Analyst, IT Audit and Compliance

About The Position

Requirements

• Bachelor’s degree in Information Systems, Computer Science, Accounting, or a related field.
• 5+ years of experience in IT audit, compliance, or risk management roles.
• Strong understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
• Experience managing audits and compliance initiatives in large or complex organizations.
• Excellent analytical, problem-solving, and organizational skills.
• Strong communication skills with the ability to engage both technical and non-technical stakeholders.
• Ability to manage multiple priorities in a fast-paced environment.

Nice To Haves

• Professional certifications such as CISA, CISM, CISSP, CRISC, or similar.

Responsibilities

• Plan, execute, and manage IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes
• Manage and test SOX controls within a publicly traded company environment, ensuring compliance with financial and IT regulatory requirements
• Conduct risk assessments to identify gaps and vulnerabilities in IT systems and processes
• Perform third-party risk assessments in alignment with NIST standards
• Develop and maintain audit plans aligned with business priorities and regulatory requirements
• Track, monitor, and report remediation efforts from audit findings and ensure timely closure
• Ensure adherence to regulatory requirements such as SOX, NIST, and PCI
• Maintain compliance with PCI-DSS 4.0, including scope reduction strategies such as segmentation, iFrame, and P2PE
• Manage IT compliance frameworks, policies, and procedures to support strong governance
• Collaborate with legal, finance, and business stakeholders to ensure compliance across systems and processes
• Stay current on regulatory changes and assess their impact on IT and business operations
• Lead and mentor the IT audit and compliance team
• Partner with IT and security teams to promote best practices in information security and data protection
• Serve as the primary liaison with external auditors, regulators, and third-party assessors
• Provide senior management with insights and recommendations to strengthen compliance posture
• Identify and implement process improvements to enhance audit efficiency and effectiveness
• Drive initiatives that strengthen internal controls and reduce risk exposure
• Perform other duties as assigned to support IT audit and compliance objectives

Benefits

• Medical, Dental, and Vision
• HSA/FSA plans
• Company-provided Basic Life and Accidental Death & Dismemberment (AD&D) Insurance
• Voluntary Life and Accidental Death & Dismemberment (AD&D) Insurance
• Critical Illness, Hospital Indemnity, and Accident Coverage
• Legal Insurance Plan
• Paid Time Off & Paid Holidays
• 401(k) plan with company match