Senior IT - Government Risk Compliance Analyst

Microchip Technology Inc. is seeking an experienced Senior IT GRC Analyst with a strong foundation in IT audit and information security controls to support our compliance initiatives, including ISO 27001 and TISAX. This role will play a key part in maintaining our governance, risk, and compliance frameworks, performing control assessments, and ensuring alignment between IT operations, security, and business objectives.

The ideal candidate has hands‑on experience assessing IT controls and risks, collaborating with auditors, and supporting global compliance and certification programs.

• Support and maintain the Information Security Management System (ISMS) aligned with ISO 27001 and TISAX requirements.
• Perform risk assessments, control testing, and gap analysis to ensure IT controls meet internal and external standards.
• Assist in preparing for internal and external audits, including evidence collection, walkthroughs, and remediation tracking.
• Work closely with IT, security, and business stakeholders to document and strengthen IT general controls (ITGCs).
• Monitor and report on compliance status, control performance, and audit findings.
• Help mature enterprise GRC processes, including risk management, policy governance, and issue tracking.
• Support continuous improvement initiatives in security, compliance, and audit readiness.
• Stay current on emerging standards, frameworks, and best practices (ISO 27001:2022, TISAX, SOC 2, NIST, etc.).

• Bachelor’s degree in information systems, Computer Science, Accounting, or a related field.
• 5+ years of experience in GRC, IT audit, or IT compliance roles.
• Strong understanding of IT General Controls (ITGCs) across domains such as access management, change management, operations, and security.
• Experience supporting ISO 27001, TISAX, SOC 2, or similar compliance frameworks.
• Ability to educate and guide on compliance framework and control implementations.
• Familiarity with risk and control frameworks (e.g., COBIT, NIST, COSO).
• Excellent communication skills and ability to work cross‑functionally with global teams.
• Detail‑oriented with strong analytical and documentation skills.

• Relevant certifications: CISA, CRISC, CISM, CISSP, and CGEIT.
• Experience using GRC tools such as ServiceNow and Diligent.
• Prior experience in manufacturing or automotive environment.

• Medical, Dental, and Vision Insurance
• Parking, Mother’s room, and Moms‑to‑be Carpark
• Education support
• Other benefits available