Senior Analyst, Cybersecurity

Job's mission

As a Senior Analyst, Cybersecurity, you will strengthen ASM’s global digital foundation by embedding security into critical systems and strategic initiatives. You will collaborate across regions and functions to build resilient, scalable security capabilities that protect our people, technology, and operations. Your work enables ASM to innovate boldly and securely in a fast‑moving semiconductor landscape where reliability and trust matter more than ever.

What you will be working on

• Participate in architecture and design discussions for new solutions and initiatives.
• Partner with cross‑functional teams to integrate effective security controls into systems and processes.
• Support security investigations, assessments, and remediation efforts.
• Develop, implement, and maintain IT governance, risk, and compliance (GRC) frameworks, standards, and policies.
• Conduct cybersecurity and compliance risk assessments across technologies, processes, and business areas.
• Validate that security controls are operating effectively and consistently across teams.
• Support gap assessments, internal audits, and external audits.
• Contribute to vendor due‑diligence activities and vendor risk management.
• Participate in disaster recovery and business continuity activities, including cyber drills and business impact analysis.
• Act as a cybersecurity subject matter expert for global IT teams, business partners, vendors, and contractors.
• Engage stakeholders to ensure cybersecurity priorities align with business needs.
• Collaborate with teams across time zones, with flexibility for occasional after‑hours meetings.
• Lead or support security enhancement initiatives in areas such as OT security, AI security, and supply chain security.

What we are looking for

• Bachelor’s degree in Information Technology, Computer Science, Engineering, or a related field.
• Minimum five years of cybersecurity experience.
• Professional certifications such as CISSP, CISM, or CCSP.
• Knowledge of cybersecurity threats, vulnerabilities, hacking techniques, and exploitation methods.
• Experience with security technologies such as WAF, EDR, SSE, and DLP.
• Experience performing risk assessments, audits, and compliance monitoring.
• Knowledge of industry frameworks such as NIST.
• Strong analytical and problem‑solving skills.
• Ability to work independently and collaboratively.

What sets you apart

• Deep cybersecurity domain expertise with global exposure.
• Experience with cloud security and cloud computing environments.
• Experience developing security standards and best‑practice guidance.
• Creative and strategic thinking to identify risks and design effective mitigation strategies..