What are the responsibilities and job description for the Senior IT Compliance (Controls & Risk Management) Specialist position at IES Holdings, Inc.?
In the role of the Senior IT Compliance (Controls & Risk Management) Specialist, is a role based in our Sugarland, TX, office and requires ability to work onsite for all 5 days during the week. This position reports to the Director of IT Compliance that works closely with the various departments within IT and Internal Audit to ensure control effectiveness. The core control frameworks that this role is responsible for are SOX, NIST CSF and PCI-DSS.
The Responsibilities
- Manage the IT SOX and PCI Compliance program, including scoping, testing, remediation, and reporting.
- Lead internal and external compliance and audit engagements, including PCI, GDPR, CCPA, HIPAA, and other regulatory or contractual requirements.
- Participates in IT projects and compliance initiatives - defines controls standards for new system and process implementations, collaborates with IT project teams as a subject matter expert in matters relating to controls, compliance, and general IT security.
- Foster strong partnerships with internal and external audit or assessment partners, facilitating audit activities and ensuring effective coordination and communication.
- Ability to provide influence and direct leadership – position is reliant on creating and maintaining relationships with other teams within IT as well as various business functions with their own unique needs.
- Oversee the internal policy and standards program, including the development, maintenance, and communication of security policies, guidelines, and procedures.
- Measure compliance with implementation and alignment to industry frameworks, conducting gap analysis, risk assessment, and remediation planning.
- Lead the metrics and reporting effort to support security governance efforts.
Specific Qualifications
Company Overview
IES is a national provider of industrial products and infrastructure services to a variety of end markets, including electrical, mechanical and communications contracting solutions for the commercial, industrial, residential and renewable energy markets. IES is publicly traded on NASDAQ under the symbol IESC. As of the end of IES’s 2024 fiscal year ending September 30, 2024, IES produced over $2.8 billion in revenue and employed over 9,400 employees at over 131 domestic locations across the United States. IES is an Equal Employment Opportunity Employer : Minorities, Females, Gender Identity, Sexual Orientation, Individuals with Disabilities, Protected Veterans Encouraged to Apply.
From office buildings to wind farms, industrial complexes to housing developments, our employees and design professionals design, build, and maintain the systems that empower lives.
Our commitment to our employees is reflected by our actions :
Additional Data
