Sr Manager, IT Risk & Compliance

Summary:

The Sr. Manager, IT Risk & Compliance serves as a key liaison between senior leadership, key stakeholders, and cross-functional teams. This position leads the planning, implementation, and execution of IT risk management and compliance initiatives, ensuring that organizational objectives are met within defined timelines, budgets, and regulatory frameworks all while aligning IT risk and compliance efforts, fostering strong governance, and driving continuous improvement in risk management processes.

Key responsibilities include overseeing risk assessments, governance frameworks, compliance audits, integration of risk mitigation strategies, and metrics tracking as well as managing collaboration within IT and between IT and other departments, streamlining compliance processes, and ensuring alignment with NTTA policies and procedures.

***Retention Bonus: $1,500***

This position is also currently responsible for managing the IT Asset Management (ITAM) program and the ITAM team. This includes overseeing the full lifecycle of IT assets— from receipt, tracking, and disposition to retirement— while maintaining accurate records and databases for hardware, software, licenses, warranties, service agreements and coordinating IT audits to ensure compliance and effective governance.

Responsibilities:

Risk and Governance Management:

• Lead and oversee the development, implementation, and continuous improvement of IT risk management frameworks and governance processes.
• Conduct regular IT risk assessments to identify potential risks and vulnerabilities, ensuring proactive mitigation strategies are developed and executed; ensure alignment of IT management efforts with overall business goals.
• Develop and implement strategies to mitigate IT-related risks and ensure compliance with compliance requirements and internal policies.
• Ensure that IT risk management and compliance frameworks remain current and adapt to evolving industry standards, regulations, and best practices.
• Track and report on key risk indicators, ensuring senior management is informed of potential risks, mitigation progress, and areas of concern.
• Develop and maintain governance structures for risk-related documentation and policies, including risk assessments, risk registers, and mitigation plans, ensuring proper tracking and resolution.

Asset Management:

• Own the IT Asset Management Program, ensuring the Standard Operating Procedures (SOPs) and Standard Operating Guidelines (SOGs) are reviewed and updated at least annually.
• Maintain comprehensive records and databases for licenses, warranties, and service agreements for IT hardware and software assets.
• Develop and implement policies and procedures for IT asset acquisition, deployment, and disposal.
• Generate and analyze reports on IT asset utilization, costs, and risks.
• Collaborate with other departments to ensure proper asset management practices across the organization.
• Oversee financial management of IT assets, including cost control and budget monitoring.
• Provide operational oversight of the IT Warehouse, including supervising the IT Warehouse Lead and Inventory Control Specialist; ensuring inventory is appropriately managed throughout its lifecycle (receipt, tracking, disposition and retirement) as well as ensuring the warehouse is functioning at optimal levels. Ensure audits are conducted on a regular basis to ensure compliance with company policies and industry best practices.
• Implement and monitor inventory control processes, including receiving, storing, and distributing IT equipment as well as inventory reporting processes.

Audit Governance:

• Oversee IT assessments conducted by auditors, ensuring proper management response, remediation, and management of the process.
• Facilitate collaboration between auditors and the IT department throughout the assessment process.
• Analyze audit findings and track action plans to address identified risks and improve IT operations; ensure timely and accurate resolution of the findings.
• Guide remediation teams in addressing audit findings and implementing corrective actions. Maintain detailed audit documentation and records.
• Collaborate with internal and external stakeholders on all IT processes, procedures, and audits; communicate findings and results to all stakeholders, as applicable.
• Identify and coordinate process improvements based on audit results.
• Manage audit budgets and timelines effectively.

Qualifications:

Minimum:

• Bachelor’s degree.
• At least 10 years of experience in IT, with a focus on IT risk management, governance, and compliance.
• A minimum of 5 years of recent experience working in medium-to-large-size multi-location organizations.
• Valid driver’s license.

Preferred:

• Bachelor’s degree in information technology, Business, Finance or a related field.

About NTTA: NTTA is a political subdivision of Texas created to acquire, construct, maintain and operate toll roads in North Texas. As a customer-driven organization, NTTA delivers a safe and reliable toll system for millions of customers each year in one of the fastest growing regions in the United States. NTTA is a vibrant organization with a highly qualified, energized and engaged team focused on achieving Excellence and we are looking for talented individuals to join us.

Our mission: We are committed to providing a safe and reliable toll road system, increase value and mobility options for our customers, operate the Authority in a businesslike manner, protect our bondholders, and partner to meet our region's growing need for transportation infrastructure.