Manager of Audit & Compliance

Requirements Education & Certification: University degree in Information Systems, Computer Science, MIS, or a related field. Professional certification such as CISA (Certified Information Systems Auditor) or CIA is strongly preferred

• Experience: 5+ years of experience in IT auditing, IT risk, or related compliance fields. Demonstrated experience leading or executing multiple IT audits end-to-end, including working with external or third-party auditors. Experience in a high-growth or technology-driven environment is a plus
• Technical Knowledge: Strong understanding of IT governance, security, and compliance frameworks – e.g. ISO 27001, SOC 2, NIST 800-53, Sarbanes-Oxley (SOX), GDPR – and how they apply to enterprise environments. Familiarity with cloud platforms and enterprise IT controls (AWS, Azure, O365, etc.) and with IT general controls and processes
• Tools: Experience with GRC or audit management tools (e.g. AuditBoard, Drata, Vanta) is a plus for streamlining compliance evidence and audit tracking
• Soft Skills: Excellent communication skills, with the ability to clearly report findings and recommendations to both technical and non-technical stakeholders. Strong organizational and project management skills to handle multiple audits simultaneously. A collaborative, integrity-driven approach and a problem-solving mindset are essential

What the job involves Vectra is looking for an Manager of Audit & Compliance to plan and execute internal audits of the company’s IT processes, systems, and controls, helping ensure effective risk management and regulatory compliance

• The position reports directly to the Sr. Director of IT Security and can be based in Austin, Boston, or Remote US
• Audit Planning & Execution: Develop and carry out a risk-based internal audit plan for IT operations, security controls, and compliance processes. Conduct audits from planning through reporting, evaluating the effectiveness of IT controls, policies, and procedures
• Risk Identification & Remediation: Identify control gaps and IT-related risks during audits and recommend actionable improvements. Prepare clear audit findings reports and work with stakeholders on remediation plans. Track audit findings and drive remediation efforts to closure with accountable owners
• Cross-Functional Collaboration: Work closely with IT, Security, Engineering, and other teams to gather evidence and facilitate audit processes. Serve as a liaison with external auditors and internal teams for any audit inquiries or compliance assessments. Ensure security controls and processes are well documented and demonstrated during audits
• Compliance Support: Support external compliance audits and certifications (e.g. ISO 27001, SOC 2) by providing required documentation and coordinating audit logistics. Partner with compliance and GRC functions to align internal audit activities with regulatory requirements and company policies
• Process Improvement & Documentation: Maintain comprehensive audit workpapers and documentation repositories using a modern GRC tool in order to meet quality and retention standards. Help build audit playbooks and improve audit workflows (e.g. automating evidence collection) to increase efficiency. Stay up-to-date on industry best practices and emerging regulations to continually enhance the IT audit program

#J-18808-Ljbffr Vectra AI