Position Details

Type Not Specified

Experience lead

Exp. Years 7+ years

Education Bachelor's degree in Information Systems / Cybersecurity / related field

Category Cybersecurity

About this role

Team Lead for IT Compliance responsible for leading a global IT compliance program, overseeing control testing, audits, and governance, with a focus on automation and proactive issue management in a manufacturing environment.

Key Responsibilities

Lead and develop the IT compliance team and drive on-time, high-quality delivery
Oversee control testing (design & operating effectiveness) and ensure evidence is sufficient
Promote automation-first control testing using system-generated evidence
Drive audit readiness and support auditor walkthroughs
Enhance compliance dashboards and governance reporting

Technical Overview

Scope includes IT compliance controls, GRC platforms, and industry frameworks such as NIST CSF 2.0, ISO 27001, and CIS Controls; involves IAM, change management, SDLC, IT operations, vulnerability & patch management, and cloud environments.

Ideal Candidate

The ideal candidate is a senior IT compliance professional with global experience capable of leading control testing and audits, familiar with NIST CSF 2.0, ISO 27001, CIS Controls, and GRC platforms. Must have CRISC/CISA/CISM certifications and strong leadership, communication, and stakeholder management skills.

Must-Have Skills

7+ years in IT Compliance programs in global organizations (Big 4 preferred)Proven experience leading control testing teams (IT audit / IT compliance)Experience supporting internal and external auditsHands-on experience with GRC platforms (controlstestingissuesevidence)Strong knowledge of NIST CSF 2.0ISO 27001CIS ControlsCRISC / CISA / CISM certificationsBachelor's in Information Systems / Cybersecurity / related fieldIAMChange Management / SDLCIT Operations & LoggingVulnerability & Patch ManagementISO 27001 Lead Auditor / Lead Implementer (plus)

Nice-to-Have Skills

FedRAMPITARCMMC

Tools & Platforms

GRC platforms

Required Skills

IT compliancegovernancerisk managementGRC platformsNIST CSF 2.0ISO 27001CIS ControlsCRISCCISACISMaudit readinesscontrol testingIAMchange managementSDLCIT operationsloggingvulnerability managementpatch managementcloud environmentsISO 27001 Lead AuditorISO 27001 Lead ImplementerFedRAMPITARCMMC

Hard Skills

GovernanceRisk & Compliance (GRC) platformsGRC platformsNIST CSF 2.0ISO 27001CIS ControlsFedRAMPITARCMMCIAM (Identity & Access Management)Change ManagementSDLCIT Operations & LoggingVulnerability ManagementPatch ManagementCloud environmentsISO 27001 Lead AuditorISO 27001 Lead ImplementerCRISCCISACISMAudit readinessControl testing

Soft Skills

LeadershipPeople managementCommunicationStakeholder managementProblem solvingAttention to detailCollaborationRisk management

Certifications

Required

CRISCCISACISM

Preferred

ISO 27001 Lead AuditorISO 27001 Lead Implementer

Industry & Role

Industry Manufacturing

Job Function Lead IT compliance program and governance for the organization.

Role Subtype GRC Analyst

Tech Domains Cybersecurity, ITSM / ServiceNow

Keywords for Your Resume

it complianceteam leadgrc platformsnist csf 2.0iso 27001cis controlsfedrampitarcmmciamchange managementsdlcit operationsloggingvulnerability managementpatch managementcloud environmentsiso 27001 lead auditoriso 27001 lead implementercrisccisacismaudit readinesscontrol testing

Deal Breakers

Less than 7 years IT compliance experience, No certifications (CRISC/CISA/CISM), Lack of ISO 27001 / CIS Controls knowledge

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Team lead - IT Compliance

Get matched to jobs like this