Job Description
The Senior IT Compliance Analyst leads and manages IT compliance initiatives, including frameworks like SOX, SOC 2, and ISO 27001, to ensure adherence to policies, mitigate risks, and support audit and certification processes within the organization.
Key Responsibilities
- Lead compliance initiatives for SOX, SOC 2 Type 2, and ISO 27001 frameworks.
- Manage cross-functional projects to define, implement, and analyze IT processes and procedures.
- Conduct compliance audits and prepare documentation for program reviews.
- Utilize AI-enabled tools for compliance assessments, audit support, and control monitoring.
- Design, implement, and improve compliance programs, processes, and controls.
- Collaborate with departments to communicate and train on IT compliance policies and frameworks.
- Monitor adherence to IT policies and ensure compliance with legal and regulatory requirements.
- Maintain and update the policy library.
- Research and respond to security questionnaires from partners and customers.
- Evaluate policy waivers and exceptions for accuracy and compliance.
- Lead the entire lifecycle of SOC 2 Type 2 attestations and ISO 27001 certifications.
Requirements
- A B.S. or higher-level degree in Computer Science or a similar program with strong academic performance is required.
- Experience leading the entire lifecycle of SOC 2 Type 2 attestations and ISO 27001 certifications, including planning, gap assessment, policy and procedure creation and updates, evidence gathering, stakeholder coordination, reporting, and addressing issues to achieve successful attestation and certification.
- Minimum of 5 years of relevant experience in IT compliance, risk management, or related fields.
- Knowledge and understanding of compliance mandates, frameworks, and standards such as SOX ITGCs, SOC 2 Type 2, ISO 27001, and NIST 800-53.
- Experience using AI-enabled tools to support compliance, risk management, audit activities, or documentation review, with an understanding of related governance and risk considerations.
- Experience leading compliance initiatives related to SOX, SOC 2 Type 2, and ISO 27001 frameworks.
- Ability to interpret management, operational, and technical implementation methods to determine compliance with existing controls.
- Knowledge and experience in identifying Information Technology and Information Security risks and designing and implementing controls.
- Familiarity with GRC and compliance management tools such as ServiceNow GRC, Drata, Vanta, OneTrust, or similar platforms used for managing risk, controls, and audit workflows.
- Ability to effectively communicate with both technical and non-technical personnel.
- Proven team experience and comfort working in a team-oriented environment.
- Strong technical writing skills and understanding of compliance mandates, frameworks, and standards.
- Physical ability to perform job duties as required (implied by the nature of the role, though not explicitly stated).
Benefits & Perks
Medical plans with company subsidies
Health Savings Account (HSA) with a company contribution
401(k) plan with an employer match
Paid vacation that increases with tenure
Paid holidays
Wellness time
Paid maternity and bonding leave
Company-paid disability insurance
Company-paid life insurance
Work environment with a collaborative and casual culture
Work from the office 4 days a week
Ready to Apply?
Join Alarm.com and make an impact in renewable energy
Stay Updated on Sustainability Jobs
Get the latest renewable energy jobs and career tips delivered to your inbox.
Job Alerts
Get notified about new sustainability jobs
More jobs at Alarm.com
Senior Software Engineering Manager
Alarm.com
NEW
Boston
Full Time
2d
$190k-210k
Senior Director, Device Engineering
Alarm.com
NEW
Tysons
Full Time
2d
Staff Software Engineer
Alarm.com
Liberty Lake
Full Time
3d
$140k-190k