to the jobOur PLM and Configuration Management department is responsible for delivering solutions that push the limits of technology to unlock the business value of digital design and Product Lifecycle Management (PLM). We deliver cutting-edge PLM solutions to solve some of ASML’s toughest challenges. Together with our partners, and based on global best practices, we deliver the digital foundation of product innovation. In this role you'll be the bridge between the PLM functional and IT-technical areas.It will be your goal to design and implement best possible security solutions to secure our PLM applications and related IT Infra and make sure the risks are pro-actively mitigated according to ASML’s security policies and guidelines.Role and responsibilitiesAs IT PLM Security Architect/Tech lead, and being a PLM / IT Security Subject Matter Expert (SME), you will work closely together with the IT PLM System Architects, IT and D&E Security teams on the security related topics, risks and guidelines for IT PLM solution teams. You'll help the Agile Release Train teams by translating security policies and standards to actionable security requirements to ensure “secure by design”.You'll drive the definition & creation of the IT PLM security roadmap and related epics/features both short and long term and this in alignment with the overall IT security roadmap. You'll act as a product owner and lead an PLM security agile team. You (and your team) will identify risks, weaknesses, vulnerabilities and short comings in the currently applied security measures and data access controls and make sure mitigation actions are defined and executed according plan. You will report upon the security posture and progress and escalate where applicable to stakeholders.As Teamcenter Security Architect/Technical Lead you'll:Develop and maintain a comprehensive Teamcenter Security Roadmap covering both application and infrastructure layersDefine and enforce access control models (e.g., ACLs, RACs, project-based security)Design and implement data classification, encryption, and secure collaboration strategiesAct as a Product Owner of the PLM Security team and Interact with key stakeholders on team level, PO's and the trains 'Leading Coalition' (RTE, CPO, System Architect)Define and prioritize the security product backlog including timely implementation of export control compliance rules.Collaborate with PLM and DevOps teams to ensure secure development and deployment practices.Education and experienceTo help us tackle the technical challenges we face, you’ll need experience working on HighTech products and with complex processes. As Teamcenter Security Architect/ Technical Lead, you’ll need:Master’s degree, preferably in IT/Computer Science or Engineering field10-15 years of experience as a PLM Security Architect/Manager or in similar role in a high-tech complex environmentRelevant and proven experience in large PLM application environments with regards to IT security in the area of access- and data model, export controls in Teamcenter Unified ArchitectureExperience with one or more international security standards and best practices like ISO27001, NIST CSF, OWASP, CSA framework and CIS baselines (certification is preferred)Relevant experience regarding Export control compliancy regulationsSound understanding of TcSS with enterprise IAM solution (e.g., LDAP, SSO, MFA)Conversant with network firewalls, Windows group policies, cloud securityKnowledge of ISO 27001, NIST, other cybersecurity frameworksAbility to manage vulnerability assessments, penetration testing, and incident response planningSkilled in Agile & SAFE way of workingTechnical Skills:You must be an expert in the following TC modules:Access ManagerADA Licensing – ITAR/IPClassificationActive Workspace (AWC)Teamcenter BMIDE, SOA and ITK APIsInfrastructure & Cybersecurity (Preferred)Preferred Certifications:Siemens Certified Teamcenter ProfessionalAWS Certified Security – Specialty or Azure Security Engineer AssociateCISSP, CISM, or CISAAgile PO/PMSkillsWorking at the cutting edge of tech, you’ll always have new challenges and new problems to solve – and working together is the only way to do that. You won’t work in a silo. Instead, you’ll be part of a creative, dynamic work environment where you’ll collaborate with supportive colleagues. There is always space for creative and unique points of view. You’ll have the flexibility and trust to choose how best to tackle tasks and solve problems. To thrive in this job, you’ll need the following skills:‘Security by Design’ mindsetHigh level of initiative, accountability, and strategic thinkingAbility to lead cross-functional teams and mentor junior architectsStakeholder management and excellent communication skillsStrong analytical thinking and problem-solving abilitiesThis position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.Diversity and inclusionASML is an Equal Opportunity Employer that values and respects the importance of a diverse and inclusive workforce. It is the policy of the company to recruit, hire, train and promote persons in all job titles without regard to race, color, religion, sex, age, national origin, veteran status, disability, sexual orientation, or gender identity. We recognize that diversity and inclusion is a driving force in the success of our company.Need to know more about applying for a job at ASML? Read our .
