×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant IT Business Analyst Information Security

Audit​/Compliance Analyst Lead

Job in Richmond, Henrico County, Virginia, 23214, USA
Listing for: Dexian
Full Time position
Listed on 2026-03-05
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant, IT Business Analyst, Information Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

The Policy and Compliance Coordinator is a member of the IT Security Team and supports enterprise information security governance by administering policy and compliance processes, automating control activities, and coordinating evidence and reporting across the organization. This role is execution focused and responsible for end-to-end operational delivery within a defined scope.

What you will be doing
  • Coordinate and administer the Service Now Policy and Compliance modules, ensuring accurate configuration, maintenance, and effective day to day operation
  • Manage and monitor Service Now ITSM oversight ticket queues, ensuring timely intake, triage, tracking, and resolution of catalog, policy, and compliance related requests
  • Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives
  • Operationalize and automate policy and compliance lifecycle activities, including policy management, reviews, attestations, continuous monitoring, and control testing
  • Reduce manual effort through automation, standardization, and improved workflows for evidence collection and control validation
  • Support a “test once, satisfy many” methodology to streamline compliance efforts across multiple regulatory, audit, and assurance requirements
  • Implement and maintain continuous monitoring activities to identify policy or control violations and support timely response and remediation
  • Develop, maintain, and communicate policy and compliance metrics through dashboards and reports for leadership and key stakeholders
  • Coordinate information and evidence across the organization to support audits, assessments, regulatory inquiries, and internal reviews
  • Manage competing priorities, short turnaround requests, and tight deadlines while maintaining high quality, accuracy, and attention to detail
  • Create and maintain standard operating procedures, job aids, and other required documentation
  • Identify opportunities for process improvement and efficiency and support the implementation of enhancements
  • Work independently while collaborating closely with team members, application owners, contractors, and business partners
  • Operate effectively in a distributed, virtual team environment
  • Maintain a working knowledge of information security policies, standards, and regulatory requirements
  • Demonstrates the ability to independently execute assigned responsibilities with minimal supervision, managing day to day operational tasks, exercising sound judgment, and escalating issues as appropriate. Accountable for end-to-end execution within a defined scope.
  • This is a hand on, execution focused role with direct responsibility for operational delivery
What you bring
  • Bachelor’s degree in Information Technology, Computer Science, or a related field preferred (In lieu of a degree, demonstrated IT or cybersecurity experience will be considered)
  • Demonstrated understanding of cybersecurity risks, controls, and industry frameworks (e.g., NIST SP 800 53, NIST Cybersecurity Framework, ISO/IEC 27001)
  • At least 3 years’ experience with Service Now GRC/IRM and ideally Service Now ITSM modules
  • Practical experience applying governance, risk, and compliance (GRC) principles
  • Familiarity with governance tools such as the Unified Control Framework (UCF) and SIG
  • Strong collaboration, interpersonal, and communication skills, with the ability to work effectively across technical and non-technical stakeholders
  • Understanding of project management principles and the Software Development Lifecycle (SDLC)
  • Strong written and verbal communication skills with a focus on clarity, quality, and professionalism
  • Demonstrated commitment to continuous improvement and process optimization
Additional Qualifications (Good to Have)
  • Relevant cybersecurity or IT certifications (e.g., Security+, CISA, NIST CSF, PMP, CGRC, CISSP or CISM)
  • Experience partnering with Risk, Compliance, Legal, and Internal Audit teams
  • Familiarity with regulatory and assurance frameworks such as HIPAA, Sarbanes Oxley (SOX), NY DFS, SOC 1, and SOC 2
About Us:

Dexian is a leading provider of staffing, IT, and workforce solutions with over 12,000 employees and 70…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search