Ingram Content Group (ICG) is currently seeking a Sr IT Compliance Analyst to join our team in LaVergne, TN (Greater Nashville area). This person Leads the evaluation of the company’s data privacy and IT compliance risks and drives the design, implementation, and continuous improvement of mitigation strategies. Serves as a senior subject matter expert, interpreting complex regulations and ensuring enterprise-wide compliance. Provides strategic guidance to leadership on risk, governance, and regulatory adherence. This position will be expected by hybrid and work from the Ingram headquarters 4 days per week.
Want to help explore and build new ways to deliver content to the world?
At Ingram, our Technology team is blazing a trail by providing content distribution services to thousands of publishers with key initiatives around business intelligence, machine learning, continuous integration and omnichannel. We support diverse people and technology that highlights innovation through SaaS platforms, metadata, cloud, and containerization. Our teams are agile, and emphasize authenticity, creativity, and transparency upon a fact-based foundation.
The world is reading, and it is our goal to connect as many people as possible to the content they want in the simplest ways. If you are an IT professional who strives to deliver results through collaborative partnerships, understanding what drives business, and enjoys working in a connected culture, we can’t wait to meet you!
The ideal candidate will have the following minimum qualifications:
- Bachelor’s degree in Computer Science, Information Technology, Information Security, Business or related field, or year-for-year directly related experience
- 6 years of experience in IT risk management, audit, or security with a focus on governance, risk, and compliance
- 3 years of experience working with compliance auditing and controls
We have a preference for:
- Knowledge of PCI, SOC 1 & 2, NIST CSF and 800-53, ISO 27002, COBIT
- Knowledge of data privacy, including the General Data Protection Regulation
- Leverage generative AI tools (e.g., Microsoft 365 Copilot) and automation platforms (e.g., Microsoft Power Automate) to support compliance activities while ensuring adherence to security, privacy, and regulatory requirements
- Ability to work as a team player
The Sr IT Compliance Analyst key responsibilities are:
- Serves as a senior subject matter expert for enterprise data security, privacy, and compliance programs, providing strategic direction and governance oversight
- Leads the development and continuous improvement of IT compliance frameworks, policies, and controls aligned with regulatory requirements and industry standards
- Interprets complex regulatory requirements and translates them into actionable enterprise policies, standards, and risk mitigation strategies
- Oversees enterprise compliance activities including risk assessments, data privacy initiatives (e.g., PIAs/DPIAs), and data governance practices
- Leads audit and assessment activities (e.g., PCI, SOC, CIS, and third-party risk), ensuring readiness, execution, and timely remediation of findings
- Provides oversight of compliance reporting, metrics, and dashboards, delivering insights and recommendations to senior leadership
- Serves as an escalation point for complex compliance risks, issues, and incidents, guiding resolution and risk-based decision making
- Partners with IT, Security, Legal, and business leaders to embed compliance into operations and strategic initiatives
- Oversees and ensures execution of IT policy audits for adherence
- Provides guidance for and participates in application/website compliance testing
- Leads third-party audits, including those that utilize external reputational or risk-scoring services
- Leads vendor risk assessments and ensures accurate reporting on risks or gaps in dependencies
- Oversees training compliance tracking across enterprise learning and development platforms.
- Drives process improvements, including automation and innovation, to enhance the efficiency and scalability of compliance programs
- Evaluates emerging technologies (including AI tools and systems) for compliance with privacy, security, ethical, and regulatory standards, and defines governance controls
Hiring Salary Range: $97,201- $123,251. This range represents the anticipated low and high end of the salary for this position. It will be determined by factors including but not limited to the applicant’s education, experience, knowledge, skills, and abilities, geographic location, as well as internal equity and alignment with market data.
Additional InformationPerks/Benefits:
- A highly competitive compensation package with generous benefits beginning first day of employment for Medical/Prescription Drug plans, HSA, Vision, Dental and Health Care FSA.
- 15 vacation days & 12 sick days accrued annually and 3 personal days
- 401K match, Life and AD&D, Employee Assistance programs, Group Legal, & more
- Wellness program with access to onsite gym and basketball court for associates
- Encouraged continued education with our tuition reimbursement program
- Financial and in-kind opportunities to engage with non-profits in your community
- Company match program for United Way donations
- Volunteer opportunities and in-kind drives for non-profits throughout the year
- Take breaks or brainstorm in our game room with ping pong & foosball
- Casual Dress Code & Flexible Schedules (per team)
The world is reading, and Ingram Content Group (“Ingram”) connects people with content in all forms. Providing comprehensive services for publishers, retailers, libraries and educators, Ingram makes these services seamless and accessible through technology, innovation and creativity. With an expansive global network of offices and facilities, Ingram’s services include digital and physical book distribution, print-on-demand, and digital learning. Ingram Content Group is a part of Ingram Industries Inc. and includes Ingram Book Group LLC, Ingram Publisher Services LLC, Lightning Source LLC, Ingram Library Services LLC, Tennessee Book Company LLC, Ingram Content Group UK Ltd. and Ingram Content Group Australia Pty Ltd.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, work related mental or physical disability, veteran status, sexual orientation, gender identity, or genetic information.
- EOE-Race/Gender/Veterans/Disabled
- We participate in EVerify.
- EEO Poster in English
- EEO Poster in Spanish
Skills Required
- Bachelor's degree in Computer Science, Information Technology, Information Security, Business or related field, or equivalent experience
- 6 years of experience in IT risk management, audit, or security with focus on governance, risk, and compliance
- 3 years of experience working with compliance auditing and controls
- Knowledge of PCI, SOC 1 & 2, NIST CSF and 800-53, ISO 27002, COBIT
- Knowledge of data privacy, including the General Data Protection Regulation (GDPR)
- Experience leveraging generative AI tools (e.g., Microsoft 365 Copilot) and automation platforms (e.g., Microsoft Power Automate) to support compliance activities
- Ability to work as a team player
What We Do
The world is reading. Ingram helps connect our world with the books they want—print and digital—when they need them, in the simplest ways. To better serve an increasingly connected global community of readers we are transforming the book industry for the better: through smart leadership, cutting-edge technology, and revolutionary innovations in the manufacture and distribution of books. Providing comprehensive services for publishers, retailers, libraries and educators, Ingram makes these services seamless and accessible through technology, innovation and creativity. With an expansive global network of offices and facilities, Ingram’s services include digital and physical book distribution, print on demand, and digital learning. Ingram Content Group is a part of Ingram Industries Inc. and includes Ingram Book Group LLC, Ingram Publisher Services LLC, Lightning Source LLC, VitalSource Technologies LLC, Ingram Library Services LLC, and Tennessee Book Company LLC.


