IT Compliance Lead - SOX/SOC 2, Remote

With a company culture rooted in collaboration, expertise and innovation, we aim to promote progress and inspire our clients, employees, investors and communities to achieve their greatest potential. Our work is the catalyst that helps others achieve their goals. In short, We Enable Possibility℠. TheManager, IT Compliance, working closely with the CISO and Director of IT Security, will provide management, leadership and delivery of the compliance function, liaising closely with other IT and business stakeholders. He/she will be the main point of contact for all IT Compliance related activities including leading/coordinating IT control assessment activities (SOX, SOC 2, etc.) and customer information security due diligence reviews. Responsibilities Work with IT process owners to identify/improve and document detailed controls for key application, security, and infrastructure components. Provide on-going organization wide guidance on IT control requirements and impact. Facilitate requests between control owners and Internal/external audit teams and be the main point of contact with the Internal and External Audit teams. Manage and report on IT control gaps, track issues to completion, and provide recommendations for improvements. Lead in the design and implementation of efficient and effective controls within the organization. Participate in data privacy governance related activities such as data mapping and data privacy assessments. Manage the response for IT-related customer security assessments. Proactively identify IT control gaps with a focus on automating control reviews wherever possible. Manage access recertification process. Required Qualifications 5+ years of combined experience in the fields of Information Systems audit, IT security, IT governance, IT risk & IT compliance In-depth knowledge and experience with Sarbanes-Oxley, PCI-DSS, ISO 27001, SOC 2 and the NYDFS Cybersecurity Regulation. Working Knowledge of Windows Operating System and Active Directory Security including Users and Groups, Group Policy, Domain Structures, Security and Auditing. Working knowledge of agile development methodology. Working knowledge of DevOps practices and technologies. Desire to measure and continuously improve in all areas and facets. Demonstrated ability to balance short term tactical wins with longer-term strategic solutions. Transformative mindset and experience operating as a change agent. Preferred Qualifications 8+ years of combined experience in the fields of Information Systems audit, IT security, IT risk, & IT compliance. CISSP, CISA, CISM, or CCSK Certifications. Excellent oral and written communication skills with the ability to communicate technical concepts to a technical and non-technical audience. Demonstrated ability to establish relationships and build rapport to influence colleagues at all levels, uncover business issues, and identify needs. Experience in a highly regulated industry, such as insurance and/or financial services. Some knowledge of and understanding of how to create/execute SQL queries, and scripts using Python and PowerShell. Environment and/or Physical Factors Raleigh orRemote work with the ability to travel to the main assigned office quarterly for key meetings. Ability to travel with in the U.S. up to 10-20% of the time. Incumbent may be asked to perform other duties as required. Compensation Salary DOE Full benefits package available For individuals assigned or hired to work in the location(s) indicated below, the base salary range is provided. Range is as of the time of posting. Position is incentive eligible. $90,000 - $130,000/year Total individual compensation (base salary, short & long-term incentives) offered will take into account a number of factors including but not limited to geographic location, scope & responsibilities of the role, qualifications, talent availability & specialization as well as business needs. The above pay range may be modified in the future. Arch is committed to helping employees succeed through our comprehensive benefits package that includes multiple medical plans plus dental, vision and prescription drug coverage; a competitive 401k with generous matching; PTO beginning at 20 days per year; up to 12 paid company holidays per year plus 2 paid days of Volunteer Time Offer; basic Life and AD&D Insurance as well as Short and Long-Term Disability; Paid Parental Leave of up to 10 weeks; Student Loan Assistance and Tuition Reimbursement, Backup Child and Elder Care; and more. Click here to learn more on available benefits. Do you like solving complex business problems, working with talented colleagues and have an innovative mindset? Arch may be a great fit for you. If this job isn’t the right fit but you’re interested in working for Arch, create a job alert! Simply create an account and opt in to receive emails when we have job openings that meet your criteria. Join our talent community to share your preferences directly with Arch’s Talent Acquisition team. 14400 Arch Insurance Group Inc. #J-18808-Ljbffr Arch Insurance Group Inc.