RX2 Solutions
TITLE:
IT Risk and Compliance Manager TYPE:
Direct Hire LOCATION:
Boston, MA ONSITE/REMOTE/HYBRID:
Hybrid, on site 2x's a week START DATE:
September/October 2025
We are seeking an IT Compliance Lead to join our Business Systems organization. This role will oversee all IT Compliance functions, working closely with Internal Audit teams and control owners to align IT initiatives with regulatory requirements and SOX controls. In addition to driving strategic compliance efforts, the position will manage operational control processes such as change management and user access reviews. Acting as the central liaison between Business Systems Delivery teams and internal/external auditors, this individual will ensure ongoing compliance while continuously optimizing controls for effectiveness and efficiency.
MAIN RESPONSIBILITIES
Ensure compliance with SOX IT requirements by guiding IT leaders and practitioners in the design, implementation, and monitoring of IT controls. Serve as the primary contact for audit evidence requests and act as liaison between control owners and auditors. Lead IT Compliance Program activities including risk assessments, IT governance, audit coordination, management reporting, and related compliance monitoring. Monitor control execution and evidence collection, coordinating regular reviews with process, application, and control owners. Collaborate effectively with IT leaders, practitioners, and audit partners, leveraging strong communication, leadership, and critical thinking skills. Identify control gaps, track remediation efforts, and provide insight during new system implementations or policy changes to assess internal control impacts. Manage IT policies and procedures, ensuring documentation aligns with compliance requirements and supports a culture of accountability. Oversee control design reviews, ensuring procedures are efficient, sustainable, and well-documented with supporting data/process flow diagrams. Conduct risk assessments and gap analyses, monitor emerging risks, and provide recommendations to guide risk-based business decisions. Develop methods for continuous monitoring of risks and compliance controls.
QUALIFICATIONS
7+ years of experience in IT compliance, policy adherence, and automation, including impact analysis, interpretation, enhancement, and authoring of complex business rules. A Bachelor's degree. Experience leading policy requirement collection and successfully automating audit/compliance processes. Familiarity with industry standards such as Segregation of Duties and GDPR, providing guidance to business systems teams. Proficiency in managing individual security and security groups within compliance applications. Solid understanding of delivery methodologies; experience leading solution implementation projects using Agile/Scrum or Waterfall. Background in conducting customer workshops and advising on best practices for application implementation and compliance maintenance.
EOE STATEMENT We are an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law.
IT Risk and Compliance Manager TYPE:
Direct Hire LOCATION:
Boston, MA ONSITE/REMOTE/HYBRID:
Hybrid, on site 2x's a week START DATE:
September/October 2025
We are seeking an IT Compliance Lead to join our Business Systems organization. This role will oversee all IT Compliance functions, working closely with Internal Audit teams and control owners to align IT initiatives with regulatory requirements and SOX controls. In addition to driving strategic compliance efforts, the position will manage operational control processes such as change management and user access reviews. Acting as the central liaison between Business Systems Delivery teams and internal/external auditors, this individual will ensure ongoing compliance while continuously optimizing controls for effectiveness and efficiency.
MAIN RESPONSIBILITIES
Ensure compliance with SOX IT requirements by guiding IT leaders and practitioners in the design, implementation, and monitoring of IT controls. Serve as the primary contact for audit evidence requests and act as liaison between control owners and auditors. Lead IT Compliance Program activities including risk assessments, IT governance, audit coordination, management reporting, and related compliance monitoring. Monitor control execution and evidence collection, coordinating regular reviews with process, application, and control owners. Collaborate effectively with IT leaders, practitioners, and audit partners, leveraging strong communication, leadership, and critical thinking skills. Identify control gaps, track remediation efforts, and provide insight during new system implementations or policy changes to assess internal control impacts. Manage IT policies and procedures, ensuring documentation aligns with compliance requirements and supports a culture of accountability. Oversee control design reviews, ensuring procedures are efficient, sustainable, and well-documented with supporting data/process flow diagrams. Conduct risk assessments and gap analyses, monitor emerging risks, and provide recommendations to guide risk-based business decisions. Develop methods for continuous monitoring of risks and compliance controls.
QUALIFICATIONS
7+ years of experience in IT compliance, policy adherence, and automation, including impact analysis, interpretation, enhancement, and authoring of complex business rules. A Bachelor's degree. Experience leading policy requirement collection and successfully automating audit/compliance processes. Familiarity with industry standards such as Segregation of Duties and GDPR, providing guidance to business systems teams. Proficiency in managing individual security and security groups within compliance applications. Solid understanding of delivery methodologies; experience leading solution implementation projects using Agile/Scrum or Waterfall. Background in conducting customer workshops and advising on best practices for application implementation and compliance maintenance.
EOE STATEMENT We are an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law.