Senior IT Compliance (Controls & Risk Management) Specialist

In the role of the Senior IT Compliance (Controls & Risk Management) Specialist, is a role based in our Sugarland, TX, office and requires ability to work onsite for all 5 days during the week. This position reports to the Director of IT Compliance that works closely with the various departments within IT and Internal Audit to ensure control effectiveness. The core control frameworks that this role is responsible for are SOX, NIST CSF and PCI-DSS.

The Responsibilities

• Manage the IT SOX and PCI Compliance program, including scoping, testing, remediation, and reporting.
• Lead internal and external compliance and audit engagements, including PCI, GDPR, CCPA, HIPAA, and other regulatory or contractual requirements.
• Participates in IT projects and compliance initiatives - defines controls standards for new system and process implementations, collaborates with IT project teams as a subject matter expert in matters relating to controls, compliance, and general IT security.
• Foster strong partnerships with internal and external audit or assessment partners, facilitating audit activities and ensuring effective coordination and communication.

• Ability to provide influence and direct leadership – position is reliant on creating and maintaining relationships with other teams within IT as well as various business functions with their own unique needs.

• Oversee the internal policy and standards program, including the development, maintenance, and communication of security policies, guidelines, and procedures.
• Measure compliance with implementation and alignment to industry frameworks, conducting gap analysis, risk assessment, and remediation planning.
• Lead the metrics and reporting effort to support security governance efforts.

• Bachelor's degree in Computer Science, Information Systems, or related field, or equivalent work experience.
• Minimum of 7 years of experience in IT Audit, IT GRC, or a related field. Big 4 / Consulting experience is a plus.
• Demonstrated ability in leading IT SOX and PCI compliance programs or similar.
• Strong knowledge of IT Governance, Risk, and Compliance frameworks, System Implementation processes, IT standards, and continuous improvement methodologies.
• Effective interpersonal and presentation abilities.
• Strong analytical, problem-solving, and decision-making abilities.
• Demonstrated leadership, teamwork, and collaboration skills.
• Relevant industry certifications such as CISA, CISSP, CRISC, or similar.

IES is a national provider of industrial products and infrastructure services to a variety of end markets, including electrical, mechanical and communications contracting solutions for the commercial, industrial, residential and renewable energy markets. IES is publicly traded on NASDAQ under the symbol IESC. As of the end of IES’s 2024 fiscal year ending September 30, 2024, IES produced over $2.8 billion in revenue and employed over 9,400 employees at over 131 domestic locations across the United States. IES is an Equal Employment Opportunity Employer: Minorities, Females, Gender Identity, Sexual Orientation, Individuals with Disabilities, Protected Veterans Encouraged to Apply.

From office buildings to wind farms, industrial complexes to housing developments, our employees and design professionals design, build, and maintain the systems that empower lives.

Our commitment to our employees is reflected by our actions: 

• Safety is Priority One – and our record shows it
• Competitive Pay
• Company 401K plan with Employer Contribution Match
• Company Paid Time Off
• Company Paid Life Insurance
• Choice of Medical Coverage including Prescription and  Short Term Disability Plans
• Choice of Dental and Vision Coverage
• Optional Long-term Disability, Critical Illness, Accident, Legal and Pet Coverage
• Auto and Home Insurance Discount Programs

PLEASE NO AGENCY CALLS. 
NOTE TO ALL AGENCIES: Any unsolicited agency resumes or agency represented candidates that are presented to any IES employee without first having a signed contract between that agency and the IES Talent Acquisition organization will become the property of IES and no fees will be paid.

EEO & Affirmative Action

The IES policy on equal employment opportunity prohibits discrimination based on race, color, religion, national origin, sex, age, gender identity, sexual orientation, individuals with disabilities, protected veterans, or any other protected status or characteristic. This policy applies to recruiting, hiring, transfers, promotions, terminations, compensation, benefits, and all other terms and conditions of employment, and also states that retaliation against any employee who files a complaint regarding possible violations of this policy will not be tolerated. IES is also committed to taking affirmative steps to promote the employment of minorities, women, individuals with disabilities, and protected veterans. IES develops affirmative action programs to support its commitment to equal employment opportunity, consistent with company policy and the company’s obligations as a contractor to the United States government. 

View Your Equal Employment Opportunity rights under the law. "EEO is the Law" poster | "EEO is the Law" poster supplement

View IES' policy on Pay Transparency Pay Transparency NonDiscrimination Poster

Disability Accommodation

IES is an Equal Opportunity/Affirmative Action Employer. IES provides reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veterans' Readjustment Assistance Act of 1974 and Title I of the Americans with Disabilities Act of 1990. Applicants who need accommodation in the job application process should contact the IES corporate office at (713) 860-1500 or any IES office to request assistance.

IES Participates in E-Verify

E-Verify Information

English/Spanish

Right to Work

English

Spanish