Position Overview:
The primary responsibility of the IT Compliance Analyst is to ensure the processes and associated controls for the compliance frameworks are designed, managed, and assessed for effectiveness to reduce overall compliance risk across the organization. This includes performing continuous monitoring and driving audit actions to ensure adherence to the in-scope compliance frameworks. As part of their day-to-day, the IT Compliance Analyst will liaise closely with Internal Audit and key stakeholders to ensure full alignment on all IT regulatory compliance issues.
Position Overview:
The primary responsibility of the IT Compliance Analyst is to ensure the processes and associated controls for the compliance frameworks are designed, managed, and assessed for effectiveness to reduce overall compliance risk across the organization. This includes performing continuous monitoring and driving audit actions to ensure adherence to the in-scope compliance frameworks. As part of their day to day, the IT Compliance Analyst will liaise closely with Internal Audit and key stakeholders to ensure full alignment on all IT regulatory compliance issues.
Essential Responsibilities:
- Audit & Compliance
- primary subject matter expert leading assigned audit program(s).
- backup support to other audit programs as assigned.
- Establish a comprehensive understanding of the organization’s audit and compliance programs (i.e., SOX, PCI, ISO 27001, SOC 2, Cyber Essentials +, FedRAMP, etc.).
- Serve as the:
- This includes scoping the audit, scheduling activities, leading calls, coordinating and fulfilling document request lists, leading walkthroughs, and other audit tasks as appropriate.
- Work collaboratively with control owners on audit remediation work.
- Policies & Procedures
- Assist control owners in development and refinement of controls (i.e., policy requirements and/or ITGCs) for in-scope systems.
- Work collaboratively with internal and external auditors to ensure controls are consistent with expectations and leading practices.
- Assist control owners to identify any potential issues prior to formal audits.
- Documentation & Program Maintenance
- Efficiently manage tasks, prioritize responsibilities, and maintain order in a fast-paced environment.
- Perform and support the continuous monitoring of IT controls.
- Report and present metrics from monitoring and audit activities to senior leadership.
- Support general tasks including but not limited to i) process improvement initiatives ii) RFI/RFP/contract responses iii) risk management assessments iv) vendor risk reviews v) ticket responses vi) project work.
Qualifications:
- Required
- Bachelor’s degree in an appropriate field from an accredited university or equivalent experience.
- Extensive PCI-DSS audit and continuous monitoring experience
- SOX working experience
- Experience performing audits, leading controls walkthroughs, interviewing stakeholders, gathering information, and identifying relevant information for documentation.
- Coachable and willing to learn.
- Ability to take initiative and drive results.
- Successful completion of the Nlets fingerprinting background assessment.
- Must be locally located and comfortable working a 3 days in office hybrid model and 2 days remote.
- Preferred
- ISO 27001 working experience and/or certification(s).
- Strong organizational and time management abilities with formal project management experience and/or certification(s).
- Ability to work collaboratively with diverse stakeholders.
- Experience working in AuditBoard.
- Proficiency in Microsoft Office (i.e., excel xlookup, Power BI report building).
- Desired
- QSA or ISA
- SOC 2 & NIST working experience and/or certification(s).
- Experience working in a regulated industry.
- Experience with ERP systems (e.g., Oracle, SAP, NetSuite, Great Plains, etc.
This position is not eligible for sponsorship now or in the future and is only considering local talent.
Verra Mobility Values
An ideal candidate for this role naturally works in alignment with the Verra Mobility Core Values:
- Own It. We focus on high performance and drive toward breakthrough outcomes. Our employees ensure accountability, optimize and align work, focus on the customer, and cultivate innovation.
- Do What’s Right. We champion integrity and good character. Our team members model ethical behavior, demonstrate good judgment and are courageous.
- Choose Courage Over Comfort. We lean into the conversations, decisions and actions that move the business forward, even when they feel uncomfortable. We challenge assumptions, address issues early and prioritize progress over ease.
- Win Together. We believe in growing and inspiring people together. We seek people who collaborate, value differences, think and act globally, foster an engaging work environment, and recognize and develop others.
With your explicit consent which you provided as part of the application process, we will retain candidate personal data solely for the business purpose for which it was collected. In no event will we retain such data more than two (2) years following the closure of the recruitment process relating to the role for which you applied or in the event other related job opportunities arise within the company. Verra Mobility Applicant Privacy Notice
Verra Mobility is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.
.
Top Skills
What We Do
Verra Mobility focuses on making life safer, easier and more connected for our customers and the communities we serve. As a global leader in smart transportation, we work alongside our customers and behind the scenes to relentlessly develop customized technology solutions to solve complex transportation challenges. We seamlessly connect people, technology and data across the smart mobility ecosystem.
