W.R. Rosato & associates, llc CONTACT US

Director of IT Compliance

Responsibilities:

  • Establish and lead an IT Compliance program ensuring all required policies, procedures and controls are established and executed in a manner which ensures compliance with applicable business, industry and regulatory
  • Partner with senior management to understand the strategic and tactical plans of the supported lines of business, business process groups and IT in order to develop firm wide IT compliance processes and plans that are aligned with the overall business and IT needs
  • Collaborate with the other members of Technology Group as wells as Risk Management, Internal Audit, Inspections, DPP, the NST, etc. to identify major risk factors; Develop and coordinate the implementation of practices to mitigate and remediate process, operational, regulatory and compliance risks
  • Identify potential areas of compliance vulnerability and risk; develop/implement corrective action plans for resolution of problematic issues, and provide general guidance on how to avoid or deal with similar situations in the future
  • Provide support and oversight to various IT audit projects and testing initiatives, including audits of internal controls; Promote firm wide culture change, training internal staff on the proper execution of the established compliance related process, procedures and controls
  • Develop and maintain all IT compliance documentation, policies, procedures and controls; Promote the continuous improvement of these practices ensuring we remain compliant with changing business, industry and regulatory requirements
  • Qualifications: 
  • Minimum ten years’ experience in either a public accounting organization with significant experience with general IT control environments, or a publicly traded corporation in the US that is subject to the Sarbanes Oxley Act
  • Bachelor’s degree from an accredited college or university; Master’s degree from an accredited college or university preferred; CISA, CRISC, CISSP and CISM desirable
  • Must have significant experience with the regulatory requirements such as NIST, SOX 404 and ISO/IEC 27001:2013
  • Demonstrated leadership experience and exceptional oral and written communication skills
  • Strong strategic thinking, quantitative and analytical skills, and business judgment
  • US Citizenship required
Apply Now