Principal Analyst- Governance, Risk & Compliance

Microchip Technology Inc.•Chandler, AZ

2d•$75,000 - $232,000

About The Position

Are you looking for a unique opportunity to be a part of something great? Want to join a 17,000-member team that works on the technology that powers the world around us? Looking for an atmosphere of trust, empowerment, respect, diversity, and communication? How about an opportunity to own a piece of a multi-billion dollar (with a B!) global organization? We offer all that and more at Microchip Technology Inc. People come to work at Microchip because we help design the technology that runs the world. They stay because our culture supports their growth and stability. They are challenged and driven by an incredible array of products and solutions with unlimited career potential. Microchip’s nationally-recognized Leadership Passage Programs support career growth where we proudly enroll over a thousand people annually. We take pride in our commitment to employee development, values-based decision making, and strong sense of community, driven by our Vision, Mission, and 11 Guiding Values; we affectionately refer to it as the Aggregate System and it’s won us countless awards for diversity and workplace excellence. Our company is built by dedicated team players who love to challenge the status quo; we did not achieve record revenue and over 30 years of quarterly profitability without a great team dedicated to empowering innovation. People like you. Visit our careers page to see what exciting opportunities and company perks await! Job Description: Help lead the development and maintenance of documentation, policies, procedures, and standards aligned with ISO 27001. Collaborate with business stakeholders and senior leadership to conduct risk assessments and ensure effective risk management and mitigation strategies. Assist with both internal and external audits, including coordination with auditors, preparing relevant audit documentation, and tracking audit findings and resolutions. Support the vendor risk management process by evaluating third-party vendors and partners to identify and assess potential risks. Conduct regular risk assessments to identify, evaluate, and prioritize risks across the company, ensure timely mitigation actions are implemented. Prepare regular compliance and risk reports for senior management, highlighting key areas, trends, and performance against key compliance metrics. Stay up to date with industry trends, regulatory changes, and emerging risks. Recommend improvements to GRC processes and tools to enhance efficiency and effectiveness.

Requirements

Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Computer Science, or a related field.
10+ years of progressive experience in GRC, IT audit, control testing, and/or risk management within regulated or complex environments.
Demonstrated experience in cyber governance, cyber risk, and compliance in a dynamic and complex business environment.
Strong understanding of ISO 27001 standards and the certification process.
Excellent communication and documentation skills, with the ability to explain compliance requirements to technical and non-technical stakeholders.
Solid background and experience developing and maintaining required documentation of compliance processes, policies, procedures, and controls.
Strong analytical and organizational skills and great attention to detail.

Responsibilities

Help lead the development and maintenance of documentation, policies, procedures, and standards aligned with ISO 27001.
Collaborate with business stakeholders and senior leadership to conduct risk assessments and ensure effective risk management and mitigation strategies.
Assist with both internal and external audits, including coordination with auditors, preparing relevant audit documentation, and tracking audit findings and resolutions.
Support the vendor risk management process by evaluating third-party vendors and partners to identify and assess potential risks.
Conduct regular risk assessments to identify, evaluate, and prioritize risks across the company, ensure timely mitigation actions are implemented.
Prepare regular compliance and risk reports for senior management, highlighting key areas, trends, and performance against key compliance metrics.
Stay up to date with industry trends, regulatory changes, and emerging risks.
Recommend improvements to GRC processes and tools to enhance efficiency and effectiveness.

Benefits

We offer a total compensation package that ranks among the best in the industry. It consists of competitive base pay, restricted stock units, and quarterly bonus payments. In addition to these components, our package includes health benefits that begin day one, retirement savings plans, and an industry leading ESPP program with a 2 year look back feature.
Benefits of working at Microchip
The annual base salary range for this position, which could be performed in the US, is $75,000 - $232,000.
Range is dependent on numerous factors including job location, skills and experience.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume