Lead IT Compliance Analyst - REMOTE

Information Technology United States


At Torrid we're committed to cultivating a welcoming, inclusive and diverse culture driven by a focus on open dialogue, empowerment, recruiting, training, development and retention. We believe inclusion of diverse backgrounds and perspectives is fundamental to our success.

The primary responsibilities are to own, design, improve and lead the execution of all IT compliance programs against established regulatory requirements and industry standards. You will advise on and own all compliance matters. In this role you will own and drive IT Compliance across the organization through collaboration, training, communications and by embedding a compliance mindset throughout every IT function.

What You’ll Do: 

  • Develop risk management strategies that align with business and operational goals.
  • Assess, Plan, Communicate, and Implement processes to manage IT and regulatory risk.
  • Design, develop and maintain all IT Policies and Procedures in areas of system access, cybersecurity, change management, computer operations, system development, and IT general controls.
  • Provide technical support in the assessment, design and implementation of ITGC requirements.
  • Coach control owners and operators to ensure quality, consistency, and operability of new and existing controls.
  • Lead and perform risk assessments including both in-house systems and vendor-based solutions around system compliance and industry standards such as ISO, COBIT, NIST/CIS, and ITIL.
  • Work with both the internal audit group and external auditors to assist with and direct requests during quarterly and annual audits.
  • Own, Manage and monitor control activities (i.e., User Access Reviews, CCPA/CCPR workflows, etc.) ensuring accuracy and timely completion.
  • Drive and monitor control remediation efforts as identified by management, internal audit, or external auditors.
  • Identify IT risks within business processes and design/scope appropriate IT application controls to address unmitigated risks.
  • Identify and communicate recommended controls and control deficiencies to stakeholders.
  • Maintain broad knowledge of best practices and trends in the fields of Cybersecurity, Security Frameworks, IT Risk Management, SOX Section 404, CCPA, PCI and IT General Controls.

 What You’ll Need: 
  • Master’s degree or equivalent experience in business, computer science or related field
  • 10+ years leading IT Compliance and IT General Controls required
  • 10+ years of experience Designing, developing and maintaining all IT Policies and Procedures in areas of system access, cybersecurity, change management, computer operations, system development, and IT general controls.
  • 7+ years leading IT SOX Compliance processes, teams or consulting required
  • 5+ years leading IT Compliance related to PCI, CCPA, and GDPR preferred
  • 5+ years mapping IT solutions to compliance requirements preferred
  • IT Compliance certifications (e.g., CISA, CISM, CISSP, CompTIA or CRISC) preferred
  • Knowledge and experience with Vendor Risk Management/OneTrust preferred
  • Knowledge and experience in the Retail industry preferred

What You'll Get: 

  • A culture where people are accepted and encouraged to be who they are.
  • Competitive compensation, 401k with company matching contribution, plus potential to earn company performance-based bonuses.
  • Comprehensive wellness package including, medical, dental, vision, and Flexible Spending Account
  • Generous 50% employee discount and access to employee-only sales.
  • Support the causes you’re passionate about. We pay you up to 32 hours annually for volunteering your time in the community.
  • Tuition reimbursement program
  • Employee Assistance Program (EAP) - Aimed at helping employees address a variety of personal and family issues including legal financial consultations, mental health services and more.
  • Discounts on entertainment tickets and more.
  • Work and learn alongside industry-leading executives while making huge strides in impacting the lives of women.
  • You’ll be challenged and grow. Opportunity for upward mobility is available at all levels of the organization. 

Salary $121,197-  $145,000.  We are a proud Equal Opportunity Employer and will not discriminate based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, protected veteran status or any other protected status. If you are unable or limited in your ability to use or access www.torridcareers.com you can request reasonable accommodations by sending an email to [email protected]. Only messages left for this purpose will be returned. Our company participates in E-Verify. If the links below do not work, please copy and paste the following URLs in a new browser window:

E-Verify Poster: https://e-verify.uscis.gov/web/media/resourcesContents/E-Verify_Participation_Poster_ES.pdf
Eligibility to Work Poster (English): https://www.e-verify.gov/sites/default/files/IER_RightToWorkPoster.pdf
Eligibility to Work Poster (Spanish): https://www.e-verify.gov/sites/default/files/everify/posters/IER_RighttoWorkPosterES.pdf
California Privacy Rights Act (CPRA): https://careers.jobvite.com/torrid/2023-CPRA-Applicant-Notice.pdf
EEO Poster: https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf 

Our company participates in E-Verify. E-Verify is a program that electronically confirms a candidate’s eligibility to work in the United States after completing the Employment Eligibility Verification (Form I-9). The information provided on the Form I-9 is compared to the records contained in the Social Security Administration and Department of Homeland Security (DHS) databases. This helps employers verify the identity and employment eligibility of newly hired employees.

E-Verify Poster: https://e-verify.uscis.gov/web/media/resourcesContents/E-Verify_Participation_Poster_ES.pdf
Eligibility to Work Poster (English): https://www.e-verify.gov/sites/default/files/IER_RightToWorkPoster.pdf
Eligibility to Work Poster (Spanish): https://www.e-verify.gov/sites/default/files/everify/posters/IER_RighttoWorkPosterES.pdf
California Privacy Rights Act (CPRA): https://careers.jobvite.com/torrid/2023-CPRA-Applicant-Notice.pdf
EEO Poster: https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf