CrawlJobs Logo

Security Control & Compliance Specialist

asml.com Logo

ASML

Location Icon

Location:
Netherlands , Veldhoven

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Security Control & Compliance Specialist is responsible for maintaining and enhancing ASML’s security control framework to ensure effective risk mitigation and compliance with internal standards and external regulations. The role focuses on defining and deploying controls, coordinating control monitoring activities, and supporting the development of dashboards and reporting capabilities that measure control effectiveness.

Job Responsibility:

  • Define, update, and maintain ASML’s security control framework
  • Deploy controls across the organization and ensure clear ownership and understanding
  • Ensure control designs include measurable, risk‑aligned objectives
  • Coordinate 1st line control self‑assessments and 2nd line control testing activities
  • Develop, review, and maintain control self‑assessment questions and testing scripts
  • Review control attestation and validate operational effectiveness through continuous monitoring
  • Track findings and follow‑up actions to closure, ensuring completeness and timely resolution
  • Work with Data Analytics & Reporting teams to design and maintain dashboards for control effectiveness
  • Define and implement KPIs and KRIs related to control performance and maturity
  • Escalate deviations where required and provide clear, structured reporting to stakeholders and management
  • Build and maintain strong working relationships with key stakeholders (IT, Security, Compliance, Legal, Internal Audit, and business sectors)
  • Translate control requirements into practical guidance and support for the organization
  • Promote a culture of accountability and continuous improvement within control execution
  • Stay up to date with emerging security, technology, and regulatory developments and incorporate them into the framework
  • Support control automation and tooling enhancement initiatives
  • Contribute to the maturity of Security Risk & Control Management within ASML

Requirements:

  • Bachelor’s or Master’s degree in Business Administration, Information Technology, Cybersecurity, Internal Auditing, or a related field
  • 5–10 years of experience in internal audit, IT audit, internal controls, or (SAP) security risk and control management in enterprise environments or consulting
  • Hands‑on experience with ISMS implementation or security risk and control frameworks
  • Proven experience defining, implementing, and managing internal or security control frameworks
  • Good understanding of IT processes, cybersecurity concepts, and control testing methodologies
  • Strong knowledge of IT and security control frameworks
  • Experience in control lifecycle management (design → deployment → monitoring → attestation)
  • Ability to interpret risk assessments and translate them into control requirements
  • Capability to work with dashboards, KCIs, KRIs, or other reporting tools
  • Strong team player with excellent communication skills
  • Ability to collaborate with diverse stakeholders across all levels
  • Proactive, self‑starting mindset with solid organizational skills
  • Ability to manage multiple topics while maintaining oversight of priorities and long‑term objectives
  • Constructive influencer with the ability to navigate differing perspectives and drive alignment

Nice to have:

  • Certifications such as CISA, CISM, or CISSP
  • Experience with frameworks such as NIST CSF, ISO 27001/2, ISF SOGP, IEC 62443, or NIST SP 800‑30
  • Familiarity with SAP security controls and security technologies

Additional Information:

Job Posted:
March 22, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
ASML - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Security Control & Compliance Specialist

Cyber Security Specialist

Security is a strategic pillar for us. Our modern, distributed architecture dema...
Location
Location
Italy , Milan
Salary
Salary:
Not provided
livestory.nyc Logo
Live Story
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in cloud security (AWS/Azure/GCP), IAM/SSO, SIEM, WAF, endpoint security
  • Strong understanding of threat modelling, vulnerabilities (e.g., OWASP Top 10), MITRE ATT&CK
  • Experience with compliance frameworks and certification processes
  • Hands‑on problem solver, able to translate technical issues into business risks and vice versa
  • Excellent communication skills and teamwork orientation
  • English fluency
  • Italian is a plus
Job Responsibility
Job Responsibility
  • Monitor and manage the attack surface: applications, infrastructure, APIs
  • Perform vulnerability assessments, penetration testing, risk analysis and remediation
  • Define, implement and maintain security policies, procedures and controls (e.g., ISO 27001, SOC2, GDPR)
  • Collaborate with engineering, product and legal teams to ensure compliance and risk mitigation
  • Manage incident response: alerting, logging, encryption, forensic analysis
  • Drive continuous improvement of our security posture and culture
  • Fulltime
Read More
Arrow Right

Security Specialist

The Security Specialist is a technical position within the organization. This po...
Location
Location
United States , Columbia
Salary
Salary:
Not provided
dpsolutions.com Logo
Data Processing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, cybersecurity, or related field
  • Skills to diagnose and effectively troubleshoot technical issues
  • Must be available 24/7/365 to respond to security incidents without prior notice, and remain engaged until full remediation is achieved
  • In-depth knowledge of security concepts, protocols, policies, and best practices.
  • REQUIRED: CompTIA Network+ certification, or equivalent (six-month grace period)
  • REQUIRED: CompTIA Security+ certification, or equivalent (six-month grace period)
  • Understanding of Microsoft 365 platform and experience with security configurations in Microsoft 365
  • Continued commitment to technology growth and development
  • Self-motivated with the ability to multi-task and adapt quickly to change
  • Ability to work in a team and communicate effectively
Job Responsibility
Job Responsibility
  • Provide advance level troubleshooting and escalation support for services requests
  • Participate in pre-sales engagements as subject-matter expert to identify and plan for security-related solutions
  • Initiate Security Incident Response for client and internal security compromises
  • Monitor security solutions and remediate issues for clients. Tools include, but are not limited to Arctic Wolf, SentinelOne, Liongard, Auvik, KnowBe4, etc.
  • Participate in implementation of security offerings to clients
  • Document internal processes and procedures related to duties and responsibilities
  • System documentation and consulting services to include system reviews and recommendations
  • Provide escalation on off business hours, or may be requested to assist with weekend coverage
  • Enhance security in current systems by implementing and maintaining security controls
  • Assist with management and implementation of phishing and security awareness training
What we offer
What we offer
  • Competitive salary based on experience and qualifications.
  • Excellent benefits.
  • Fun working environment and culture.
  • Opportunity for advancement.
Read More
Arrow Right

IT Support Specialist 2nd Level - Security

Be part of a small and rapidly growing team in Berlin and Munich with big ambiti...
Location
Location
Germany , München
Salary
Salary:
Not provided
cherry.vc Logo
Cherry Ventures
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Completed IT apprenticeship or equivalent experience as a system administrator — ideally with a focus on IT security
  • Hands-on experience with MDM systems (security policies, application control, conditional access)
  • Strong understanding of securing Windows environments and cloud security (e.g., Conditional Access, DLP, Sentinel, STIGs)
  • Bonus: exposure to SOC, EDR/XDR, IAM, or frameworks like ISO 27001 or BSI Grundschutz
  • Customer-focused, patient, and committed to a security-first mindset
  • Hands-on, proactive, and solution-driven in your daily work
  • Fluent in English (C1)
Job Responsibility
Job Responsibility
  • Be the main security escalation point for our customers and our 1st-level support team
  • Troubleshoot and resolve complex security-related issues, especially around ML-based security solutions
  • Provide solution-oriented support for cloud environments (e.g., Microsoft 365, Google Workspace)
  • Run security audits and compliance checks and guide customers on implementing best practices
  • Help improve and automate security and support processes across IT Ops
What we offer
What we offer
  • Attractive compensation package, including a virtual share package (VSOP)
  • High responsibility and ownership from day one
  • Employee benefits: public transportation ticket or Urban Sports Club, Corporate Benefits
  • Well-equipped offices in Munich and Berlin
  • Fulltime
Read More
Arrow Right

Security Vetting Specialist

We are seeking a Security Vetting Specialist to support and process Bulgarian Go...
Location
Location
Bulgaria , Sofia
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Prior knowledge and experience with Bulgarian government security vetting
  • at least 1 year in a similar role is an advantage
  • Understanding of EU GDPR and the Personal Data Protection Act (PDPA)
  • Background in roles requiring strict confidentiality and secure handling of sensitive information
  • University degree preferred
  • Ability to develop effective working relationships with colleagues, partners, and authorities
  • Professionalism in handling adversarial or sensitive situations
  • Strong risk identification and evaluation skills, with capacity for proportionate action
  • Ability to interpret and apply regulations and guidance to specific activities
  • Skilled in the use of IT packages, systems, and databases
Job Responsibility
Job Responsibility
  • Provide support and process all types of security vetting required by the Bulgarian Government, EU, and NATO (new applications, transfers, extensions, renewals)
  • Liaise with the Bulgarian Government, particularly the State Commission on Information Security (SCIS), and other security authorities as appropriate
  • Support the business with advice and guidance in coordination with Government Security Services (GSS)
  • Maintain physical and electronic vetting records, ensuring timely renewals
  • Manage record keeping and control of Aftercare Incident Reporting
  • Attend internal and external stakeholder meetings
  • Assist applicants and act as SME in collating required documentation for the clearance process, including questionnaires, consents, diplomas, certificates, official notes, medical documentation, and notarized declarations, as mandated by Bulgarian law.
What we offer
What we offer
  • Comprehensive suite of benefits that supports physical, financial, and emotional wellbeing
  • Specific programs for personal and professional development
  • Flexibility to manage work and personal needs
  • Inclusive culture that celebrates individual uniqueness.
  • Fulltime
Read More
Arrow Right

IT Security Specialist

Amla Commerce is looking for an experienced IT Security Specialist to join our t...
Location
Location
United States , Milwaukee
Salary
Salary:
Not provided
amla.io Logo
Amla Commerce
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field
  • Minimum 2 Years of relevant work experience
  • Proven experience in infrastructure security, manual penetration testing, vulnerability assessment, and web application security
  • Strong knowledge of penetration testing tools and frameworks, including Burp Suite, Owasp Zap, and Metasploit Framework
  • Familiarity with OWASP Top 10 vulnerabilities and best practices for securing web applications
  • Experience with IDS/IPS tools for monitoring and preventing intrusions
  • Familiarity with wireless/Wi-Fi security protocols, encryption standards, and best practices
  • Knowledge of network and system security protocols, technologies, and best practices
  • Strong problem-solving skills and ability to think strategically about security risks and solutions
  • Excellent communication and interpersonal skills to effectively collaborate with cross-functional teams and stakeholders
Job Responsibility
Job Responsibility
  • Conduct manual penetration testing of infrastructure systems, networks, and applications to identify security vulnerabilities and potential risks
  • Utilize various penetration testing tools such as Nmap, Nessus, Burp Suite, Owasp Zap, and Metasploit Framework to identify and exploit vulnerabilities
  • Perform vulnerability assessments using both manual approaches and vulnerability assessment and penetration testing (VAPT) tools like Nessus, OpenVAS, and Qualys
  • Collaborate with the development team to enhance the security of web applications by implementing secure coding practices and addressing OWASP Top 10 vulnerabilities
  • Configure and manage web application firewalls (WAF) to protect against common web-based attacks
  • Implement and maintain infrastructure firewalls, ensuring that proper configurations are in place to protect the network and systems from unauthorized access
  • Manage IP access control lists and handle blocking/unblocking requests as per security policies
  • Ensure compliance with SOC (Security Operations Center) standards and participate in audits and assessments
  • Provide end user system security by deploying and managing antivirus solutions, conducting security awareness training, and responding to security incidents
  • Stay up-to-date with the latest security threats, vulnerabilities, and industry best practices to proactively identify potential risks and recommend mitigation strategies
Read More
Arrow Right

Senior Information Security Specialist

As a Senior Information Security Specialist, you will play a critical role in pr...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field, or equivalent experience
  • Minimum 7 years of experience in information security, IT risk management, or related roles, preferably in federal or state government environments
  • Strong knowledge of federal cybersecurity frameworks including NIST SP 800-53, OWASP Top 10, DISA STIGs, and Common Criteria
  • Hands-on experience with networking concepts, system administration, and software development practices
  • Proficiency in using Splunk or comparable SIEM tools for security event monitoring, audit log analysis, and incident response
  • Experience working within Agile or Scaled Agile Framework (SAFe) teams and integrating security in fast-paced development environments
  • Excellent communication skills with the ability to convey complex security concepts to technical and non-technical audiences
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead comprehensive reviews of management, operational, personnel, and technical security controls to verify their effectiveness during all phases of the system lifecycle
  • Identify, evaluate, and mitigate technical and operational security risks, threats, vulnerabilities, and weaknesses across diverse information systems
  • Drive compliance efforts with government standards and industry best practices, including NIST, OWASP, Common Criteria, DISA, and SANS Institute guidelines
  • Collaborate within Agile development teams to integrate security throughout the software development lifecycle, supporting secure design, testing, and deployment
  • Utilize hands-on expertise in networking, system administration, and software development to analyze security impacts and recommend improvements
  • Oversee audit log reviews and system alerting using Splunk or similar SIEM platforms to detect, investigate, and respond to security incidents
  • Communicate security findings clearly and effectively to technical teams and leadership, fostering a culture of security awareness and continuous improvement
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

Senior Information Security Specialist

As a Senior Information Security Specialist, you will play a critical role in sa...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent professional experience)
  • Minimum 7 years of experience in information security, IT risk management, or cybersecurity compliance, preferably in a federal or state agency environment
  • Demonstrated experience applying and interpreting NIST 800-53, OWASP, and DISA STIGs in real-world projects
  • Strong hands-on technical background in networking, system administration, or software development
  • Proficiency with SIEM tools—especially Splunk—for event correlation, alerting, and compliance reporting
  • Familiarity with Agile development environments and DevSecOps principles
  • Strong written and verbal communication skills, with the ability to create reports and briefings for technical and non-technical stakeholders
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead comprehensive reviews of management, operational, personnel, and technical controls throughout the system development lifecycle (SDLC)
  • Identify and assess emerging security risks, weaknesses, and vulnerabilities associated with infrastructure, applications, and operations
  • Collaborate with developers and engineers to ensure identified risks are mitigated and documented effectively
  • Ensure compliance with federal and industry security standards including NIST SP 800-53, OWASP Top 10, Common Criteria, DISA STIGs, and SANS Institute recommendations
  • Support and contribute to Authorization to Operate (ATO) packages, including preparation of SSPs, POA&Ms, and continuous monitoring (ConMon) artifacts
  • Advise on policy alignment and security architecture improvements to support secure Agile delivery
  • Apply technical knowledge of networking, system administration, and development to assess the security posture of enterprise environments
  • Utilize Splunk to perform audit log analysis, generate system alerts, and support threat hunting and incident response activities
  • Recommend and implement automated logging, monitoring, and security reporting processes
  • Engage proactively with Agile development teams, product owners, and ISSOs to embed security into project planning and delivery
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

Information Assurance Specialist

The Information Assurance/Security Engineer will provide security engineering an...
Location
Location
United States , Bethesda
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI Clearance with CI Polygraph
  • Bachelor’s degree in Network Engineering, Computer Science or related technical field plus 5-7 years of Cyber Security/Operations support
  • DoD 8140 IAT Level II Certification (CCNA-Security, CySA+, CND, Security+)
  • Documenting network schemas and cyber operation tool solutions
  • Knowledgeable regarding compliance with: ICD 503, FISMA, OMB, NIST, and DoD (8150.01 March 12, 2014) [Risk Management Framework and Cyber Network Defense…], and other mandated security regulations and standards
  • Knowledge and experience with managing and monitoring compliance with Privileged User Access (PUA), Data Transfer Access (DTA), and Removable Media Custodian (RMC) privileges, forms, and signatures
  • Support to vulnerability management, patching, information assurance and/or ATO process for Classified DoD or IC environments
  • Demonstrated documentation writing for security plans, tests, and reports
  • Must demonstrate strong teamwork, communication (both verbal and written), and presentation skills
  • Must demonstrate strong initiative to accept new technical challenges in complex security engineering assignments
Job Responsibility
Job Responsibility
  • Provide security engineering and information assurance support to the Government’s Assessment and Authorization (A&A) process to maintain Authority to Operate (ATO) and Authority to Connect (ATC) for mission applications and services
  • Designs, develops, monitors and documents security controls, security testing, security reporting, and plan of actions and milestones (POA&Ms) throughout systems and application lifecycles in support of mission systems
  • Provides security engineering design inputs, security design reviews, and security best practices as part of technical and change requests
  • Configures and validates secure systems, physical controls, and tests security products and systems to detect security weaknesses
  • Maintains XACTA security records for supported systems
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy