Axcelis Technologies · 3 months ago
IT GRC Analyst (Remote with occasional travel to Beverly, MA)
United States
Full-time
Remote
Mid, Senior Level
$107K/yr - $160K/yr
7+ years expAxcelis Technologies is seeking an IT GRC (Governance, Risk, and Compliance) Analyst to lead and support our enterprise-wide cybersecurity, audit, and compliance initiatives. The role is pivotal in strengthening IT controls, ensuring compliance with regulatory frameworks, and serving as a liaison between IT, Finance, and auditors.
IndustrialManufacturingSemiconductor
Responsibilities
Act as the primary IT liaison for internal and external audits
Coordinate requests and meetings for information (PBC lists)
Ensuring accurate and timely responses to auditor inquiries
Write, design, document, and maintain IT General Controls (ITGC) and IT Application Controls (ITAC) aligned with NIST, CMMC, COBIT, ISO 27001, and SOX 404
Lead, perform, facilitate, and coordinate control self-assessments and internal risk reviews. This is not an independent audit, but a management-driven review to ensure controls effectiveness and are operational
Maintain and enhance the NIST Cybersecurity Framework and CMMC compliance posture
Guide Axcelis through its compliance journey toward NIST 2.0 and CMMC certification
Coordinate and support SOX testing with internal/external auditors, IT, and Finance teams
Provide IT audit and compliance support for operational, financial, and advisory engagements
Respond to customer security questionnaires and manage third-party risk assessments
Oversee vulnerability assessments, participate in penetration testing, and track remediation
Facilitate reporting and metrics for key areas of cybersecurity (vulnerability management, patch management, coverage, etc…)
Act as a project manager for corrective action plans to drive resolution
Monitor and interpret changes in regulatory and compliance requirements
Develop and maintain security policies, standards, and procedures
Lead root-cause analysis and remediation planning for control deficiencies
Continuously improve audit methodologies, technologies, and best practices
Qualification
Required
7+ years of experience in IT GRC, cybersecurity compliance, or IT audit
Strong knowledge of NIST and CMMC
Strong knowledge SOX 404, ITGC, ITAC, COBIT
Experience managing external audits and audit documentation
Familiarity with vulnerability management, risk assessments, and incident response
Excellent written and verbal communication skills
Strong project coordination and stakeholder engagement abilities
Preferred
Bachelor's degree in information systems, cybersecurity, or related field
Certifications such as CISA, CRISC, CISSP, or ISO 27001 Lead Auditor
Understanding of cloud security and data protection regulations
Experience with AI risk assessment is a plus
Benefits
Eligibility in the Axcelis Team Incentive bonus plan
Comprehensive benefits package (for regular employees working 20+ hours a week)
Company
Axcelis Technologies
Axcelis Technologies is a provider of equipment and services to the semiconductor manufacturing industry.
1001-5000 employees
H1B Sponsorship
Axcelis Technologies has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (15)
2024 (5)
2023 (6)
2022 (10)
2021 (2)
2020 (3)
Funding
Current Stage
Public CompanyTotal Funding
$15M2013-07-09Post Ipo Debt· $15M
2000-07-11IPO
Leadership Team
James Coogan
Executive Vice President and Chief Financial Officer
David Ryzhik
Senior Vice President of Investor Relations and Corporate Strategy
Recent News
2026-01-22
2026-01-11
2026-01-11
Company data provided by crunchbase