SpecterOps

Compensation

Full Description

SpecterOps is looking for a detail-oriented, strategic, and experienced IT Compliance Manager to join our team. This role is critical in ensuring our organization adheres to applicable regulations, industry standards, and internal policies governing information security and data protection. As the IT Compliance Manager, you will oversee risk assessments, manage audits, develop compliance strategies, and work cross-functionally to align security controls with regulatory requirements (e.g., ISO 27001, GDPR, SOC 2). This role is essential to safeguarding the integrity, confidentiality, and availability of information systems while maintaining our company’s reputation and operational excellence. Salary Range: Base salary annually, commensurate with experience $140,000 - $160,000 Location: This position is remote, based in the U.S. with optional travel quarterly for in person company events and other ad hoc meetings Candidate must be authorized to work and reside in the United States; we do not currently sponsor immigration visas. Responsibilities Develop, implement, and manage the IT solutions leveraged to ensure adherence with compliance frameworks, aligning them with cybersecurity best practices and industry regulations Lead internal and external IT audits, ensuring timely remediation of findings and continuous improvement Collaborate with IT, Legal, Risk, and Security teams to ensure compliance with applicable laws and frameworks Manage third-party risk assessments and vendor compliance reviews. Monitor and report on compliance posture, risk indicators, and policy adherence to senior leadership Establish and maintain IT security policies, standards, and procedures Deliver compliance training and awareness programs to internal stakeholders Conduct gap analyses and risk assessments; drive remediation plans to closure Prepare compliance documentation and reports for regulatory bodies, customers, and auditors Maintain a deep understanding of regulatory compliance requirements, providing updates to team members, departments, and management when pertinent changes occur Educate and train team members, departments, and management on security best practices that align with compliance frameworks Additional duties as assigned Requirements 5+ years of experience in IT compliance, information security, or risk management. Strong knowledge of regulatory and standards frameworks (e.g., ISO, SOC 2, GDPR, DORA, FedRAMP) Ability to interpret complex compliance requirements and translate them into actionable controls Experience leading audits and compliance assessments Exceptional communication, organizational, and project management skills Desire to embody our core values of passionate curiosity, consistent improvement, empathy, sustainability, humility, and empowerment through transparency Successfully complete a criminal background investigation Travel: up to 25% Nice to haves Bachelor's degree in information technology, Cybersecurity, Business, or related field Experience with compliance IT solutions like Conveyor and Drata Industry certifications such as CISA, CRISC, CISSP, CISM, or similar Experience in cloud security compliance (e.g., AWS, Azure, GCP) Familiarity with GRC tools (e.g., Archer, ServiceNow GRC, LogicGate, OneTrust) Experience administering Active Directory or Azure Experience with open-source BloodHound, BloodHound Enterprise, or BloodHound CE What We Offer Health/Dental/Vision/life insurance: 100% covered for both the employee and their family Flexible time off policy 13 paid holidays annually 401(k) with up to 4% company match Stock Options & bonuses Remote work: $1,500 new hire allowance to set up home office $500 annual home office allowance after first year $1800 annual cell phone and internet reimbursement $5,000 annual professional development allowance $5,250 towards continuing education or student loan repayment $1,200 annual budget for lifestyle, wellness, pet insurance and more A one-time $10,000 benefit towards family planning In person and virtual employee events throughout the year And of course, company swag! All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. To request reasonable accommodations, please contact us at careers@specterops.io Unsolicited resumes are not accepted. #LI-REMOTE