Governance, Risk, and Compliance (GRC) Lead
MACOM designs and manufactures semiconductor products for Data Center, Telecommunication, and Industrial and Defense applications. Headquartered in Lowell, Massachusetts, MACOM has design centers and sales offices throughout North America, Europe, and Asia. MACOM is certified to the ISO9001 international quality standard and ISO14001 environmental management standard.
We are seeking a dedicated and experienced Security GRC (Governance, Risk, and Compliance) Professional to join our team. The successful candidate will be responsible for overseeing security risk and compliance, developing and implementing security policies, establishing measures and metrics, and driving security awareness training initiatives.
Key Responsibilities:
1. Security Risk and Compliance:
o Identify, assess, and manage security risks to ensure compliance with industry standards and regulations.
o Develop and maintain risk assessment and management processes.
o Monitor and report on compliance with security policies, standards, and regulations.
2. Policy Development:
o Develop, review, and update security policies and procedures.
o Ensure policies are aligned with industry best practices and regulatory requirements.
o Communicate and enforce security policies across the organization.
3. Measures and Metrics:
o Develop and implement security metrics and reporting systems.
o Track and report on security performance, risks, and compliance status.
o Provide regular updates and insights to senior management.
4. Security Awareness Training:
o Design and deliver security awareness training programs for employees.
o Promote a culture of security awareness and best practices.
o Evaluate the effectiveness of training programs and make improvements as necessary.
Qualifications:
1. Bachelor’s degree in Information Security, Cybersecurity, or a related field.
2. Proven experience in security governance, risk management, and compliance.
3. Strong knowledge of security frameworks, standards, and regulations (e.g. NIST CSF, ISO 27001/27002, GDPR).
4. Excellent communication and interpersonal skills.
5. Ability to develop and deliver effective training programs.
6. Strong analytical and problem-solving skills.
7. Relevant certifications (e.g., CISSP, CISM, CISA).
8. Familiarity with cloud security and hybrid environments.
MACOM is an Equal Opportunity Employer. We consider applicants for all positions without regard to race, color, religion, creed, gender, national origin, age, disability, marital status or veteran status or any other legally protected status.
All personal information MACOM gathers from job applicants is handled in accordance with its Privacy Policy.
#J-18808-Ljbffr