Compliance Lead

About The Position

Requirements

• Bachelor’s Degree or equivalent relevant experience.
• 8+ years related work experience.
• 3-5 years in leading teams and/or projects
• Experience leveraging and developing IT auditing principles and methods to evaluate policies, processes, and systems to identify risks and control gaps.
• Must have experience with Sarbanes Oxley (SOX) and knowledge of one or more of these: CoBIT, COSO, NIST 800-171, and/or CMMC.
• Deep understanding of information security control concepts, IT audit practices, and security, risk, compliance methods, and technologies.
• Experience with technology audits, including documentation of system flows and controls, and performance of pre and post implementation reviews to ensure proper system development methodology adherence, adequate control design, etc.
• Experience in designing and executing compliance-based risk assessments and related mitigation strategies.
• Understanding of SOX regulatory requirements and COSO framework and principles.
• Advanced knowledge of Microsoft Operating Systems and products.
• Applies standard methodology, techniques, procedures and criteria.
• Strong technical, leadership, analytical/critical thinking, decision-making, and problem-solving skills.
• Ability to communicate effectively, both orally and in writing and to translate technical terminology into terms understandable to non-technical employees.
• Exceptional customer service skills.

Nice To Haves

• Security+, CISA (preferred)
• Experience using a SOX compliance tool preferred.

Responsibilities

• Collect, consolidate, and analyze IT system and service performance data from monitoring tools (Splunk, SolarWinds) to identify trends, anomalies, and performance issues.
• Design and maintain performance metrics, dashboards, and reporting frameworks that support both operational decision-making and executive visibility.
• Conduct root cause analysis on performance incidents and system degradation; develop and recommend corrective actions and process improvements.
• Ensure performance data and insights support compliance reporting, risk management, and audit requirements (NIST, SOX, or equivalent).
• Partner with IT operations, security, and infrastructure teams to translate performance data into actionable operational guidance and standards.
• Communicate complex analytical findings and recommendations to both technical and non-technical stakeholders in clear, concise formats.
• Monitor and report on Service Level Agreement (SLA) achievement, capacity trends, and cost-efficiency metrics.
• Develop and maintain performance improvement roadmaps aligned with program objectives and technology evolution.