IT Compliance Manager

Job DescriptionJob Description

ESSENTIAL DUTIES & RESPONSIBILITIES

General description of main/primary duties and responsibilities of the job, aptitude, level of complexity, span of control, autonomy, decision making and judgement. It is central and necessary to the satisfactory performance of the job. Includes the following and other duties as assigned.

Under limited supervision, this position will:

• Oversee the IT compliance programs, policies, controls and reporting, ensuring adherence to regulatory and company requirements. With a focus on Sarbanes Oxley and NIST – CIP.
• Enforce Information Security policies and standards for Information and Operation Technology (IT/OT) implementations.
• Identify and escalate compliance issues promptly and with detailed reporting.
• Manage IT compliance audits, including evidence gathering (Audit Standard 15), and review controls and compliance processes.
• Manage staff and foster a proactive, risk-aware, service orientated culture. Mentor and develop IT Security & Compliance Administrators with a “player/coach” mindset, supporting evidence gathering, reporting, and cross-team collaboration.
• Coordinate IT SOX compliance efforts with the IT management, and internal and external audit teams.
• Evaluate control processes, identify risks, and design mitigating controls. Develop or revise IT policies and procedures as needed.
• Foster professional curiosity and “what can go wrong” scenarios to address organizational risks proactively.
• Collaborate with vendors and contractors to achieve timely goals.
• Support the organization in understanding regulatory nuances and document processes and specifications.
• Performs other duties as assigned.

QUALIFICATIONS

Education, Experience, Licensure (minimum level required)

• Bachelor’s Degree from an accredited institution.
• Field of Study: Computer Information Systems, Computer Science or related.
• At least five (5) years of related IT Compliance experience.
• Experience with IT systems, including operating systems, databases, applications, and /access management.
• ITGC, SOX application controls testing, and NIST experience.

CORE COMPETENCIES

List and describe the required factors (i.e. knowledge, skills, abilities, software programs, equipment, competencies), that make it important or needed for this role. Indicate the level of proficiency/expertise for each when possible.

• Strong knowledge of IT policies, processes, procedures, and standards.
• Expertise in SOX processes and control best practices.
• Familiarity with PowerShell, SQL script reading, and pseudocode writing.
• Proficiency in Microsoft Office (Excel, Word, PowerPoint).
• Integrity, professionalism, and a logical problem-solving approach.
• Strong organizational skills, ability to manage multiple deadlines, and attention to detail.
• Analytical skills related to identifying and mitigating risks.
• Effective written, verbal, and presentation communication skills, with the ability to build consensus.
• Ability to effectively supervise day to day work activities of direct reports.

SUPERVISORY RESPONSIBILITIES

This role will have managerial responsibilities over the team. Supervises two (2) or more Full-Time Employees regularly.

Responsible for regularly making decisions and/or recommendations concerning:

• Interviewing, hiring, and onboarding staff.
• Mentoring, training, and professional development.
• Planning, assigning, and evaluating work.
• Recommending promotions or other status changes.
• Addressing complaints, grievances, and disciplinary issues.
• Promoting a collaborative and service-oriented team environment.

WORK ENVIRONMENT

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Excludes occasional visitation to the field – reference Travel section.

Office Related:

• Job is primarily performed in an office setting with exposure to computer screens and requires regular use of a computer, keyboard, mouse, and multi-line telephone system.
• The noise level in the work environment is usually moderate.
• Specific vision abilities required by this job include close vision, distance vision and ability to adjust focus.

HOURS / SHIFTS

• Regular business hours.

PHYSICAL DEMANDS

• Regularly required to sit, stand, walk, and reach with hands and arms.
• Minimally lift, push, carry and/or move up to 10 pounds.
• Minimally be able to bend, stoop, crouch, etc.

TRAVEL

Approximate amount of time: Minimal (under 25%); Regularly (25% - 75%); Frequent (more than 75%).

• Minimal travel may be required to other locations.
• Approximate overnight travel is 5%.

The above declarations are not intended to be an all-inclusive list of the duties and responsibilities of the job described, nor are they intended to be such a listing of the skills and abilities required to do the job. Rather, they are intended only to describe the general nature of the job.

Summary of Available Benefits*:

• Health Care eligibility including Medical & Prescription, Dental and Vision coverages
• Health Savings Account (HSA), Dependent Care FSA and Dependent Care FSA match
• Employer Paid Insurance: Basic Life and AD&D (employee, spouse, child), Short-Term and Long-Term Coverage
• Voluntary Insurance: Life and AD&D, Accident, Long Term Care, Critical Illness, Hospital Indemnity, Pet Insurance, Legal Services
• Employee Assistance Program (EAP)
• 401(k) with employer matching
• Student Loan Repayment Reimbursement
• Vacation, Personal Choice Days (PCD), Sick Time
• Paid Parental Leave
• Company paid Holidays
• Wellness Reimbursement
• Subsidized Parking and Public Transportation
• Financial Well-being Program
• Professional Membership Reimbursement
• Employee Discount Programs

*Benefits eligibility is dependent on the employee’s job classification. Effective date is the first of the month after the event date or the first of the month if the event date is the first of the month.