IT Quality Compliance Manager - Hybrid

At Caris, we understand that cancer is an ugly word—a word no one wants to hear, but one that connects us all. That’s why we’re not just transforming cancer care—we’re changing lives.

We introduced precision medicine to the world and built an industry around the idea that every patient deserves answers as unique as their DNA. Backed by cutting-edge molecular science and AI, we ask ourselves every day: “What would I do if this patient were my mom?” That question drives everything we do.

But our mission doesn’t stop with cancer. We're pushing the frontiers of medicine and leading a revolution in healthcare—driven by innovation, compassion, and purpose.

Join us in our mission to improve the human condition across multiple diseases. If you're passionate about meaningful work and want to be part of something bigger than yourself, Caris is where your impact begins.

Position Summary
The IT Quality Compliance Manager position will be responsible for overseeing the design, implementation, and ongoing management of IT controls to ensure compliance with internal and external requirements, primarily Sarbanes-Oxley (“SOX”), SOC 2. This role will coordinate with cross-functional teams across IT, Security, Finance, Accounting, Quality and Internal Audit to ensure controls are properly designed and documented. This role will also act as a liaison between internal teams and the external auditors. Reporting directly to the Senior Director – Software Quality, this individual will play a key role in risk identification, control enhancements, and process improvements to support a sustainable compliance program aligned with industry standards and regulatory requirements
Job Responsibilities

• Oversee an integrated control framework designed to support our internal and external compliance requirements.
• Lead the design, implementation, and maintenance of IT General Controls (ITGCs) and application controls for SOX and SOC 2 compliance. This includes providing updates to IT process documentation, risk control matrices, and control narratives.
• Serve as the main point of contact for all ITGC-related inquiries, walkthroughs, and testing. This includes managing the timely collection, review, and submission of audit requests.
• Establish compliance calendars and testing schedules associated with walkthroughs, testing, and remediation activities that align with external auditors and internal stakeholders.
• Monitor and advise on remediation efforts for identified deficiencies and ensure timely resolution.
• Support Control activities related to the following - Coordination or quarterly user access reviews across multiple applications. Implement and monitor quarterly segregation of duty reviews for change management.
• Collaborate cross-functionally to proactively identify control gaps and drive continuous improvement of the control environment.
• Develop policies, procedures, and standards to strengthen IT governance and regulatory compliance.
• Report on compliance status, risks, and remediation progress to management and stakeholders.
• Maintain up-to-date knowledge of industry advancements in IT audit and cybersecurity methodologies.

Required Qualifications

• Bachelor’s degree in Information Systems, Accounting, Finance or related field.
• 5+ years of IT audit experience within Public Accounting or Internal Audit.
• Professional certification (CISA, CIA, CISSP, CISM, CRISC).
• 5+ years of experience with SOX or SOC 2.
• 3+ years of experience leading audit engagements.
• Experience working with external auditors and managing compliance assessments.
• Excellent project management skills.
• Ability to communicate effectively with both technical and non-technical audiences.

Preferred Qualifications

• Life science, biotechnology, healthcare, and/or laboratory industry experience a plus.
• Proven track record of growth in an auditing role within a company.
• Familiarity with systems like Jira, GitLab, ServiceNow, and Okta.
• Strong influencing and negotiating skills.
• Highly self-motivated, self-directed, and attentive to detail.
• Ability to excel in a fast paced and rapidly changing environment.
• Ability to work independently with minimal supervision and seek guidance as needed to clarify assignments or request for information.

Physical Demands

• Employee may be required to lift routine office supplies and use standard office equipment.
• Ability to sit for extended periods of time.
• Majority of work is performed in a desk/cubicle environment, but at times, may have exposure to high noise levels in the data center, fumes and bio-hazardous material in the lab environment.
• Travel may be required up to 15% of the time.

Training

• All job specific, safety, and compliance training are assigned based on the job functions associated with this employee.

Other

• This position requires periodic travel and some evenings, weekends and/or holidays.

Conditions of Employment:  Individual must successfully complete pre-employment process, which includes criminal background check, drug screening, credit check ( applicable for certain positions) and reference verification.

This job description reflects management’s assignment of essential functions. Nothing in this job description restricts management’s right to assign or reassign duties and responsibilities to this job at any time.

Caris Life Sciences is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, gender identity, sexual orientation, age, status as a protected veteran, among other things, or status as a qualified individual with disability.