Senior Manager, IT and Compliance

Responsibilities

• Perform regular IT risk assessments and compliance audits to identify potential vulnerabilities and non-compliance issues. This also involves developing risk mitigation strategies and implementing corrective actions to address identified risks.
• Lead projects to ensure IT systems and processes comply with regulatory requirements and industry standards. This could involve coordinating with various departments, managing timelines, and ensuring project goals are met within the designated budget.
• Creation, review, and updating of IT and various other policies and procedures to ensure they meet compliance standards and are aligned with the organization's objectives. It involves understanding regulations applicable to the industry, such as FTC. GDPR, SSAE18, and integrating these requirements into the organization's IT practices.
• Create and maintain comprehensive documentation related to IT policies, procedures, system configurations, and compliance activities. This documentation serves as a reference for the organization and is critical during audits to demonstrate compliance efforts.
• Oversight and management of corporate IT and Systems Integration Managers.
• Work with external vendors and service providers to ensure they comply with the organization's IT and compliance standards. This includes assessing vendor security practices, negotiating contracts, and conducting regular reviews of vendor performance.
• Collaborate with other departments, such as Legal, HR, and Operations, to ensure a cohesive approach to compliance and IT management across the organization.
• Work closely with IT, software development, and other departments to identify integration needs and solutions, fostering a collaborative environment to support business goals.

Requirements

• At least 5-7 years of experience in IT and/or compliance roles, with a minimum of 3 years in a leadership or management position. Experience in an industry with stringent regulatory requirements is preferred.
• A track record of successfully developing and implementing IT and compliance strategies, policies, and procedures.
• Experience in managing and implementing Single Sign-On (SSO) and Identity and Access Management (IAM) platforms, with a focus on GMail and Okta.
• Hands-on experience with IT systems, security software, and compliance tools. Familiarity with cloud computing environments, encryption technologies, and data protection strategies is advantageous.
• A commitment to staying current with the latest developments in IT, compliance regulations, and best practices through continuous learning and professional development.
• Strong organizational and communication skills.
• Strong sense of ownership.
• A bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Law, Business Administration, or a related field; or equivalent experience.