If you are looking for a challenging and exciting career in the world of technology, then look no further. Skyworks is an innovator of high performance analog semiconductors whose solutions are powering the wireless networking revolution. At Skyworks, you will find a fast-paced environment with a strong focus on global collaboration, minimal layers of management and the freedom to make meaningful contributions in a setting that encourages creativity and out-of-the-box thinking. Our work culture values diversity, social responsibility, open communication, mutual trust and respect. We are excited about the opportunity to work with you and glad you want to be part of a team of talented individuals who together can change the way the world communicates.
Please access Privacy Notice for Mexico for important information on personal data and electronic communications.
Job Description
The Sr Information Security Analyst will be a key member of Skyworks’ Information Security team. This person will work closely with cross functional teams to ensure appropriate physical, administrative and technical controls are operating effectively to ensure the confidentiality, integrity and available of Skyworks’ information resources. This role involves leading efforts to ensure the organization’s adherence to regulatory requirements, data privacy standards, and best practices in information security. The successful candidate will be responsible for performing risk assessments, implementing compliance frameworks, and spearheading various privacy initiatives.
Responsibilities
- Strategize on the development and execution of the Information Security and GRC program and roadmap.
- Develop, maintain, and enforce Skyworks Information Security Policies, Standards, Guidelines, and other Information Security related documents.
- Conduct regular risk and vulnerability assessments to identify areas of concern.
- Assess and monitor security processes and controls to assure compliance with applicable security frameworks, regulatory, and client requirements.
- Perform and manage third-party security risk assessments.
- Collaborate with cross functional teams to collect evidence for customer audits and policy frameworks such as ISO27001, CMMC, GDPR, CPRA
- Maintain the security risk register and track the progress of remediation efforts.
- Manage the information security awareness programs which include security awareness training, phishing campaigns, security newsletters and publications
- Monitor changes to security best practices, using industry frameworks, and regulations to determine how these changes may impact Skyworks’ security posture.
- Develop metrics and dashboards to measure and showcase the maturity progression of Skyworks Information Security program.
- Implement, administer, and maintain Skyworks Information Rights Management tool.
- Develop and update data flow diagrams for critical systems. Help identify manual workarounds for system integrations and dependencies to help mature Skyworks cyber resiliency program.
- Create, update, and maintain the privacy data map that is required for different privacy regulations (GDPR, CPRA, PIPL, DPDP).
- Perform privacy impact and/or security assessments as needed for different projects and systems.
- Provide cybersecurity expertise/consulting to teams and management
- Review and advise on security provisions in legal contracts
Qualifications
- Minimum Education Level: Bachelor’s Degree, Information Systems Management, Computer Science, Cybersecurity, or related field.
- 5+ years of full-time work experience in IT audit, security risk management, information security, security compliance, privacy, or other GRC areas.
- Experience in leading security assessments, developing and implementing security controls, and driving security compliance programs.
- Working knowledge of Privacy (GDPR, CCPA, PIPL), ISO27000 and NIST 800-171 requirements.
- Understanding of common Information Security frameworks such as COBIT, SANS Critical Controls, and NIST CSF
- Good communication skills, strong work ethic, attention to detail, and ability to collaborate in a team setting.
- Strong critical thinking, analytical, and problem-solving skills
- Proficient with the Microsoft office suite.
- CISSP, CISA, CISM, CRISC or a similar risk management, audit, or security certification(s) is preferred.
Skyworks is proud to be an equal opportunity employer supporting diversity in the workplace.
Job Segment: Information Security, Computer Science, Network, Telecom, Telecommunications, Technology
$ads={2}
$ads={1}