Senior Analyst, Cybersecurity

**Step into a career with ASM, where cutting edge technology meets collaborative culture.**

For over 55 years ASM has been ahead of what's next, at the forefront of innovation and what's technologically possible. With more than 4,500 ASMers representing 70 nationalities, our people and our advanced semiconductor devices are playing a crucial role in trends such as 5G, cloud computing, AI, and autonomous driving. But we're more than just a tech company. We value diversity, inclusion and sustainability as we strive to make a positive impact on the world. Our development programs help support your growth, shaping your future and pushing the boundaries of innovation to unleash potential.

As the Senior Analyst, Cybersecurity, you will be an integral part of the Global IT team. Reporting to the Cybersecurity Manager based in Singapore, you will be responsible for engaging in all aspects of cybersecurity across various sites. Your primary focus will be on IT Governance, Risk, and Compliance (GRC), with additional contributions to Security Operations & Architecture.

**Key Responsibilities**:
IT Governance, Risk, and Compliance (GRC):

- Develop, implement, and maintain IT GRC frameworks and policies.
- Perform cybersecurity and compliance risk assessments on new and existing systems, processes, and technology.
- Ensure controls are adequate, appropriate, and effective across business units.
- Perform gap assessments and support internal & external audits
- Support vendor due-diligence and overall vendor risk management efforts.
- Participate in disaster recovery and business continuity planning activities, including cyber drills, business impact analysis, and IT/InfoSec risk register development.
- Implement security awareness initiatives including phishing campaigns, security awareness articles and training.
- Identifies and drives innovation (e.g. automation) and process improvements.
- Keep updated with relevant regulations and proactively work towards achieving compliance.

Security Operations & Architecture:

- Participate in design and architecture discussions for new initiatives and projects.
- Collaborate with various teams to integrate security measures into system designs.
- Participate in security operations activities such as responding to security incidents, investigations, vulnerability assessments, and remediation.

Support Business and Security Initiatives:

- Act as trusted advisor to leadership in IT Governance, Risk, and Compliance matters.
- Engage with key stakeholders to gather feedback and ensure the alignment of cybersecurity initiatives with business needs.
- Collaborate with teams across different time zones, requiring flexibility for after-office hours meetings.
- Implement security awareness initiatives including phishing campaigns, security awareness articles and training.
- Ready to take on additional responsibilities such as cybersecurity project implementation.

**Requirements**:

- At least 7 years of relevant experience in Cybersecurity such as GRC and Security Operations.
- Bachelor's degree in Information Technology, Computer Science/Engineering, or equivalent.
- Security certifications such as CISSP, CISM, CCSP, CRISC preferred.
- Experience in Implementing security controls, risk assessment framework, and program that align to regulatory requirements
- Experience with risk assessments, audits, and compliance monitoring.
- Familiarity with technologies such as Microsoft, AWS, and SAP.
- Knowledge of industry security frameworks (e.g., NIST2).
- Deep domain knowledge with global exposure.
- Strong analytical and problem-solving skills, with the ability to think creatively and strategically to identify and mitigate potential cyber security risks
- Ability to develop security standards and guidelines on best practices and industry standards

We make the tech that enables the chips in devices which improve lives around the world. We do this with an eye to the future, pushing the boundaries of what's possible through cutting-edge innovation, and driving the next wave of technological breakthroughs that shape how we live, work, and connect.
- ASM is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, religion, age, nationality, social or ethnic origin, sexual orientation, gender, gender identify or expression, marital status, pregnancy, political affiliation, disability, genetic information, veteran status, or any other characteristic protected by law._