SIGN IN
Information Security Engineer, Principal jobs in United States
cer-icon
Apply on Employer Site
company-logo

MACOM · 1 day ago

Information Security Engineer, Principal

positionLowell, MA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$117K/yr - $200K/yr
date5+ years exp
MACOM is a leading semiconductor manufacturer specializing in Data Center, Telecommunication, and Industrial and Defense applications. They are seeking a Principal Information Security Engineer to lead the development and implementation of their enterprise-wide resilience program, focusing on Business Continuity and Disaster Recovery lifecycle management.
Telecom & CommunicationsSemiconductorIndustrialElectronicsManufacturingInformation TechnologyInternetMachinery ManufacturingTechnical SupportWireless
badNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Lead the development, maintenance, and continuous improvement of the enterprise BCDR program within the Information Security function
Establish governance processes, reporting structures, and key performance indicators aligned to organizational risk appetite and compliance requirements
Ensure BCDR practices align with NIST CSF, NIST 800-34, ISO 22301, CMMC, and internal ISMS controls
Facilitate cross-functional collaboration among IT, Security, Operations, Manufacturing, HR, Facilities, Legal, and Business Owners
Plan and conduct structured interviews, workshops, and data-gathering sessions with business leaders and process owners
Document critical business processes, dependencies, system interrelationships, and recovery time objectives (RTOs/RPOs)
Analyze operational, financial, regulatory, and reputational impacts to determine organizational priorities for continuity
Maintain an enterprise BIA repository and ensure periodic review and updates
Identify vulnerabilities, single points of failure, and resilience gaps revealed through BIAs and risk assessments
Recommend and document mitigation strategies, compensating controls, and resilience enhancements
Work with IT Architecture, Infrastructure, and Security teams to ensure alignment with redundancy, high-availability, and site-failover strategies
Develop, document, and maintain Disaster Recovery plans, including system-specific runbooks, recovery steps, communication flows, and escalation procedures
Coordinate with IT Operations, Cloud/Infrastructure, Application Owners, and Security to ensure DR procedures are complete, testable, and auditable
Ensure DR documentation aligns with RTO/RPO requirements, and compliance frameworks
Lead tabletop exercises, functional tests, and full-scale DR simulations
Document test results, track remediation activities, and report on program maturity to leadership and audit stakeholders
Validate that DR plans remain current with system changes, architectural decisions, and change management activities
Coordinate BCDR procedures with the Cyber Incident Response Plan and Crisis Management Team
Ensure seamless integration between recovery plans and security response workflows
Participate in major incident response activities when continuity or recovery actions are required
Develop and maintain BCDR documentation repositories, templates, and standards
Provide status updates, dashboards, and executive-level reports detailing program readiness and risk exposure
Prepare program evidence for internal audits, customer assessments, and compliance reviews (CMMC, ISO, DFARS, etc.)

Qualification

Business ContinuityDisaster RecoveryNIST CSFISO 22301CMMCBIAsRisk AssessmentDocumentationAnalytical SkillsCommunication SkillsFacilitation SkillsProblem-SolvingDetail-Oriented

Required

Bachelor's degree in information security, Information Technology, Business Continuity, or related field (or equivalent experience)
5–7+ years of experience in Business Continuity, Disaster Recovery, Information Security, or related resilience disciplines
Demonstrated experience conducting BIAs, developing DR plans, and running continuity exercises
Strong understanding of frameworks such as NIST CSF, NIST SP 800-34, ISO 22301, and CMMC
Excellent interviewing, facilitation, documentation, and analytical skills
Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership

Preferred

Professional certifications (e.g., CBCP, MBCI, ISO 22301 Lead Implementer/Auditor, CISSP, CISM)
Experience developing or maturing BCDR governance programs in manufacturing, engineering, defense contracting, or other critical industries
Familiarity with IT architecture, high-availability infrastructure, cloud resiliency, and cybersecurity incident response

Benefits

Health, dental, and vision insurance.
Employer-sponsored 401(k) plan.
Paid time off.
Professional development opportunities.

Company

MACOM

twittertwittertwitter
Glassdoor3.8
company-logo
MACOM is a supplier of high-performance analog RF, microwave, millimeterwave, and photonic semiconductor products.
dateFounded in 1950
location
Lowell, Massachusetts, USA
people-size1001-5000 employees
web-link
https://www.macom.com/

Funding

Current Stage
Public Company
Total Funding
$43.75M
2012-03-15IPO
2011-01-12Private Equity
2010-06-08Private Equity· $43.75M

Leadership Team

leader-logo
Stephen Daly
President & CEO, Director
linkedin
leader-logo
Cristian Stagarescu
Principal Engineer Photonics R&D

Recent News

legacy.thefly.com
Macom reports Q1 adjusted EPS $1.02, consensus $1.00
2026-02-05
Irish Tech News
Three-Quarters of Adults Want AI and Coding Taught in Schools
2026-01-24
thefly.com
Macom appoints Bryan Ingram to board of directors
2026-01-13
Company data provided by crunchbase