Program Manager - Compliance, GT Cybersecurity & Risk Management

Expeditors•Seattle, WA

21d•Onsite

About The Position

The Program Manager - IS Compliance serves as a high-impact position in the Cybersecurity and Risk Management Portfolio in the Global Technology (GT) department. This role acts as a thought leader, bridging the gap between traditional financial compliance and a growing technology environment. The position interfaces with 1st Line process owners, the company's Internal Audit department, and external auditors. The goal is to demonstrate compliance with the system of internal control, empower and accelerate GT department Compliance programs through industry-standard compliance methodologies, and provide systematic visibility to health and performance. The ideal candidate will have a strong depth of understanding of compliance and audit fundamentals, the COSO and COBIT frameworks, and Internal Controls over financial reporting, with multiple years of detailed Audit experience (CISA certification preferred). Additionally, this role requires an excellent communicator with detailed project management and analytic capabilities, who can communicate critical audit matters to management, identify trends, and remediate and avoid issues. This position is on-site and will reside in the greater Seattle, WA. area.

Requirements

Deep knowledge of compliance frameworks (SOX, COBIT).
Advanced understanding of technical IT domains (Operating Systems, Databases, Networks).
Experience with complex IT control testing and validation.
Strong data analytics and visualization skills.
Ability to curate and maintain complex audit artifacts and system configurations.
Ability to work autonomously and drive projects to completion without direct supervision.
Applicants are required to be eligible to lawfully work in the U.S. immediately; employer will not transfer or sponsor applicants for U.S. work authorization (such as an H-1B visa) for this opportunity.

Nice To Haves

Bachelor's degree in Information Systems, Accounting, Business, or a relevant field.
4-6 years of detailed IS audit experience.
Strong understanding of SOX, COBIT, and technical IT domains (e.g., OS, DB, Network).
Certification: CISA, CPA, or CIA preferred.

Responsibilities

Serves as a thought leader that bridges the gap between traditional financial compliance and a growing technology environment.
Interfaces with 1st Line process owners, the company's Internal Audit department, as well as external auditors.
Demonstrates compliance with the system of internal control.
Empowers and accelerates GT department Compliance programs through industry standard compliance methodologies.
Provides systematic visibility to health and performance.
Acts as the primary liaison for external auditors, handling complex technical inquiries and walkthroughs.
Translates for 1st Line technical teams to interpret audit requirements and design compliant controls.
Leads root cause analysis discussions and presents technical solutions.
Independently manages audit programs and drives projects to completion without direct supervision.
Designs controls that are "compliant by design."
Proposes technical solutions based on deep-dive investigations into control failures.
Creates and maintains the integrity of audit artifacts and system configurations.
Owns end-to-end audit programs for high-risk or complex technical areas.
Applies a strategic approach to identifying root causes and implementing sustainable solutions.
Works autonomously, prioritizes tasks, and ensures project completion.