Director of IT Compliance

About The Position

Requirements

• Bachelor's degree in information systems, Computer Science, or related fields.
• Minimum of 10 years of experience in IT Audit, IT Risk, IT GRC, or IT Compliance.
• Demonstrated experience leading IT SOX compliance programs and working with IT control frameworks.
• Proven ability to design and implement controls in partnership with IT teams.
• Strong communication skills with the ability to build relationships and influence outcomes across stakeholders.
• Experience operating effectively in fast-paced, growing, or decentralized organizations.

Nice To Haves

• Master's Degree is a plus.
• CISA, CISSP, CRISC, or equivalent certification is strongly preferred.
• ITIL, COBIT, or process improvement certifications are a plus.
• Big 4 or consulting experience preferred when combined with internal compliance or audit experience.

Responsibilities

• IT SOX Compliance Ownership: Lead and manage the IT SOX compliance program, including system scoping, coordination of control testing, remediation tracking, and executive-level reporting.
• Audit Partnership and Coordination: Serve as the primary liaison between IT, Internal Audit, and external auditors. Ensure audit readiness, timely responses to inquiries, and effective issue resolution.
• Governance and Policy Development: Develop, implement, and maintain enterprise IT governance frameworks, policies, procedures, and control standards aligned with business needs and risk tolerance.
• Control Design and Implementation: Partner with IT leaders and teams to design and operationalize practical, sustainable controls across technology domains.
• Regulatory and Contractual Compliance Support: Support PCI-DSS and other regulatory or contractual compliance requirements as applicable.
• Project and Implementation Advisory: Participate in IT initiatives and system implementations to define control requirements and risk expectations early in project lifecycles.
• Risk and Gap Assessments: Conduct IT risk assessments and control gap analyses; prioritize issues and drive remediation planning in collaboration with IT partners.
• Metrics and Reporting: Define, track, and report compliance and control effectiveness metrics to support leadership decision-making.
• Risk Awareness and Communication: Promote risk awareness, accountability, and compliance best practices across IT through clear communication and guidance.
• Continuous Improvement: Monitor evolving regulatory requirements and industry standards; recommend enhancements to frameworks, policies, and practices to strengthen the overall compliance posture.

Benefits

• Competitive Pay
• Company 401K plan with Employer Contribution Match
• Company Paid Time Off
• Company Paid Life Insurance
• Choice of Medical Coverage including Prescription and Short Term Disability Plans
• Choice of Dental and Vision Coverage
• Optional Long-term Disability, Critical Illness, Accident, Legal and Pet Coverage
• Auto and Home Insurance Discount Programs