Audit / Compliance Analyst

To Apply for this Job Click Here

Always Connecting, Always Evolving.

TECHEAD is seeking qualified applicants for the following Contract position – Audit / Compliance Analyst / Richmond VA – (JOB-22101). If you are looking for a new opportunity and this position looks to be a fit, please apply to see the TECHEAD difference that has made us successful for 30+ years!

You can find more about our team and values by checking us out at TECHEAD.com or on Glassdoor

Job Description:
Lead Audit / Compliance Analyst | 22101

Contract-to-hire: 6 Months
Hybrid: Tuesday and Wednesday in office
Local Candidates Only
Richmond, VA

Responsibilities:
• Coordinate and administer the ServiceNow Policy and Compliance modules, ensuring accurate configuration, maintenance, and effective day to day operation
• Manage and monitor ServiceNow ITSM oversight ticket queues, ensuring timely intake, triage, tracking, and resolution of catalog, policy, and compliance related requests
• Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives
• Operationalize and automate policy and compliance lifecycle activities, including policy management, reviews, attestations, continuous monitoring, and control testing
• Reduce manual effort through automation, standardization, and improved workflows for evidence collection and control validation
• Support a “test once, satisfy many” methodology to streamline compliance efforts across multiple regulatory, audit, and assurance requirements
• Implement and maintain continuous monitoring activities to identify policy or control violations and support timely response and remediation
• Develop, maintain, and communicate policy and compliance metrics through dashboards and reports for leadership and key stakeholders
• Coordinate information and evidence across the organization to support audits, assessments, regulatory inquiries, and internal reviews
• Manage competing priorities, short turnaround requests, and tight deadlines while maintaining high quality, accuracy, and attention to detail
• Create and maintain standard operating procedures, job aids, and other required documentation
• Identify opportunities for process improvement and efficiency and support the implementation of enhancements
• Work independently while collaborating closely with team members, application owners, contractors, and business partners
• Operate effectively in a distributed, virtual team environment
• Maintain a working knowledge of information security policies, standards, and regulatory requirements
• Demonstrates the ability to independently execute assigned responsibilities with minimal supervision, managing day to day operational tasks, exercising sound judgment, and escalating issues as appropriate. Accountable for end to end execution within a defined scope.
• This is a hands on, execution focused role with direct responsibility for operational delivery

Requirements:
• Demonstrated understanding of cybersecurity risks, controls, and industry frameworks (e.g., NIST SP 800 53, NIST Cybersecurity Framework, ISO/IEC 27001)
• At least 3 years’ experience with ServiceNow GRC/IRM and ideally ServiceNow ITSM modules
• Practical experience applying governance, risk, and compliance (GRC) principles
• Familiarity with governance tools such as the Unified Control Framework (UCF) and SIG
• Strong collaboration, interpersonal, and communication skills, with the ability to work effectively across technical and non technical stakeholders
• Understanding of project management principles and the Software Development Lifecycle (SDLC)
• Strong written and verbal communication skills with a focus on clarity, quality, and professionalism
• Demonstrated commitment to continuous improvement and process optimization

Additional Qualifications (Nice to Have):
• Relevant cybersecurity or IT certifications (e.g., Security+, CISA, NIST CSF, PMP, CGRC, CISSP or CISM)
• Experience partnering with Risk, Compliance, Legal, and Internal Audit teams
• Familiarity with regulatory and assurance frameworks such as HIPAA, Sarbanes Oxley (SOX), NY DFS, SOC 1, and SOC 2

Education:
• Bachelor’s degree in Information Technology, Computer Science, or a related field preferred (In lieu of a degree, demonstrated IT or cybersecurity experience will be considered)

TECHEAD’s mission is to make our on-site associates successful by placing them in the right environment so they can grow and prosper. How we treat and respond to our clients and employees is a reflection of who we are and makes us stand out from the rest. Keeping our business focused on building and maintaining relationships with our employees and clients is the key to our success. We won’t strive for anything less.

TECHEAD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including, but not limited to, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.

For more information on TECHEAD please visit www.techead.com.

No second parties will be accepted.

To Apply for this Job Click Here