IT and Compliance Project Manager

Summary

Join our team as a dedicated IT and Compliance Project Manager! This role centers on managing IT projects, including system upgrades, software implementations, and digital transformation initiatives, ensuring timely and budget-conscious execution. You will oversee company IT assets, manage relationships with outsourced IT resources, and lead projects from initiation to completion. Compliance and security are key; you'll ensure projects adhere to relevant regulations and standards, perform risk assessments, and develop security awareness training. Strong stakeholder management skills are crucial for collaborating with cross-functional teams and vendors. This position requires a Bachelor's degree, relevant experience, and familiarity with project management methodologies and compliance frameworks.

Requirements

• Bachelor's degree in Security Management or related field or equivalent work experience required
• 3-5 years of IT program, compliance and project management experience
• Familiarity with cybersecurity best practices and standards (network security, encryption, data protection)
• Strong experience with project management methodologies (e.g. Agile, Waterfall) and tools (e.g. JIRA, MS Project)
• Solid understanding of IT compliance frameworks and regulations (GDPR, HIPAA, SOX, ISO 27001, etc.)
• Working Knowledge of Microsoft Office/O365 products, security management systems and prevention measures

Responsibilities

• Ensure effective management of company assets including inventory tracking, lifecycle management, cost management, etc
• Function as main Point of Contact (PoC) and own relationship with organization’s outsourced IT resource, Compass MSP
• Leading and managing IT projects from initiation through completion
• Developing project plans, timelines, and resource allocation for IT initiatives
• Monitoring project progress, managing risks, and troubleshooting issues that arise
• Ensuring projects meet business objectives and align with IT strategy
• Ensuring IT projects comply with relevant laws, regulations, and security standards (GDPR, HIPAA, SOC 2, etc.)
• Incorporating compliance requirements into project plans and ensuring that security measures are built into the project from the start
• Collaborating with legal and compliance teams to ensure appropriate documentation and reporting of compliance-related activities during the project
• Performing risk assessments related to IT changes or implementations and ensuring that any potential security or compliance gaps are addressed
• Develop strategies and recommendations to mitigate identified risks
• Assist in developing and maintaining information security policies and procedures
• Support incident response efforts by analyzing and managing security incidents and breaches
• Prepare detailed reports on security incidents, risks, and vulnerabilities
• Develop and deliver security awareness training programs for employees
• Promote best practices and educate staff on information security policies and procedures
• Assist with audit and regulatory compliance to ensure the organization is adhering to industry standards as well as legal requirements
• Working closely with senior leadership to align IT projects with overall business objectives
• Communicating with cross-functional teams (IT, legal, security, finance) to ensure all project goals, compliance needs, and deadlines are met
• Managing relationships with third-party vendors to ensure their products/services meet security and compliance standards
• Other duties as assigned

Preferred Qualifications

• Experiencing overseeing an outsourced IT team preferred
• Security Certification CISSP, CISA, CISM is a plus

Benefits

• Remote-first’ hybrid work model
• Flexible PTO
• 10 paid holidays
• Paid parental bonding leave
• Gym membership reimbursement
• Free Employee Assistance Programs
• Robust medical/dental/vision plans
• 401(k) with immediate vesting and up to 4% employer match