Cybersecurity Risk & Compliance Professional

About Marvell

Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities.

At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead.

Your Team, Your Impact

You are responsible for delivering the cyber security risk & compliance-related activities defined as per Marvell’s internal and external standards, frameworks, and attestations. As a Cybersecurity Risk & Compliance Professional, you will play a critical role in developing and implementing a world-class information security risk and compliance program to meet industry-leading practices and customer security compliance. You’ll have a deep understanding of the information security risk standards, frameworks, and methodologies we can use to strengthen our risk and compliance posture.

What You Can Expect

• Responsible for executing day to day cyber security risk, compliance, and assurance activities.
• Support the global cyber security certifications such as ISO 27001, ISO 27017, and TISAX. Evaluating control effectiveness and review evidence of controls by applying audit, compliance, security, and regulatory framework knowledge and experience, including, but not limited to review of ISO 27001, ISO 27017, NIST CSF, TISAX, NIST 800-171 as well as knowledge of controls related to Privacy, Compliance, Cyber and other risk domains.
• Effectively develop thorough testing procedures, plan and execute the testing working with relevant stakeholders, document the testing workpapers, develop a summary report, capture observations / findings, recommend action plans, obtain agreement from stakeholders on management response plans, track remediation, and execute remediation testing.
• Drive the implementation of the cyber security projects and assessments in the areas of governance and risk
• Ensure relevant security controls are embedded in the project delivery process by providing appropriate insights to project teams.
• Collaborate with internal and external stakeholders assessing cyber security controls. Support the collection of any necessary evidence, coordination of walkthroughs / meetings, and any needed logistics to facilitate the assessment / audit effort.
• Timely report status and metrics to the cyber security management team.
• Complete work per agreed timelines with high quality.
• Support extended cyber security team’s efforts
  
  

What We're Looking For

• Bachelor’s degree in Information Technology or a related field
• 5-8 years of experience in cyber security audit and/ or compliance.
• Strong implementation or assessment experience of NIST Cyber Security Framework standards and requirements.
• Proven track record and experience in executing information security-related projects in a global company
• Experience in supporting cyber security audits by internal audit or other third parties (i.e. ISO 27001, ISO 27017, and TISAX).
• Experience with infrastructure operations and processes associated with IT service management in an enterprise-level organization
• Experience presenting to large audiences. Very good oral and written communication skills in English
• Preferred Certifications: CISA, CISSP, CISM, CRISC, ISO27001 Lead Implementor and Auditor, SANS
  
  

Additional Compensation And Benefit Elements

With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.