阿斯麦 · RBA SF Country Facing CN

Risk & Assurance Manager (with strong Security Expertise), China

Salary negotiable  /  Working experience not required  /  Shanghai

2024-06-14 Update

The job requires you to fill in extra information

APPLYAFTERSCANE

因联合利华仅允许通过微信端网申
请注册/登录后直接点击“立即投递”扫码到微信端填写简历

Scan and start referral
with gift!

Referral

If you find this job has any violation, please report it.

Success

3 seconds to close

Report

Job Type

  • Recruitment Type:Experienced
  • Work Type:Full-Time

Job descriptions

The Risk & Assurance Manager (RAM) for ASML China will be responsible for all aspects of risks (as defined in the ASML Risk Universe, with an expertise in Security) across the ASML China locations as the Second Line Risk Manager within the 3-Line of Responsibility setup at ASML.

The RAM is part of the RBA country facing team and will provide an integrated risk management methodology, including risk and control principles and risk competency development for the 1st Line to carry their accountability and responsibility, to be in control through proactive identification, assessment, prioritization, treatment and monitoring of key (security) risks in China.

The RAM China challenges and verifies management of key risks and controls by the 1st line while keeping oversight of risks and controls and uniformly reporting these to senior management in China.

The RAM China will coordinate (Security) Awareness training in China and operationalize the knowledge Protection Program champions within and the RAM China will represent the region in global security initiatives to help shape a truly global integrated risk management process.

Responsibilities

Ensure Risk Management Methodology, including risk and control principles and risk competencies (and their development where required) are embedded across the China environment.

Be the China advisory role towards 1st Line for China, aligned with RBA Policies, Standards and the Risk Control Framework.

Act as a team player in the RBA country team, together with global RBA team ensuring that China Risks, Incidents and Controls obtain the proper level of attention.

Challenge and verify the management of China key risks and controls by the 1st Line, by validating evidence.

Drive the in-country Virtual Security Team (VST) in China and coordinate and follow-up on actions defined in the VST and report to country management.

Maintain insight and oversight of China security incidents, risks and controls and report to country management.

Deliver input for the China Risk Landscape and other risk assessments, form security perspective in particular, by performing risk analyses.

Coordinate RBA security awareness activities in China in collaboration with 1st line Security Risk Managers (SRM) and the primary Veldhoven security contact(s).

Provide support in China regulatory (security) compliance projects for internal and external laws and regulations.

Act as 1st Line Security Risk Manager contact for any sector that does not have their own SRM in China yet (temporarily).

Some travel will be required to other ASML offices in the country, and abroad (+/- 10%)

Key Working Relationships

Internal: ASML China IT, ASML Security Functions, RBA, China country management

External: Security Vendors, Customers, Suppliers, Industry Peers and Forums

Requirements

Essential Skills & Experience (key competencies)

Minimum of 10 years work experience in risk management domain including at least 5 years of Information Security experience

Able to engage Senior Leadership to translate Information Security Risk into actionable Business concepts.

Ability to build strong, trusting relationships with technical and non-technical user base.

Extensive experience in planning innovative strategic security improvement programs.

Skills

Independent achiever working in remote conditions and time zones.

Able to influence geographic separated peers.

Excellent leadership, influencing and interpersonal skills.

Solid project management experience.

Able to summarize and communicate technical data to a non-technical audience.

Sound understanding of security technologies, techniques and best practices.

Excellent analytical skills.

Excellent verbal and written communication skills in English and Mandarin.

Highly-motivated, with a strong work ethic and able to work effectively under minimal supervision.

Certifications and/or Membership

Master’s degree in Information Science/Security or equivalent experience.

Valid industry certifications such as the Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Cloud Security Professional (CCSP), etc.

Experience multiple frameworks (ISO 27001, NIST, CIS

20).

Diversity and inclusion

ASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.

Need to know more about applying for a job at ASML? Read our frequently asked questions.

Job qualifications

see above

Job requirements

  • Degree:Bachelor
  • Work Experience:Working experience not required
  • Language:Not Required