IT Compliance Manager

Job Title: IT Compliance Manager

Who we are:

As one of the largest for-profit thrift operators in the United States, Canada and Australia for value priced pre-owned clothing, accessories and household goods, our mission is to champion reuse and inspire a future where secondhand is second nature. We supply our stores with gently-used, one-of-a-kind items that have been donated by the community to local nonprofit organizations. We purchase these items directly from our nonprofit partners, redirecting billions of pounds of used items away from landfills and on to our store racks and shelves for reuse, and providing our partners with valuable funding for their community-based programs and services. You’ll often hear us say that we are “Thrift Proud.” It’s the millions of loyal customers who visit our 300+ stores and our more than 22,000 team members that make it possible. Learn more about the Savers® family of thrift stores, our impact, and the #ThriftProud movement at savers.com.

Our brands are Savers (in the U.S.), 2nd Ave (in the U.S.), Value Village (in the U.S. and Canada), Unique (in the U.S.), Village des Valeurs (in Quebec) and Savers Australia.

What you can expect:

• The opportunity to celebrate uniqueness. We are made up of people from many different backgrounds, experiences, and perspectives, all with something special to contribute.
• To work in a purpose-driven company, with a business model that people love for our impact on both the planet and local communities.
• An investment in the career path interests of our people. With our aggressive store expansion plans, we recognize the importance of the continued growth and development of our team members.

What you get:

Comprehensive onboarding and training from day one.

In-house expertise! Our training department / Savers University develops and delivers robust training to every team member across our organization — from new hires to senior executives. We develop around 90% of our training internally, and partner with a variety of renowned providers to supplement our offerings.

Benefits offerings including:

• Bundled health plans such as medical, Rx, dental and vision
• Company-paid life insurance for extra protection and peace of mind
• Programs to stop smoking, diabetes management coaching, and on demand care options.
• A 401k plan with generous company matching contributions to assist you in saving for a secure financial future.
• Paid time off from work for leisure or other hobbies.
• A range of mental health services to assist you in managing daily life.

What you’ll be working on:

Savers is seeking an IT Compliance Manager to join our IT organization. We are looking for an individual who is well versed in IT compliance and has a passion for setting standards and executing processes. The ideal candidate should display excellent communication and organizational skills and drive collaboration within IT between IT and other corporate business units.

This individual will be responsible for building processes and procedures relating to internal IT compliance. They will work closely with internal and external stakeholders to ensure compliance with established IT and cybersecurity controls. They will also work to identify gaps in compliance and work with internal and external teams to drive compliance with regulatory standards across all IT processes and procedures. They will work closely with program managers and other IT team members to develop projects that address compliance gaps, provide guidance to drive compliance, and train IT team members on specific compliance areas.

Essential Job Functions:

• Central point of contact for all IT related audits, including external (PCI, SOX, etc.) and internal audits.
• Assist with the development and implementation of IT General Controls, IT Security policies, standards, and education efforts.
• Drive IT compliance and audit program development and adoption with goal of ensuring continuous compliance with internal, external, and regulatory IT controls.
• Serve as a compliance resource for all internal IT and cybersecurity policies, procedures, and processes. 
• Build strong relationships with other departments and key stakeholders and communicate regularly with other departments to resolve intra-departmental compliance gaps.
• Develop and apply innovative methods for driving compliance with existing and emerging requirements across all applicable regulatory frameworks.
• Regularly review internal IT controls; measure effectiveness of compliance; recommend and direct remediation efforts.
• Identify and report compliance deficiencies, guide action plan development, and monitor progress.
• Perform audit analysis, deliverable management, and the opportunity for improved identification and gap analysis for all impacting IT audits.

What you have:

Required Knowledge, Skills, and Abilities:

• Strong understanding of Sarbanes-Oxley (SOX), CCPA, and other compliance requirements that may impact the organization.
• Strong understanding of ITILv4 standards and cybersecurity control frameworks (i.e., NIST 800-53, NIST CSF, CIS 18, ISO 27001, COBIT, etc.).
• Advanced experience with Microsoft Office applications, especially Excel
• Strong interpersonal and presentation skills.
• The ability to effectively communicate both technical and non-technical terms and concepts. succinctly and effectively across all levels of the organization.
• Project management skills and the ability to act independently and responsibly in a fast-moving environment.
• Problem-solving—gathers and analyzes information skillfully and identifies and resolves problems in a timely manner.
• Quality management—the individual looks for ways to improve and promote quality and demonstrates accuracy and thoroughness.
• Judgment—the individual displays willingness to make decisions, exhibits sound and accurate judgment, and makes timely decisions.
• Planning/organizing—the individual prioritizes and plans work activities, uses time efficiently, and develops realistic action plans. Requires considerable related experience.

Minimum Required Education, Training and Experience:

• Adept at learning new and challenging concepts and applying those concepts accordingly.
• 5 years of experience in compliance, risk management, and auditing.
• Education in one of many disciplines is a plus (i.e., IT, Business, Accounting, or Cybersecurity).
• Relevant industry certification (i.e., CISSP, CISA, or CRISC) is desired but not required.

FLSA: Exempt

Travel: Less than 10%

Work Type/Location: Remote, US

Savers is an E-Verify employer