Senior DevSecOps Engineer - ASML Netherlands B.V.

We are seeking a hands-on DevSecOps Engineer to elevate security within our software development lifecycle by embedding robust, automated security practices across our CI/CD pipelines. In this role, you will integrate security controls, enhance compliance, and collaborate closely with cross-functional teams to build a secure DevOps culture. Ideal candidates are passionate about automation, experienced in Java-based applications, and skilled in implementing security solutions that scale.

ASML is a successful Dutch high-tech enterprise that produces complex lithography systems used by chip manufacturers in the production of integrated circuits. ASML is at the cutting edge of this technology and delivers systems to all the world's leading chip manufacturers. ASML's employees are among the most creative talents in the fields of physics, mathematics, chemistry, mechanical engineering and software. Every day they collaborate in close-knit multidisciplinary teams in which members listen to and learn from one another and exchange ideas. It is the ideal environment for professional development and personal growth. ASML is headquartered in Veldhoven, the Netherlands.

You will be employed by YER and seconded to our client. We offer:

• Good employee benefits
• Challenging assignments
• Excellent guidance from your consultant and YER's back office
• Development opportunities, including the YER Talent Development Programme with a personal coach
• Intensive support for international candidates (including Dutch lessons, tax-return and accommodation assistance)
• Cooperative and results and relationship-driven
• Friendly atmosphere and open culture
• Community/network with other technology professionals from a variety of multinationals
• Events and master classes with interesting speakers and attractive companies

• Integrate security tools like SAST, DAST, and SCA (SonarQube, Checkmarx, OWASP ZAP, BlackDuck) directly into CI/CD pipelines 9 Bitbucket), enabling early detection of vulnerabilities.
• Implement automated security testing and compliance checks to support continuous integration, using tools such as SonarQube and OWASP ZAP.
• Establish and manage secure, scalable solutions for secrets management, utilizing tools like HashiCorp Vault and GitGuardian.
• Ensure best practices in cloud (GCP) and containerized environments (Docker, Kubernetes), securing deployment and runtime configurations.
• Implement and monitor security alerts to respond swiftly to security incidents, minimizing potential impact.
• Collaborate with development , operations and security teams to prioritize security, offer guidance on best practices, and drive awareness of secure coding standards.

Education and Experience

• A Bachelor or Master degree in a technical field
• Very strong hands on experience in setting up in CI/CD pipelines and infrastructure-as-code tools (e.g., Terraform, Ansible).
• 3+ years of experience in DevSecOps or similar roles.
• Java development background with secure coding experience; Python experience is a plus.
• Hands-on experience with SAST, DAST, and SCA tools (e.g., SonarQube, Checkmarx, OWASP ZAP, Trivy)
• Expertise in cloud and container security (e.g., AWS, Docker, Kubernetes).
• Familiarity with standards, policies, and frameworks (e.g., CIS, MITRE, CCPA, ISO, NIST).
• Knowledge of compliance standards (EU CRA, SOC 2).

Nice to have:

• Experience with SIEM tools (e.g., Splunk, ELK) for security monitoring.
• Knowledge of incident response and risk management frameworks.

Skills

• Excellent collaboration and communication skills with technical and non-technical people
• You have a passion for security automation.
• You’re able to motivate your team, foster collaboration, and give directions
• You’re enthusiastic about solving complex problems and translating them into modern, elegant and simple solution
• You like to discuss technical challenges and you’re motivated to push the boundaries of technology