IT Risk & Compliance Program Manager
Automate your job search with Sonara.
Submit 10x as many applications with less effort than one manual application.1
Reclaim your time by letting our AI handle the grunt work of job searching.
We continuously scan millions of openings to find your top matches.
Overview
Job Description
Description
- Owns and drives the execution of compliance programs, including leading readiness activities, audit coordination, and ongoing control monitoring.
- Interprets regulatory and security requirements and translate them into practical, implementable control activities aligned with the Company’s operating environment.
- Defines and enforces program timelines, milestones, and deliverables required to support the audit cycle and observation period.
- Holds control owners accountable for the design, implementation, documentation, and effectiveness of controls, while balancing control requirements with operational realities.
- Serve as the primary representative of the Company in interactions with external auditors, financial auditors, regulatory auditors, and cybersecurity insurance providers related to IT controls.
- Leads audit execution, including walkthroughs, evidence reviews, and response management.
- Exercises sound judgment in positioning audit responses, ensuring they are accurate, complete, and appropriately contextualized to reflect how controls operate in practice.
- Owns and drives the Company’s response to customer security questionnaires, due diligence assessments, and compliance inquiries related to the Company’s products, systems, and services.
- Interprets customer requirements and expectations, ensuring responses are accurate while appropriately scoped and aligned with the Company’s control environment.
- Directs cross-functional input from Product Owners, IT, Security Operations, Engineering, Legal, and business teams to ensure consistent and defensible responses.
- Balances transparency with appropriate context, ensuring disclosures accurately represent capabilities without overcommitting beyond current practices.
- Ensures responses align with the Company’s SOC 2 controls, security policies, and compliance commitments.
- Represents the Company in customer-facing security and compliance discussions alongside Sales, Legal, and Customer Success.
- Tracks customer security requests and ensure responses are delivered within required timelines.
- Owns the remediation lifecycle for control deficiencies identified through audits, risk assessments, or internal reviews.
- Assesses the impact and risk of control gaps.
- Drives accountability for corrective action across control owners and technology teams.
- Validates and challenges remediation outcomes, ensuring solutions are effective and aligned with control requirements.
- Owns and maintains the organization’s IT risk register and compliance tracking mechanisms.
- Applies risk-based judgment in evaluating control effectiveness, exceptions, and deviations from standard requirements.
- Ensures alignment between IT policies, standards, procedures, and regulatory expectations.
- Escalates risks or control failures based on impact, exposure, and business context.
- Drive alignment across IT, Security Operations, Engineering, Finance, Legal, and other business stakeholders to achieve compliance outcomes.
- Advises and influences control owners by translating regulatory expectations into clear, actionable guidance.
- Establishes and promotes governance practices that promote consistency, accountability, and audit readiness.
- Owns program level reporting including dashboards and metrics for audit readiness, control effectiveness, and remediation progress.
- Ensures program milestones and goals are met within approved budgets.
- Provides updates to leadership on compliance posture, audit timelines, and risk status.
- Performs other related duties and projects as business needs require at direction of management.
- Bachelor’s degree in Information Systems, Cybersecurity, Business, Accounting, or related field required.
- Minimum five (5) years of experience in IT risk, compliance, audit, or security governance required.
- Experience supporting SOC 2 audits, ITGC, or similar compliance frameworks required.
- Experience coordinating responses to external auditors or regulatory reviews required.
- Experience supporting external audits and assessments required, including preparing evidence, coordinating walkthroughs, and responding to auditor inquiries.
- Previous organizational/program experience required.
- CISA, CRISC, CISSP, or CISM or similar certification required.
- Experience with SOC 2 Trust Services Criteria, NIST, ISO 27001, or CIS Controls required.
- Experience with GRC or compliance management tools required.
Pay Range: $92,000.00 - 135,000.00/yr
Glidewell Laboratories is the industry leader in dental technology due to our agility, speed, and cutting edge technology. We work in a fast-paced and highly sought-after employee-friendly work environment. Behind all of this success is an amazing group of people who are passionate about bringing innovation to the marketplace, while providing quality and affordability to better the lives of people all over the world. If you share in our passion for teamwork and a vision for excellence, let's talk about a rewarding career at Glidewell!
In addition are the following generous employee benefits: Medical, Dental, Vision, 401K with company match, company-paid life insurance, additional onsite dental services, vacation, holiday, and sick time, employee gym (with fitness classes and meditation room), employee medical/wellness center (with massage therapy and acupuncture), two company subsidized cafes, Internet cafes, employee lounges with big screen TVs, game tables, fun company sponsored events, a diverse work environment with over forty nationalities represented, and much more!
Glidewell Laboratories is an Equal Opportunity Employer and prohibits any kind of unlawful discrimination and harassment. We are committed to the principle of equal employment opportunity for all employees and to provide employees with a work environment free of discrimination and harassment on the basis of race, color, religion, national origin, sex, age, physical or mental disability, veteran status, sexual orientation, gender identity, genetic information, or any other status protected by the statutes, rules, and regulations in the locations where it operates. If you are an individual with a disability and need a reasonable accommodation to assist with your job search or application for employment, please contact us at [email protected]. Please indicate the specifics of the assistance needed.
Note to Current employees: Please apply through Employee Transfer Application to complete the transfer request form.
Automate your job search with Sonara.
Submit 10x as many applications with less effort than one manual application.
