Job Properties
  • Job Type
    Full-time Position
  • Background
  • Languages
  • Experience Required
    1 - 2 Years
  • Degree Required
    • Province
    • Date Posted
      November 05,2020
    • IMG_6430
    • Career Consultation
    • CV CHECK
    • internship package
    • Premium Package

    Security Incident Responder - Computer Security Incident Response Team


    ASML brings together the most creative minds in science and technology to develop lithography machines that are key to producing faster, cheaper, more energy-efficient microchips. We design, develop, integrate, market and service these advanced machines, which enable our customers - the world’s leading chipmakers – to reduce the size and increase the functionality of their microchips, which in turn leads to smaller, more powerful consumer electronics.

    The Cyber Defense Center (CDC) within ASML (Veldhoven office) through real time detection & response minimizes the damage caused by threat actors bypassing ASML preventative security controls and protecting ASML information.
    By constantly acting on alerts, improving and adapting our monitoring controls we enable ASML to operate in an increasingly hostile environment.
    We work closely together with other security functions and other ASML teams utilizing our shared in depth knowledge in this effort to secure the business for all our stakeholders.
    To improve our Incident response services we are looking for a professional in this area to complement our growing team.

    Job Mission

    You continually watch and respond to security alerts (triage) and work with the Security Operations Center in escalations of notable incidents. You participate in continuous process improvements in order to keep up with the developing threat landscape.

    Job Description

    • Supporting the security monitoring and incident response services by operating security monitoring and incident response tools to protect ASML;
    • Carry out a periodic dedicated analyst role to be the single point of contact for the SOC and standby role outside business hours;
    • Provide guidance L1 SOC analysts;
    • Create and optimize playbooks and workflows both for the SOC and for the CSIRT


    Bachelor or Master’s degree in cyber security, Computer science or equivalent


    • 0-1 years of experience working in an analyst/incident responder role within an enterprise environment

    Knowledge of:

    • Security ticketing systems and basic SOC procedures
    • Security tools e.g. log management tools, endpoint and network security controls
    • Networking concepts, including TCP/IP protocols and network topology
    • Basic familiarity with scripting programming e.g. Bash, PowerShell, Python
    • The Cyber Kill Chain & MITRE ATT&CK framework
    • Vulnerabilities, research & testing, tinkering and pulling things apart
    • The current vulnerabilities, response, and mitigation strategies used in cyber security;
    • Willing to work in 24/7 shifts / outside office hours

    Personal skills

    • Ability to take decisive action based on available information in a timely manner;
    • Ability to research and characterize security threats to include identification and classification of threat indicators;
    • Critical thinking and contextual analysis abilities;
    • Investigative and analytical problem solving skills;
    • Teamwork, can-do mentality;
    • Strong time management skills and willing to go above and beyond where required

    Other information

    ASML does not accept unsolicited resumes from any agencies that have not signed a mutual service agreement. All unsolicited resumes will be considered ASML’s property, and ASML will not be obligated to pay a referral fee. This includes resumes submitted directly to hiring managers without contacting the Resource Center Department.

    ASML is GDPR compliant, therefore we cannot process applications sent outside of our recruitment system.

    If you are interested in this vacancy please apply.

    Open Positions from ASML
    Related positions