<p>Company Overview:</p> <p>MACOM designs and manufactures semiconductor products for Data Center, Telecommunication, and Industrial and Defense applications. Headquartered in Lowell, Massachusetts, MACOM has design centers and sales offices throughout North America, Europe, and Asia. MACOM is certified to the ISO9001 international quality standard and ISO14001 environmental management standard.</p> <p>MACOM has more than 65 years of application expertise with multiple design centers, Si, GaAs, and InP fabrication, manufacturing, assembly and test, and operational facilities throughout North America, Europe, and Asia. View our facilities at https://www.macom.com/. In addition, MACOM offers foundry services that represent a key core competency within our business.</p> <p>MACOM sells and distributes products globally via a sales channel comprised of a direct field sales force, authorized sales representatives, and leading industry distributors. Our sales team is trained across all of our products to give our customers insights into our entire portfolio.</p> <p>Title: GRC Control & Compliance Specialist</p> <p>Position Overview:</p> <p>We are seeking a skilled Information Security Compliance specialist to join our dynamic team and assess compliance with NIST 800-171, NIST CSF 2.0, and SOX standards. The GRC Control & Compliance Specialist is responsible for developing, maintaining, and monitoring governance and compliance activities to ensure the organization meets regulatory, contractual, and internal control requirements. This role will work across departments to design and test controls and provide recommendations to strengthen the organization's compliance posture.</p> <p>Key Responsibilities</p> <p>Governance & Compliance</p> <ul> <li>Ensure continuous compliance with federal and industry standards, staying updated on the latest developments in NIST and other standards. </li><li>Maintain control frameworks aligned to standards such as NIST 800-171, NIST CSF 2.0, SOX, GDPR and other applicable frameworks. </li><li>Develop, review, and maintain GRC policies, standards, and procedures in alignment with industry best practices and regulatory requirements. </li><li>Facilitate enterprise-level security awareness training to raise awareness about compliance requirements and best practices. </li><li>Collaborate with control owners to define, document, and update control activities. </li><li>Develop and communicate recommendations to correct IT control deficiencies, provide ideas for process enhancements, and follow up on audit findings to ensure they are addressed by process and control owners in a timely manner. </li><li>Support SOX ITGC control compliance and coordinate with internal/external auditors. </li><li>Support MACOM's data privacy governance program, including alignment with applicable U.S. and international privacy laws (e.g., GDPR, CCPA). </li></ul> <p>Audit & Assurance</p> <ul> <li>Support internal and external audits and regulatory assessments (CMMC, SOX, etc.). </li><li>Gather information and testing evidence as required by internal and external auditors. </li><li>Assist with the development of action plans concerning remediation efforts. </li></ul> <p>Qualifications</p> <p>Required</p> <ul> <li>Bachelor's degree in Information Assurance, Business, or related field. </li><li>4+ years of experience in information assurance, IT risk, compliance, or audit. </li><li>Knowledge of and/or application of compliance and security frameworks and standards such as CMMC 2.0, NIST 800-171, SOX, and third-party risk practices. </li><li>Due to ITAR Regulations, only candidates who are U.S. Persons (U.S. citizens, U.S. nationals, lawful permanent residents, or individuals granted asylum or refugee status) will be considered for this position. </li><li>This position requires working from our office in Lowell Mass. </li></ul> <p>Preferred</p> <ul> <li>Security or compliance certifications (e.g., CISM, CRISC, CISSP, CGEIT, or CISA). </li><li>Experience working in a semiconductor, defense, or highly regulated technology environment. </li><li>Experience with Secure Controls Framework (SCF) or Unified Compliance Framework (UCF). </li><li>Familiarity with ServiceNow IRM platform or similar tool (e.g., Archer, LogicGate). </li><li>Excellent analytical, problem-solving, and communication skills, with the ability to collaborate across teams. </li></ul> <p>EEO:</p> <p>MACOM is an Equal Opportunity Employer committed to a diverse workforce. MACOM will not discriminate against any worker or job applicant on the basis of race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, genetic information, veteran status, military service, marital status, or any other category protected under applicable law.</p> <p>Reasonable Accommodation:</p> <p>MACOM is committed to working with and providing reasonable accommodations to qualified individuals with physical and mental disabilities. If you have a disability and are in need of a reasonable accommodation with respect to any part of the application process, please call +1-978-656-2500 or email HR_Ops@MACOM.com. Provide your name, phone number and the position title and location in which you are interested, and nature of accommodation needed, and we will get back to you. We also work with current employees who request or need reasonable accommodation in order to perform the essential functions of their jobs.</p>