Security Director jobs in Lowell, MA

Company Overview:

MACOM designs and manufactures semiconductor products for Data Center, Telecommunication and Industrial and Defense applications. Headquartered in Lowell, Massachusetts, MACOM has design centers and sales offices throughout North America, Europe and Asia. MACOM is certified to the ISO9001 international quality standard and ISO14001 environmental management standard.

MACOM has more than 65 years of application expertise with multiple design centers, Si, GaAs and InP fabrication, manufacturing, assembly and test, and operational facilities throughout North America, Europe, and Asia. Click here to view our facilities. In addition, MACOM offers foundry services that represents a key core competency within our business.

MACOM sells and distributes products globally via a sales channel comprised of a direct field sales force, authorized sales representatives and leading industry distributors. Our sales team is trained across all of our products to give our customers insights into our entire portfolio.

MACOM has an exciting opportunity at our Headquarters in Lowell, MA for a Director of Information Security.

Are you looking to solve the world's most demanding application challenges? Does an opportunity to make a direct impact in building semiconductor components across the RF to Light Spectrum excite you? If you answered yes, we want you to join our growing world class team of skilled and talented professionals!

Job Description:

Under the direction of the IT Leadership team and the CFO, the Director of Information Security is responsible for the technical oversight of MACOM's information security technology portfolio and program. The Director of Information Security will identify and lead security initiatives for MACOM as well as supervise IT security engineering staff and take a hands-on approach for the planning, budgeting, coordination and implementation of the organization's security. As a leader within the organization, the Director of Information Security takes a central role in actively promoting a culture of information security throughout the IT organization as well as across the company and will be a technologist and a subject matter expert (SME) for all information security platforms. The role is responsible for advancing the organization's information security architecture and will be responsible for auditing information security policies and procedures and for investigating information security events.

The scope of this position spans the organization's technology solutions including software applications, infrastructure, data management, data integration and external vendor solutions and will require a thorough understanding of all IT systems and how those systems are secured. The position will be responsible for advising the Application, Infrastructure and Management teams on emerging vulnerabilities and newly introduced risks to enterprise systems, taking a proactive approach in continually assessing the security of those systems throughout their lifecycle. In addition, this position will provide recommendations to Senior Leadership as well as the Audit Committee for enhancing security and adapting to new threats and vulnerabilities as well as updating policies and procedures in adherence with security compliance regulations.

Responsibilities:

• Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.
• Oversee and directly participate in the installation, configuration, and monitoring of new information security technologies.
• Ensure cross-department collaboration and communication to ensure appropriate security processes, procedures and tools are installed, monitored, and effectively operating and alerting.
• Strategy, planning, and operational excellence through continuous improvement and automation.
• Coordinates business continuity planning efforts across business/technology groups and perform regular technical risk assessments/audits of systems and infrastructure.
• Establishes Cyber Security governance framework with security managed services providers.
• Manage service levels, control effectiveness, control failure remediation, operational automation and oversight of information security team
• Monitors regulatory compliance with enterprise security policies and educates business leaders and service managers on compliance efforts, including Sarbanes Oxley Controls
• Sets usage and security policies for information sharing on internal and external platforms.
• Oversee the administration of all information security technology platforms, ensuring that technologies are optimally configured and maintained to provide maximum uptime and protection to the organizations' information systems.
• Manage the IT security organization, consisting of direct reports and indirect reports including hiring, training, staff development, performance management and annual performance review.
• Liaise with corporate compliance, audit, legal and HR management teams as required, including overseeing annual audits and reporting as required.
• Develop, maintain and publish up-to-date security policies, standards and guidelines, and oversee training and dissemination of security policies and practices.
• Take a lead role in developing and managing information security programs, including, but not limited to; information security awareness programs, vulnerability management, vendor risk management and risk management assuming the lead role in responding to and containing information security related incidents.
• Engage proactively in risk management activities and conduct regular technical risk assessments/audits of systems and infrastructure.
• Promote a culture of information security across all business/technology groups the development and knowledge transfer to IT team members, as well as other enterprise groups.

Requirements:

• Bachelor's or Master's Degree in Information Technology, Computer Science, Engineering or related field.
• US Citizenship required. Must be able to obtain and maintain a U.S. Security Clearance at SECRET level (U.S. Citizenship required). Must also be able to satisfy federal government requirements for access to government information, and having dual citizenship may preclude you from being able to meet this requirement.
• Knowledge of or willingness to learn national and international regulatory compliances and frameworks relevant to the organization such as NIST 800-53v4, NIST 800-171, SOX, HIPAA, GDPR, and DFARs
• In-depth knowledge of applications, systems, network and data security, telecommunications, security operations, and associated hardware, software and protocols.
• 10 years of full-time experience in dedicated, technical information security roles with a strong knowledge of information security principles, practices monitoring and analysis tools.
• Background in information technology in an area such as; networking, programming, database management or systems administration.
• Experience with Incident Analysis and response concepts and techniques, preferably in a leadership role.
• Strong knowledge of Intrusion Detection System (IDS) / Intrusion Prevention System (IPS), firewalls, proxies and other network security technologies.
• Strong knowledge of host-based information security technologies.
• Strong knowledge of security implications involving a variety of technologies including but not limited to; Microsoft, Cisco, Unix/Linux, EMC, other market leaders in technology solutions, including mobile devices.
• Knowledge of NIST Cybersecurity framework a plus
• 3 years supervisory experience leading a security team
• CISA, CISM, CISSP or similar certification preferred.
• Must be willing to travel

EEO:

MACOM is an Equal Opportunity Employer committed to a diverse workforce. MACOM will not discriminate against any worker or job applicant on the basis of race, color, religion, gender, gender identity, gender expression, national origin, ancestry, age, sexual orientation, marital or civil partnership status, pregnancy, disability, genetic information, veteran status, military obligations, or membership in any other category protected under applicable law.

Reasonable Accommodation:

MACOM is committed to working with and providing reasonable accommodations to qualified individuals with physical and mental disabilities. If you have a disability and are in need of a reasonable accommodation with respect to any part of the application process please call 1-978-656-2500 or email HR_Ops@MACOM.com. Provide your name, phone number and the position title and location in which you are interested, and nature of accommodation needed, and we will get back to you. We also work with current employees who request or need reasonable accommodation in order to perform the essential functions of their jobs.