Analyst, IT Audit and Compliance

Foundation Building Materials

$72K — $93K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Information Systems, Computer Science, Accounting, Cybersecurity, or a related field.
  • CISA, CISM, CISSP, CRISC, or similar certifications preferred.
  • 1-3 years of experience in IT audit, compliance, cybersecurity, risk management, or related fields.
  • Foundational understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
  • Exposure to SOX, IT audits, compliance testing, or risk assessments preferred.
  • Strong analytical, problem-solving, and organizational skills.
  • Effective communication skills with both technical and non-technical stakeholders.

Responsibilities

  • Support the planning and execution of IT audits to evaluate internal controls and security measures.
  • Assist with testing and documentation of SOX controls for financial and IT regulatory compliance.
  • Participate in risk assessments to identify vulnerabilities in IT systems and processes.
  • Support third-party risk assessments of vendors per frameworks like NIST.
  • Track and monitor remediation efforts from audit findings, ensuring timely closure of action items.
  • Maintain IT compliance documentation and support governance practices.
  • Prepare reports and documentation for management visibility into audit and compliance activities.

Benefits

  • Medical, Dental and Vision insurance coverage.
  • Health Savings Account (HSA) / Flexible Spending Account (FSA).
  • Company-provided Basic Life and Accidental Death & Dismemberment (AD&D) Insurance.
  • 401(k) plan with generous company match.
  • Paid Time Off & Paid Holidays.
Full Job Description
Overview

Position Overview

The Analyst, IT Audit and Compliance, is responsible for handling IT audit, risk assessment, and compliance program work. This role ensures that IT systems, processes, and controls comply with internal policies, industry standards, and regulatory requirements. This role will work closely with IT, security, finance, and business teams to strengthen internal controls, mitigate risks, and support strategic initiatives under the leadership of the Manager, IT Audit and Compliance.

Responsibilities and Qualifications

Key Responsibilities

Audit & Risk Management
  • Support the planning and execution of IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes.
  • Assist with testing and documentation of SOX controls within a publicly traded company environment to support compliance with financial and IT regulatory requirements.
  • Participate in risk assessments to identify gaps and vulnerabilities in IT systems and processes.
  • Support third-party risk assessments of vendors in accordance with established frameworks such as NIST.
  • Assist in maintaining audit plans and supporting audit activities aligned with business priorities and regulatory changes.
  • Track and monitor remediation efforts from audit findings and assist in ensuring timely closure of action items.


Compliance & Governance
  • Support compliance activities related to regulatory requirements and frameworks, including SOX, NIST, and PCI.
  • Assist with PCI-DSS 4.0 compliance efforts, including evidence collection and documentation related to scope reduction initiatives such as segmentation, iFrame, and P2PE.
  • Maintain IT compliance documentation, policies, procedures, and supporting materials to promote effective governance practices.
  • Collaborate with Legal, Finance, IT, and business stakeholders to support compliance initiatives across systems and processes.
  • Monitor regulatory updates and communicate relevant changes and potential impacts to the broader team.


Leadership & Collaboration
  • Support internal and external audit activities by coordinating requests, gathering documentation, and assisting with audit inquiries.
  • Assist with monitoring compliance risks through established internal controls and process improvement initiatives.
  • Coordinate with internal stakeholders and external auditors to support audit and compliance activities.


Continuous Improvement
  • Participate in initiatives to improve IT audit, risk management, and compliance processes and controls.
  • Partner with IT and Security teams to promote best practices in information security and data protection.
  • Assist with external audits, assessments, and compliance reviews conducted by auditors, regulators, and third-party assessors.
  • Prepare reports, metrics, and documentation to support management visibility into audit and compliance activities.


Additional Responsibilities & Miscellaneous
  • Perform other duties as assigned to support IT Audit and Compliance objectives.


Qualifications
  • Bachelor's degree in Information Systems, Computer Science, Accounting, Cybersecurity, or a related field.
  • CISA, CISM, CISSP, CRISC, or similar certifications preferred but not required.
  • 1-3 years of experience in IT audit, compliance, cybersecurity, risk management, or related fields.
  • Foundational understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
  • Exposure to SOX, IT audits, compliance testing, or risk assessments through professional experience, internships, or public accounting preferred.
  • Strong analytical, problem-solving, and organizational skills.
  • Effective communication skills with the ability to work with both technical and non-technical stakeholders.
  • Ability to manage multiple priorities and deadlines in a fast-paced environment.
  • Proficiency with Microsoft Excel and experience working with audit documentation and reporting tools preferred.


Compensation and Benefits

Reports To

Manager, IT Audit and Compliance

Compensation

Within the range, individual pay may vary based on experience, qualifications, and work location within state. This is a full-time position with competitive pay and benefits.
  • Base: $35.00 - $45.00 per hour
  • Bonus: 10% Target Bonus
  • Total Compensation (Base + Bonus): The successful candidate could reasonably expect a Total Compensation Package in the range of $76,000 - $105,000
  • Equity: This role is not eligible for equity opportunities, awards or grants.


Benefits

At FBM, we're committed to supporting our employees both personally and professionally. We offer a comprehensive and competitive benefits package designed to help you thrive inside and outside of work. Our excellent package includes:
  • Medical, Dental and Vision
  • HSA / FSA
  • Company Provided Basic Life and Accidental Death & Dismemberment (AD&D) Insurance
  • Voluntary Life and Accidental Death & Dismemberment (AD&D) Insurance
  • Critical Illness, Hospital Indemnity, Accident Coverage
  • Legal Insurance Plan
  • Paid Time Off & Paid Holidays
  • 401(k) plan with generous company match


Posting Period

This job will be posted for at least 5 days, starting on the initial post date reflected above.

Salary Range

Min: USD $35.00/Hr., Max: USD $45.00/Hr.

Similar Jobs

More Jobs at Foundation Building Materials

More Information Technology Jobs

Find similar Analyst, IT Audit and Compliance jobs: