The ASMPT team is looking to immediately fill the following position:

Join us where we’re enabling the digital world to realise the incredible potential, and we’ll support you to realise yours too.

Our technology powers EVERYTHING with a digital component: we produce innovative equipment that enables the world’s biggest names in electronics to bring their technology to market. We also enjoy a forward-thinking environment where continuous investment powers opportunities to work on exciting new projects on a global scale.

And while we have offices – and career opportunities - around the world, the real magic happens at our R&D HQ in Weymouth, where our people are quietly but confidently working to enable and evolve digitisation on a global scale.

They enjoy challenge and opportunity in equal measure, sharpen their skills and knowledge, be exposed to multiple disciplines, and experiment at the cutting edge. And they get to do it all where we put people first, are collaborative and friendly, and everyone enjoys living and working in a location that offers the best of city, country, and coast.

The Role

As ASMPT continues its Digital Transformation Journey, we are looking for a highly motivated, experienced, and hands-on technical Information Security Analyst. The person plays an integral part in the development and implementation of information security tools & process across the enterprise, focusing on security engineering and providing technical consulting to mitigate risks related to confidentiality, integrity & availability of ASMPT information assets.


The role will be to support the Security and infrastructure teams in driving security into the heart of IT and our implementations. The role is key in helping the broader business implement and operate secure business solutions both within the business and our customer facing operations.

• Work within the local and global Information Security Team to assist with the delivery of defined Information Security initiatives in line with the security roadmap.

• Work closely with internal stakeholders to identify and implement necessary changes that bring about improvements and efficiencies, ensuring that solid security practices within the organization are upheld.

• Participate in projects involving IT systems and provide sound technical advice to ensure security principles are adhered to. Ensure all identified information security risks are mitigated and requisite information security controls are implemented through project lifecycle.

• In conjunction with IT Infrastructure teams, monitor, maintain and fine tune existing network & security infrastructure: Endpoint Security, Next Generation Firewall, encryption, email and network proxy gateways, Microsoft 365, DLP etc.

• Write comprehensive reports, assessment-based findings, outcomes, and propositions for further system security enhancement.

• Support relevant projects, initiatives, and security activities such as the security awareness program and security incident response with relevant teams.


• Report on Security KPIs, vulnerabilities, non-compliance, and other security exposures, including misuse of information assets and non-compliance.


• Contribute towards the development and ongoing maintenance of security policies, standards, and procedures.


• Maintain a security risk register and remediation plans with relevant parties to achieve compliance with security requirements and mitigate identified risks to an acceptable level.


• Conduct research, perform PoC to evaluate new emerging technologies and maintain up-to-date understanding of the latest threats, vulnerabilities, mitigation, industry best practices, regulations.

About You

• Tertiary Education in Computer Science or related fields.

• Minimum 3 plus years of progressive experience in computing and information security.

• General knowledge of industry best practices on security hardening (CIS), OWASP, network security, security risk & management frameworks, national cybersecurity standards, ISO27001, etc.

• Team player with excellent communication skills, (oral, written, presentation), interpersonal and consultative skills. Able to collaborate across diverse stakeholders to collaborate on security objectives.

• GIAC, CEH, Security+ or other security certifications

• Hand on experience with security technologies such as NGFW, Endpoint Security, EDR, DLP, Proxy, Secure Email Gateway, Active Directory, Identity and Access Management (IAM), Microsoft 365, etc.

• Ability to learn and understand new concepts quickly to keep up with new emerging technologies. Good problem solving and analytical skills.

• Experience in security architecture, security solution, security project implementation, security operation, security education, network penetration testing, application vulnerability assessments, risk analysis and compliance testing.

• Data driven, with a continuous improvement mind-set acumen. A proven track record as an Information Security Analyst, contributing to the delivery of security projects, collaborating with teams internationally.

Desirables

• Experience in a large multi-site manufacturing organization, working with high performance teams and understanding the dynamics of international teamwork.

• Previous exposure to working directly for companies who have gone through extensive periods of change and / or a full-scale transformation programme in recent years.

• Experience in PowerShell and/or Linux. 

What We Will Offer You

Enhanced Family Leave (equal amounts of pay and leave for both parents) Hybrid Working Mental Health and Wellbeing support Annual Leave starting at 25 days. Corporate Gym Membership Financial Wellbeing Support Company Social Events - from twice a year company gathering, to walking groups, environmental groups, football, volleyball, and sailing.