R&D Security Incident Manager

Be part of progress

Join a Dynamic Environment at the Forefront of Technology

Introduction to the job

As an R&D Security Incident Manager, you will play a critical role in protecting intellectual property, sensitive data, and innovation processes from cyber threats. You will work within a dynamic environment where cutting-edge research meets complex security challenges, helping to detect, analyze, and respond to security incidents that could impact the organization’s technological edge.

Role and responsibilities

• Monitor and analyze security alerts and events to identify potential incidents.
• Lead investigations into security breaches, coordinating containment, eradication, and recovery efforts.
• Collaborate with IT, R&D, and security and compliance teams across sectors to assess impact and ensure proper incident documentation.
• Develop and maintain incident response playbooks tailored to R&D-specific threats.
• Contribute to post-incident reviews and root cause analyses to improve future response capabilities.
• Support threat hunting activities and contribute to proactive detection strategies.
• Stay current with emerging threats, vulnerabilities, and attack techniques relevant to the R&D landscape.

Education and experience

• Bachelor’s or Masters degree in Information or Cyber Security, Computer Science, or a related field.
• 3–5 years of experience in information operations, security operations, incident handling and response, or digital forensics.
• Affinity or experience in environments with high-value intellectual property or regulated data (e.g., export control, trade secrets) is a plus.
• Familiarity with ServiceNow, SIEM tools, endpoint detection and response (EDR), and forensic analysis platforms.

Skills

• Strong analytical and problem-solving skills with attention to detail.
• Proficiency in log analysis, and network traffic / activity inspection.
• Knowledge of security frameworks and threat intelligence integration.
• Effective communication skills for reporting incidents and collaborating across teams.
• Ability to work under pressure and manage multiple incidents simultaneously.
• Understanding of regulatory requirements and data protection standards relevant to R&D.

What to expect

• Working at the cutting edge of technology, you will always have new challenges and new problems to solve.
• You’ll be part of a creative, dynamic work environment where you collaborate with supportive colleagues.
• There is always space for creative and unique points of view.
• You will have the flexibility and trust to choose how best to tackle tasks and solve problems.
• To thrive in this job, you take responsibility for your actions and your opinions.

Other information

• Occasional travel may be needed to support investigations or collaborate with global teams.
• Opportunities for growth into senior incident response, threat intelligence, or security architecture roles.

This position requires access to controlled technology, as defined in the United States Export Administration Regulations (15 C.F.R. § 730, et seq.). Qualified candidates must be legally authorized to access such controlled technology prior to beginning work. Business demands may require ASML to proceed with candidates who are immediately eligible to access controlled technology.