Security Automation Engineer

Enhance ASML’s Security Posture as a Security Automation Engineer

Introduction to the job

Be part of progress. As a Security Automation Engineer, you play a crucial role in enhancing ASML’s ability to proactively detect, respond to, and mitigate security threats.

Role and responsibilities

We are seeking a highly motivated and experienced Security Automation Engineer to join our team. In this role, you will develop and implement security automation solutions to streamline the detection and remediation of security threats. You will collaborate closely with cross-functional teams to design and implement secure automation processes that align with organizational goals and proactively identify areas where security processes can be automated to improve efficiency, minimize manual intervention, and reduce the overall risk to the organization.

You will ensure continuous improvement on existing automation workflows, tools, and processes based on lessons learned from past security incidents, new threat intelligence, and changing business requirements. Staying up to date with emerging security threats and trends, you will participate in ongoing research of new security technologies, automation frameworks, and threat intelligence sources to improve the organization’s security posture.

• Leverage automated tools to quickly identify, investigate, and respond to security incidents across the organization’s infrastructure, both on-premises and in the cloud.
• Develop and fine-tune detection and response playbooks for common security incidents, ensuring that these playbooks are fully automated within SOAR systems.
• Automate security audits, compliance checks, and evidence collection and reporting for industry standards using scripting, configuration management tools, and security tools, ensuring continuous compliance across cloud and on-premises environments.
• Design, develop, and consume Restful and GraphQL APIs for system integrations.
• Implement and manage data platforms, working with ETL (Extract, Transform, Load) pipelines to move and process data across platforms, using event-driven architecture for real-time data processing.
• Automate the configuration and security of Azure and Kubernetes resources in a secure and scalable manner.
• Deploy and manage Kubernetes clusters, ensuring security best practices are applied in a containerized environment.

Education and experience

This position requires hands-on experience and expertise in security engineering, scripting, and automation tools to improve the efficiency of security operations while minimizing risks. The ideal candidate will also have:

• Bachelor’s or Master’s degree in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field.
• At least 5 years of experience in security operations, security engineering, or automation engineering, preferably within an enterprise environment.
• Hands-on experience with security tools and frameworks used for automation in network security, vulnerability management, and incident response.
• Strong knowledge of security operations, incident detection, and response automation, including automated playbook creation and management.
• Hands-on experience with network security, including firewalls, intrusion detection systems, and vulnerability management tools.
• Expertise in automation scripting languages (Python, PowerShell, Bash), and experience with SOAR tools for automating and orchestrating security processes.
• Experience in designing, building, and maintaining automation platforms.

Skills

You are a team player and self-starter who enjoys driving improvements, looks ahead, helps to design the roadmap, and takes accountability. In this role, you will support, coach, and guide others within the team on a technical level.

• Design, develop, and maintain security automation solutions to reduce manual interventions in security processes.
• Strong familiarity with DevSecOps practices, integrating security into CI/CD pipelines using tools like Azure DevOps and automation tools.
• Solid understanding of Linux and Windows OS security configurations, vulnerability management, and patch automation.
• Familiarity with network protocols, security protocols, and encryption standards.
• Strong analytical and problem-solving skills.
• Excellent communication and collaboration abilities to work with cross-functional teams.
• Ability to think critically and work under pressure in high-stakes situations.
• Detail-oriented with the ability to understand and prioritize risk.
• Expertise in Kubernetes and container security, including deploying, managing, and securing Kubernetes clusters.

Other information

Additional relevant certifications in cybersecurity, automation, or cloud platforms would be advantageous.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.