dedication of a company that recognizes and rewards extraordinary performance.