What are the responsibilities and job description for the Chief Information Security Officer position at SiTime Corporation?
About SiTime
SiTime is the Precision Timing company.
Timing is the heartbeat of all electronics, ensuring performance, resilience and scalability. For decades, quartz devices, non-silicon technology, have kept systems in sync, but they struggle in harsher, more demanding environments. MEMS-based Precision Timing delivers greater accuracy, smaller size and resilience. Today, MEMS timing powers over 400 applications, including high-growth ones in AI datacenters, automated driving, industrial and humanoid robots, wearables and IoT.
Our semiconductor MEMS programmable solutions offer a rich feature set that enables customers to differentiate their products with higher performance, smaller size, lower power, and better reliability. With more than 4 billion devices shipped, SiTime is changing the timing industry. For more information, visit: www.sitime.com.
Job Summary
SiTime is seeking a seasoned and hands-on Chief Information Security Officer (CISO) to lead the company’s global cybersecurity and information security strategy. Reporting to the Chief Digital Officer, the CISO will be accountable for protecting SiTime’s digital assets, intellectual property, customer data, and operational resilience while enabling business growth, digital transformation, manufacturing operations, and M&A activities.
Responsibilities:
Cybersecurity Strategy & Governance
- Define and execute SiTime’s enterprise cybersecurity strategy aligned with business objectives, digital transformation initiatives, and manufacturing operations.
- Own cybersecurity governance, policies, standards, and risk management practices across the enterprise.
- Ensure alignment with the NIST Cybersecurity Framework and evolving regulatory and customer security expectations.
- Embed security-by-design principles across systems, applications, cloud platforms, and engineering workflows.
- Lead security diligence and integration planning for the Renesas timing business acquisition and any future M&A activity.
Risk Management & Compliance
- Identify, assess, prioritize, and mitigate cybersecurity risks across IT, cloud, engineering, manufacturing, and third-party ecosystems.
- Own customer cybersecurity audits and reviews, partnering with Sales, Legal, and Engineering to support customer due diligence, address findings, and enable revenue-critical engagements.
- Manage supply chain and third-party security risk across SiTime’s fabless model, including TSMC and other manufacturing partners, EDA vendors, and contract partners.
- Oversee compliance with applicable regulations and frameworks (e.g. GDPR, CCPA, SOC, and customer contractual obligations).
- Partner with Legal and Finance on cyber risk disclosures and audit readiness.
Incident Response & Operational Security
- Own the cybersecurity incident response program, including detection, escalation, communication, and remediation processes.
- Lead cross-functional incident response efforts involving Legal, Finance, Engineering, Operations, and executive leadership.
- Ensure continuous monitoring, threat intelligence integration, penetration testing, and vulnerability management.
- Define and manage cybersecurity strategies for manufacturing and lab environments, including legacy or ageing equipment, constrained upgrade paths, and operational continuity requirements.
- Drive post-incident reviews and continuous improvement.
Board & Executive Engagement
- Serve as the primary cybersecurity advisor to the Chief Digital Officer and executive leadership team.
- Provide regular cybersecurity risk and program maturity updates to the Audit Committee and Board of Directors.
- Translate technical risk into clear business impact and actionable recommendations for senior leadership.
Qualifications & Requirements :
- 15 years of progressive experience in information security, cybersecurity, or risk management roles, including 5 years in senior leadership positions.
- Prior experience as a CISO or senior security leader in a technology, semiconductor, or IP-driven company preferred.
- Strong understanding of EDA tools, chip design workflows, and fab relationships.
- Experience securing advanced manufacturing or semiconductor environments, including legacy or constrained equipment and factory networks.
- Strong knowledge of cybersecurity and compliance frameworks including CMMC, NIST, and ISO 27001, with experience leading readiness, audits, and certification efforts preferred.
- Proven track record building and running security programs at a public company, including SOX compliance and Audit Committee reporting.
- Demonstrated experience supporting M&A security diligence and post-acquisition integration.
- Proven ability to engage effectively with Boards, Audit Committees, and executive leadership.
- CISSP, CISM, or equivalent professional certification.
It is not necessary to meet all job requirements to be a qualified candidate for the position.
Desired Characteristics & Attributes:
- Demonstrates sound business judgement that balances cybersecurity risk reduction with operational continuity and commercial impact
- Communicates technical risk clearly and credibly, translating complexity into concise, business‑relevant insights for executives, customers, and the Board
- Acts as a collaborative partner across Engineering, IT, Sales, Legal, Finance, and Operations
- Leads calmly and decisively during incidents, exhibiting strong ownership and maintaining executive and Board confidence
Compensation Range:
At SiTime, we believe great work deserves great rewards. We offer a comprehensive and highly competitive compensation package designed to attract top talent.
In addition to base salary, this role is eligible for a quarterly bonus tied to the achievement of innovation goals—reflecting our commitment to recognizing meaningful impact. We also offer equity grants, providing a meaningful opportunity to share in the company’s future growth and success.
SiTime is an Equal Opportunity Employer. We treat each person fairly and we do not tolerate discrimination or harassment against anyone on the basis of any protected characteristics, including race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, pregnancy, political affiliation, protected veteran status, protected genetic information, or marital status or other characteristics protected by law. SiTime participates in the E-Verify program.
Learn More about SiTime: Review the Get to Know SiTime section of our career page to explore our culture, values, and what makes us unique.
- Innovation on Top – Philosophies of Innovation with Rajesh Vashist
- Fabrication Knowledge – An Interview with Rajesh Vashist
- SiTime Corporation – YouTube
#LI-SITIME