Risk Scoping (GRC) Intake Analyst

Introduction

Are you looking for a challenge that includes enabling a multi-disciplinary, expanding team of 200 experts to reach their maximum potential in a high demanding environment?

ASML’s Risk & Business Assurance (RBA) department provides state-of-art expertise, insights and assurance which enables ASML to achieve its objectives, while managing business risks in a responsible way. Risk & Business Assurance is supporting ASML in the area of Corporate Risk Management, Internal control, Compliance, Security and Internal Audit. In order to better service RBA’s internal customers, we are transforming our operating model from individual expertise teams to a multi-disciplinary team setup. As part of the transformation, an RBA Office is created as supporting center of excellence.

Driving the so called ‘Risk Scoping (GRC) process’ for change initiatives within ASML is one of the priorities of the RBA Office. The Risk Scoping process is designed and implemented to ensure that for each change initiative within ASML, a business impact assessment is performed to ensure all the right stakeholders from a Governance, Risk and Compliance perspective are timely involved. As an Risk Scoping Analyst you play a central role in managing these business impact assessments.
 

Job Mission

The Risk Scoping (GRC) intake Analyst’s mission is to ensure that new intake requests are complete, timely and accurately processed, reviewed and challenged (where appropriate), to ensure that ASML’s expertise areas, such as Security and Compliance, are timely involved in changes.

Role and responsibilities

The process involves the administration and assessment of the completed Risk scoping assessment requests, the engagement of the correct stakeholders to perform validations and the management of the Risk Scoping Database & Repository tool supporting the internal customer by explaining, facilitating guidance in the Risk Scoping Process:

• Ensure that the Risk Scoping request, received from Project Leads located world-wide, are completed and registered in the Risk Portal Ensure the correct performance of Risk Scoping assessment and connect with correct Security and Compliance departments;
• Guidance the Internal Customer in understanding and following the Risk Scoping process as part of the Risk Management process;
• Process Risk Scoping Intake assessments in the Risk Portal and ensure the correct stakeholders are selected to perform their scope validation (Sector Security Managers, Corporate Compliance);
• Schedule and facilitate Risk Scoping meetings to ensure alignment amongst stakeholders and documentation of agreement points;
• Revert the conclusion of the Risk Scoping process back to Stakeholders (Project Leads) with all associated documentation;
• Report relevant Risk Scoping activities to GRC Intake Manager.

Education and experience

• Minimal Bachelor’s degree level education in relevant areas.
• Minimum of 2-4 years of experience in one of the following areas: Legal, Information Security, Compliance, Governance or Risk Management.
• Awareness of industry related ISO standards, laws and regulations.

To thrive in this job, you’ll need the following skills:

• Good social and effective communication skills;
• Overcoming barriers for change and engages others to take action;
• Making complex topics simple and transparent;
• Combining clear, critical thinking with decisiveness;
• Proactive / hands-on attitude;
• Ensuring accountability by holding self and other accountable to meet deadlines.
• Able to develop connections and build stakeholder relationships
• Attention to detail and apply a high standard of accuracy in delivering the activities.