IT Compliance Manager

About The Position

Requirements

• Bachelor's degree in Information Technology, Cybersecurity, Information Systems, Business, or equivalent experience.
• 4+ years of experience in IT compliance, information security, governance, risk management, or audit-related roles.
• Experience supporting compliance frameworks such as SOC 2, ISO 27001, PCI-DSS, HIPAA, NIST, or similar standards.
• Experience coordinating audits and maintaining compliance documentation and evidence repositories.
• Strong project management, organizational, and documentation skills.
• Ability to manage multiple priorities while maintaining exceptional attention to detail.
• Strong written and verbal communication skills with the ability to work across technical and non-technical teams.
• Experience working within cloud infrastructure, managed services, SaaS, web hosting, or data center environments.
• Familiarity with identity and access management concepts, access reviews, and security governance practices.

Nice To Haves

• Professional certifications such as CISA, CRISC, CISM, Security+, ISO 27001 Lead Implementer, or ISO 27001 Lead Auditor.

Responsibilities

• Maintain compliance documentation, evidence repositories, and audit-ready artifacts across applicable frameworks including SOC 2, ISO 27001, PCI-DSS, HIPAA, NIST CSF, and customer security requirements.
• Maintain compliance calendars, assessment schedules, and framework documentation.
• Monitor regulatory, contractual, and industry developments and communicate emerging compliance obligations to stakeholders.
• Track remediation plans, corrective actions, and control deficiencies through resolution.
• Coordinate internal and external audit activities, including evidence collection, auditor requests, and stakeholder engagement.
• Serve as a primary point of contact for audit coordination and compliance inquiries.
• Support control testing activities, risk assessments, and compliance reviews.
• Track audit findings and corrective actions through closure.
• Assist teams in preparing for recurring compliance assessments and certifications.
• Maintain information security policies, standards, procedures, and governance documentation.
• Coordinate periodic policy reviews and updates with business and technical stakeholders.
• Ensure governance documentation remains aligned with organizational requirements and compliance obligations.
• Support continuous improvement initiatives related to compliance and risk management processes.
• Coordinate periodic access reviews, user access certifications, and privileged access validation activities.
• Partner with IT and Identity Management teams to maintain evidence supporting access control compliance.
• Support documentation, validation, and improvement of identity and access management processes.
• Coordinate responses to customer, prospect, and partner security questionnaires.
• Assist with third-party risk assessments and vendor security reviews.
• Escalate identified compliance or security concerns to appropriate stakeholders.
• Support customer-facing compliance and security assurance activities.
• Prepare compliance metrics, audit status reports, and remediation tracking for leadership review.
• Maintain dashboards and reporting tools related to compliance activities.
• Administer compliance and security awareness training programs and monitor completion rates.
• Support organizational compliance communications and awareness initiatives.

Benefits

• Comprehensive benefits package
• Traditional and Roth 401(k) with company matching
• A collaborative, team-oriented culture
• Consistent and predictable work hours
• Engaging, varied work that keeps each day different
• Opportunities to contribute ideas and influence how work gets done