Senior IT Compliance Analyst

About The Position

Requirements

• B.S. (or higher-level degree) in Computer Science or a similar program with strong academic performance preferred
• Advanced Technical Writing
• Knowledge and understanding of compliance mandates, frameworks, and standards such as SOX ITGCs, SOC 2 Type 2, ISO 27001, and NIST 800-53
• Experience using AI-enabled tools to support compliance, risk management, audit activities, or documentation review, with an understanding of related governance and risk considerations
• Experience leading the entire lifecycle of SOC 2 Type 2 attestations and ISO 27001 certifications, in a first or second line of defense role. Responsibilities included planning, gap assessment, policy/procedure creation and updates, gathering evidence, stakeholder coordination, including internal and external auditors, reporting status updates, addressing issues/findings, and other activities to achieve a successful attestation and certification.
• Knowledge and experience identifying Information Technology and Information Security risks and designing and implementing controls
• Familiarity with GRC and compliance management tools such ServiceNow GRC, Drata, Vanta, OneTrust, or similar platforms used for managing risk, controls, and audit workflows
• Ability to effectively communicate with both technical and non-technical personnel
• Ability to interpret management, operational and technical implementation methods to determine compliance with existing controls
• Proven team experience and comfort in a team-oriented environment
• Passion for working with technology and excitement for creating high quality consumer technology product
• Minimum 5 years of relevant experience
• Please note that sponsorship of new applicants for employment authorization, or any other immigration-related support, is not available for this position at this time.

Responsibilities

• Lead SOX, SOC 2 Type 2, and/or ISO 27001 compliance frameworks to meet compliance requirements
• Lead cross-functional business and governance projects, including defining, implementing, and analyzing IT processes and procedures that support the company’s business objectives
• Lead compliance audits and assist in preparing documentation for program reviews
• Utilize AI-enabled tools and technologies to support compliance assessments, audit preparation, documentation analysis, and ongoing monitoring of controls
• Analyze, design, implement, and improve compliance programs, processes and controls
• Collaborate with other departments across Alarm.com and subsidiaries to ensure effective communication, training, and understanding of IT compliance frameworks, policies and procedures
• Monitor IT policies to ensure compliance with all aspects of federal, state, and local laws and regulations. Maintain the policy library to ensure it is up to date
• Recommend mitigation strategies to reduce risk to the environment
• Research and respond to security questionnaires from current and potential partners and customers
• Evaluate waivers/exceptions to policies to ensure they are accurate and still meet their initial intent
• Support other IT Compliance initiatives as needed
• Other duties as assigned

Benefits

• Our total rewards package is designed to support you holistically—in your health, your finances, and your life outside of work.
• The package includes medical plans with company subsidies, a Health Savings Account (HSA) with a company contribution, and a 401(k) with an employer match.
• We encourage a healthy work-life balance with paid vacation that increases with tenure, paid holidays, wellness time, and paid maternity and bonding leave.
• To complete the package, we also provide company-paid disability and life insurance, all within a collaborative and casual work environment.