IT Risk Compliance Specialist

About The Position

Requirements

• Bachelor’s Degree in Information Technology, Cybersecurity, Risk Management, or related field.
• Minimum of 3 years in IT risk management, compliance, and/or audit roles.
• Familiarity with regulatory standards and security frameworks.
• Proficiency in risk assessment tools and compliance software.
• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.

Nice To Haves

• Certified Information Systems Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified in Governance, Risk, and Compliance (CGRC)

Responsibilities

• Develop, implement, and maintain IT risk management and compliance programs aligned with regulatory standards (e.g., SOX, GDPR, HIPAA, PCI-DSS).
• Work closely with IT, Audit, and Operations business units to address compliance gaps.
• Conduct risk assessments and recommend mitigation strategies for IT systems and processes.
• Track and report compliance metrics, risk findings, and remediation progress to stakeholders.
• Monitor compliance with internal policies, procedures, and external regulations.
• Prepare documentation and evidence for internal and external audits.
• Maintain accurate records of compliance activities and risk assessments.
• Assist in creating and updating IT security and compliance policies.
• Ensure adherence to frameworks such as NIST, CIS, and ISO.
• Provide guidance and training on compliance requirements and best practices.
• Other duties as required.

Benefits

• Medical, Dental and Vision
• Flexible spending account
• Paid time off
• Long term disability, and life insurance
• Retirement 401K