美团Business Security Manager

● Responsible for the real-time response, handling, and closure of security alarms and incidents in Alibaba Cloud's Hongkong data centers to ensure stable, secure, and efficient operations. ● Conduct thorough business research and security assessments of data centers, identify and optimize critical security control points, and promote systematic construction and online capability development of the data center security management system. ● Perform regular inspections of data centers to identify security vulnerabilities and system defects, and resolve these issues through security management strategies. ● Develop and optimize management standard procedures for the data center security management system framework, enhance the data center security management. ● Establish effective collaboration with other teams to promote the implementation and routine operation of the security system, improving the standardization level of data center security management.

• Monitor transactional data to identify suspicious patterns, emerging fraud trends and anomalies. • Design and maintain fraud detection dashboards, models, and rules using statistical and machine learning techniques. • Collaborate with product, engineering, and compliance teams to implement and fine-tune fraud detection. • Conduct root cause analyses on fraud incidents and provide actionable insights. • Develop reporting frameworks to communicate fraud trends, risk metrics, and investigation outcomes to stakeholders. • Continuously refine detection logic based on feedback and fraud evolution. • Support incident response teams in investigating and responding to fraud alerts. • Stay current with industry best practices and evolving fraud tactics.

1. Physical Security:• Develop and maintain physical security standards and procedures for all facilities.• Manage access control systems, surveillance technologies (CCTV), detection, and perimeter security.• Coordinate site risk assessments and implement corrective measures.• Oversee security contractors and ensure compliance with service-level agreements. 2. Security Operations Center (SOC):• Lead 24/7 monitoring of incidents, threats, and emergencies affecting personnel, facilities, and operations.• Manage incident reporting, escalation protocols, and real-time response coordination.• Ensure SOC integration with emergency services, crisis response, and business continuity teams.• Maintain incident tracking systems and dashboards with KPIs and performance reports. 3. EHS (Environment, Health & Safety):• Implement EHS programs aligned with local regulations and global standards.• Conduct safety audits, risk assessments, and compliance inspections.• Promote a safety culture through training, awareness campaigns, and best practice sharing.• Lead investigations of EHS-related incidents and ensure timely reporting and corrective actions. 4. Risk Management & Compliance:• Identify and assess security and safety risks across operations.• Ensure adherence to applicable laws, regulations, and industry best practices.• Develop and test emergency response plans, including fire drills, evacuation procedures, and crisis simulations. 5. Stakeholder Engagement & Reporting:• Prepare regular reports and presentations for senior leadership on security performance, incident trends, and risk posture.• Support cross-functional projects requiring security and safety input.

KEY PURPOSE OF ROLE The Country Security Lead (CSL) for ASML China acts as the local representative of the ASML CISO and protects and secures ASML’s Intellectual property, digital assets and technologies in China, in line with ASML’s Security strategy. The CSL for China develops and implements comprehensive security roadmaps for China, in close alignment with the local sector 1st line Security Risk Managers and the central 2nd line security team, to protect sensitive data against cyber and physical threats and ensures compliance with relevant regulations. ASML manages 1st line security via the sectors which creates a challenge on country level where multiple sectors can be represented. To manage security from a country point of view with local security risk managers reporting into the central sector SRM’s, ASML set up a Virtual Security Team (VST) to bring all relevant (security) representatives together in one virtual team to manage jointly security for China. The CSL forms and drives the Virtual Security Team (VST) in China, consisting of China’s first and second line security representatives and other relevant stakeholders, to improve the level of security maturity in China and report progress to the country’s Management Team. KEY RESPONSIBILITIES Overall: responsible for managing the China security organization on behalf of the CISO of ASML, driving the development and delivery of security services in China. Challenge and verify the adequate performance of security controls in China, against ASML and China risk appetite and as executed by the first line of responsibility in the sectors in China. Strategy: execute the central security strategy as determined by the CISO and adding country specific aspects to it to improve security maturity. Risk management: Collaboration with the 1st line sector SRMs to identify, assess and mitigate security risks, overseeing and reporting via the China Virtual Security Team (VST). Identify improvement opportunities together with the 1st line sector SRMs’ and the 2nd line team in terms of processes and activities. The CSL provides necessary support for improvements and will act in a pivotal role to bring (security) teams together where needed Incident response: overseeing the development of country specific response plans, assuring the timely and thorough handling of security indents under coordination of the central Security Operations Centre Compliance oversight: ensuring adherence to centrally determined or country specific laws and regulations related to information security. Team leadership & capability building: act on behalf of the CISO of ASML and work closely together with the 1st line country SRM’s to define and execute a joined security roadmap for China. Assure the capabilities as required by the central Second Line Security, Intelligence Fusion Centre and Security Operations Center teams are developed and maintained, as well as organizing Security activities related to risk culture and awareness initiatives. Will drive the preparation of a uniform reporting out to the China Country Management Team and align with the CISO and the VST team the agenda for these meetings. Stakeholder engagement: Providing regular updates, in alignment with the local first line sector Security Risk Managers of the VST, to senior management in China on the status of information security in China and the central information security program. Considering the given governance, this will always be in alignment with the respective 1st line SRM. Providing the general security training to all China staff to improve their awareness Some travel will be required to other ASML offices in China, and abroad (+/- 15%) KEY WORKING RELATIONSHIPS External: Security Vendors, Customers, Suppliers, (always in alignment with local account management and procurement teams, Industry Peers and Forums) Internal: ASML China IT, local ASML Sector Security Functions, RBA&S, Legal, Sectors