About Marvell
Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities.
At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead.
Your Team, Your Impact
You are responsible for delivering the cyber security risk & compliance-related activities defined as per Marvell’s internal and external standards, frameworks, and attestations. As a Risk & Compliance Manager, you will play a critical role in developing and implementing a world-class information security risk and compliance program to meet industry-leading practices and customer security compliance. You’ll have a deep understanding of the information security risk standards, frameworks, and methodologies we can use to strengthen our risk and compliance posture.
The ideal candidate will be a strong leader and have a proven background in all aspects of the management of risk and compliance programs, with a focus on driving results and driving cyber security compliance across the organization. Candidate must have 12+ years of proven track record of building high-performing teams and driving results in complex environments.
What You Can Expect
- Responsible for managing Cyber Security Risk, Compliance, and Assurance activities.
- Drive the global cyber security certifications such as ISO 27001, ISO 27017, and TISAX. Evaluating control effectiveness and review evidence of controls by applying audit, compliance, security, and regulatory framework knowledge and experience, including, but not limited to review of ISO 27001, ISO 27017, NIST CSF, TISAX, NIST 800-171 as well as knowledge of controls related to Privacy, Compliance, Cyber and other risk domains.
- Develops, maintains, and delivers effective cyber security policies, standards, and procedures
- Drive the implementation of the cyber security projects in the areas of governance and risk
- Partner with IT, Legal, HR, and other business units to manage information security governance and compliance
- Work with cyber security teams to identify and track risk based on the threat landscape.
- Measuring ongoing metrics and improvements along with providing actionable items to the extended IT teams
- Develop and present the KRI and KPI to bring out the dashboard, which shows the security posture in compliance with all the cyber security controls.
- Ensure security is embedded in the project delivery process by providing appropriate information security policies, procedures, and guidelines.
- Prepare the team for external audits and facilitate customer requests and audits.
- Maintain the ongoing training and awareness program at Marvell. Develop a long-term Cyber Security Awareness Program strategy, processes, and procedures.
- Drive phishing simulation and subsequent activity to reduce enterprise phishing susceptibility.
- Report to leadership on metrics that effectively measure the impact of cybersecurity training and awareness programs.
- Driving continuous improvement of the effectiveness of control implementations and reporting to enhance and mature the security programs and exception management process.
#LI-MN1
What We're Looking For
- Bachelor’s degree in Information Technology or a related field
- Minimum 12 years of progressive experience in Cyber Security plus a managerial role
- Experience in security awareness program management is a plus
- Strong implementation experience of NIST Cyber Security Framework standards and requirements and ability to apply them to an enterprise environment
- Proven track record and experience in executing information security-related projects in a global company
- Experience in handling audits by customers and government agencies
- Experience with infrastructure operations and processes associated with IT service management in an Enterprise-level organization
- Experience in presenting to a larger audience. Very good oral and written communication skills in English
- Certifications: CISSP, CISM, CRISC, ISO27001 Lead Implementor and Auditor, SANS
#LI-MN1
Additional Compensation and Benefit Elements
With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.