Cybersecurity Risk Analyst - US Federal and Commercial

Qorvo (Nasdaq: QRVO) supplies innovative semiconductor solutions that make a better world possible. We combine product and technology leadership, systems-level expertise and global manufacturing scale to quickly solve our customers' most complex technical challenges. Qorvo serves diverse high-growth segments of large global markets, including consumer electronics, smart home/IoT, automotive, EVs, battery-powered appliances, network infrastructure, healthcare and aerospace/defense. Visit www.qorvo.com to learn how our diverse and innovative team is helping connect, protect and power our planet.

SUMMARY:

The Cybersecurity Risk Analyst will work with a broad range of teams throughout Qorvo to ensure appropriate security and risk programs for the evolving world of cybersecurity threats and compliance requirements. The emphasis of this role is managing cybersecurity Governance, Risk and Compliance (GRC) related to US federal programs and commercial programs.  Duties include assessing internal and third-party security capabilities, advising and consulting on traditional and innovative solutions to security problems, and building security consensus between IT, business, and operations teams. These duties include but are not limited to monitoring and maintaining alignment with security control frameworks, monitoring remediation plans, evaluating and updating Qorvo cybersecurity policies and procedures, and providing input for the security awareness and training program. Additionally, the incumbent must be comfortable translating between security, compliance, business, and technical requirements.

The preferred location for this role is: Dallas, TX; Portland, OR, or Greensboro, NC locations will be considered for qualified applicants.  The position is either on-site or hybrid (2-3 days per week remote).

RESPONSIBILITIES:

• Serve as the Qorvo subject matter expert and advisor for a range of cybersecurity regulatory compliance and contractual requirements and security control frameworks, with an emphasis on CCMC/NIST 800-171/NIST 800-53 control requirements and certification
• Oversee and execute appropriate assessment and accreditation activities as required by customers and other third-parties
• Coordinate and address supply chain/third-party cybersecurity risk management concerns
• Develop, evaluate, and recommend cybersecurity controls for a broad range of technology and business projects and programs
• Employ cyber security processes, methods, techniques, and tools and assure their consistent application
• Participate in incident response and investigation activities as directed
• Maintain leading-edge knowledge on the impacts of emerging technologies on Qorvo’s cybersecurity capabilities and broadly share this knowledge with relevant stakeholders
• Manage relationships with an extensive network of third-party cybersecurity support teams (e.g., MSSPs and vendors)

QUALIFICATIONS: 

• At least 3 years of hands-on information security experience
• Experience with various security compliance requirements, regulations, and frameworks (e.g., CMMC, PCI-DSS, HIPAA, ISO-2700X, NIST 800-171, NIST-CSF)
• Well organized and ability to be successful in fast-paced, high-stress scenarios
• Experience with specific security solutions including vulnerability scanning and reporting, firewalls, SIEMs, penetration-testing tools, etc. (e.g., Nessus, Qualys, Rapid 7, etc.)
• Ability to communicate technical security topics to project management, development, and operations personnel
• Ability to take direction and understand and execute technical and administrative tasks
• BS preferred, will consider certification and work experience
• Current CISSP, Security+, SANS and/or other security certifications preferred
• Experience in manufacturing, semiconductor, and/or US federal contractor environment is preferred

Qorvo will not sponsor job applicants for visas or work authorizations for this position.

#LI-LR1

MAKE A DIFFERENCE AT QORVO   

We are Qorvo. We do more than create innovative RF and Power solutions for the mobile, defense and infrastructure markets – we are a place to innovate and shape the future of wireless communications. It starts with our employees. As a unified global team, we bring a commitment to excellence, growth and a passion for creating what's next. Explore the possibilities with us.

We are an Equal Employment Opportunity (EEO) / Affirmative Action employer and welcome all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, military or veteran status, physical or mental disability, genetic information, and/or any other status protected by law.