Audit/Compliance Analyst IV (Lead)

Job#: 3038970

Job Description:

YOUR ROLE

The Policy and Compliance Coordinator is a member of the IT Security Team and supports enterprise information security governance by administering policy and compliance processes, automating control activities, and coordinating evidence and reporting across the organization. This role is execution focused and responsible for end-to-end operational delivery within a defined scope.

What you will be doing

Coordinate and administer the ServiceNow Policy and Compliance modules, ensuring accurate configuration, maintenance, and effective day to day operation

Manage and monitor ServiceNow ITSM oversight ticket queues, ensuring timely intake, triage, tracking, and resolution of catalog, policy, and compliance related requests

Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives

Operationalize and automate policy and compliance lifecycle activities, including policy management, reviews, attestations, continuous monitoring, and control testing

Reduce manual effort through automation, standardization, and improved workflows for evidence collection and control validation

Support a "test once, satisfy many" methodology to streamline compliance efforts across multiple regulatory, audit, and assurance requirements

Implement and maintain continuous monitoring activities to identify policy or control violations and support timely response and remediation

Develop, maintain, and communicate policy and compliance metrics through dashboards and reports for leadership and key stakeholders

Coordinate information and evidence across the organization to support audits, assessments, regulatory inquiries, and internal reviews

Manage competing priorities, short turnaround requests, and tight deadlines while maintaining high quality, accuracy, and attention to detail

Create and maintain standard operating procedures, job aids, and other required documentation

Identify opportunities for process improvement and efficiency and support the implementation of enhancements

Work independently while collaborating closely with team members, application owners, contractors, and business partners

Operate effectively in a distributed, virtual team environment

Maintain a working knowledge of information security policies, standards, and regulatory requirements

Demonstrates the ability to independently execute assigned responsibilities with minimal supervision, managing day to day operational tasks, exercising sound judgment, and escalating issues as appropriate. Accountable for end to end execution within a defined scope.

This is a hands on, execution focused role with direct responsibility for operational delivery

What you bring

Bachelor's degree in Information Technology, Computer Science, or a related field preferred (In lieu of a degree, demonstrated IT or cybersecurity experience will be considered)

Demonstrated understanding of cybersecurity risks, controls, and industry frameworks (e.g., NIST SP 800 53, NIST Cybersecurity Framework, ISO/IEC 27001)

At least 3 years' experience with ServiceNow GRC/IRM and ideally ServiceNow ITSM modules

Practical experience applying governance, risk, and compliance (GRC) principles

Familiarity with governance tools such as the Unified Control Framework (UCF) and SIG

Strong collaboration, interpersonal, and communication skills, with the ability to work effectively across technical and non technical stakeholders

Understanding of project management principles and the Software Development Lifecycle (SDLC)

Strong written and verbal communication skills with a focus on clarity, quality, and professionalism

Demonstrated commitment to continuous improvement and process optimization

Additional Qualifications (Good to Have)

Relevant cybersecurity or IT certifications (e.g., Security+, CISA, NIST CSF, PMP, CGRC, CISSP or CISM)

Experience partnering with Risk, Compliance, Legal, and Internal Audit teams

Familiarity with regulatory and assurance frameworks such as HIPAA, Sarbanes Oxley (SOX), NY DFS, SOC 1, and SOC 2

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.

Everforth Apex uses a virtual recruiter as part of the application process. Click for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at

Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.

Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.

If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at or . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered.

UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.