IT Compliance Analyst

The IT Compliance Analyst will be focused on identifying and mitigating compliance risk, compliance initiatives and assessments. Reporting to the Senior Manager, Information Security & IT Infrastructure, the IT Compliance Analyst will support the planning, execution, and reporting of all IT audits. Successful applicants are self-motivated, detail-oriented, and have the technical acumen to support day-to-day compliance activities.

Essential Duties and Responsibilities

• Collaborate with Internal Audit and External Audit during the SOX lifecycle on assigned processes (IT General Controls, IT Application Controls)
• Support audits and assessments to evaluate compliance with regulatory requirements (e.g., HIPAA, HITRUST, SOX).
• Manage quarterly, semi-annual and annual IT testing for internal and external audits, risk assessments, and policy compliance
• Support and maintain continuous compliance with HITRUST CSF requirements, including evidence collection, control testing, and audit coordination
• Collaborate with IT and business teams to identify and document compliance and IT risk issues.
• Maintain governance tools for risk and compliance to support IT compliance activities

Requirements

The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Proven experience in IT audit, Technology Assurance or Governance, Risk & Compliance (GRC) related roles. Big 4/mid-tier experience strongly preferred.
• In-depth understanding of Sarbanes Oxley (SOX) regulation including its requirements, regulations, and implications for financial reporting and internal controls.
• Experience working within an SAP environment
• Background working in or with public companies
• Familiarity with HITRUST CSF controls
• Excellent written and verbal communication skills

Education and Experience

• Bachelor’s degree from four-year College or university in Business Administration, Computer Science, Information Systems, or equivalent.
• 3-5 years of experience in IT audit, Technology Assurance or Governance, Risk & Compliance (GRC).

CERTIFICATES, LICENSES, REGISTRATIONS

Must have CISA, CCSFP preferred

For roles based in the United States that require access to hospital facilities, must be eligible for and maintain credentials at all required hospitals, including meeting any applicable physical requirements or vaccination requirements (including the COVID-19 vaccine, as applicable).

ATEC is committed to providing equal employment opportunities to its employees and applicants without regard to race, color, religion, national origin, age, sex, sexual orientation, gender identity, gender expression, or any other protected status in accordance with all applicable federal, state or local laws. Further, ATEC will make reasonable accommodations that are necessary to comply with disability discrimination laws.

Salary Range

Alphatec Spine, Inc. complies with state and federal wage and hour laws and compensation depends upon candidate’s qualifications, education, skill set, years of experience, and internal equity. $110,000 to $125,000 Full-Time Annual Salary