Senior Analyst, Information Security Compliance

Position Overview

The Senior Information Security Compliance Analyst will assist in supporting a robust regulatory compliance program, improving the framework for ensuring compliance with SOX, PCI‑DSS, Privacy and other regulatory/industry controls. The Senior Compliance Analyst will also help drive strategic initiatives to maintain compliance with internal policies, standards, and best industry practices.

• Collaborate with compliance control owners to verify and validate controls are effective and operational through planned and ad‑hoc reviews.
• Collect and prepare evidence for regulatory audits and internal assessments across multiple brands.
• Analyze and validate evidence for accuracy and completeness in meeting control objectives and effectiveness.
• Maintain controls documentation and create new documentation as needed.
• Assist in identifying and implementing automation opportunities to proactively validate compliance.
• Provide key input into risk mitigation strategies and programs.
• Partner with IT business owners to ensure action plans are designed, implemented, and validated.
• Support periodic reviews and updates to information security policies, coordinating with IT, Legal, Auditing, and other business teams to collect content.
• Support IT risk, audit, and compliance reporting via consolidated dashboards to aid in executive management decision making.

• Exceptional communication skills with diverse audiences.
• Strong critical thinking and analytical skills.
• Precision in reviewing controls, control documentation, and audit evidence.
• Strong leadership, project, and team‑building skills, including ability to lead teams and drive projects in multiple departments with limited supervision.
• Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects.

• 7+ years of experience in a combination of information security and audit.
• Working knowledge in data analytics and programming (Python scripts, etc.).
• Experience with compliance regulations such as SOX, GDPR, CCPA and PCI DSS.
• Knowledge of AI governance principles, including responsible AI, data protection, and emerging regulatory considerations.
• Security certifications such as CISA, CISM, CISSP, or GIAC highly desired.
• Bachelor’s degree in a related field or equivalent experience.
• Experience in a global retail environment preferred.

• Emerging Leader – Global Agility
• Purposeful Integrity – Ethical behavior, follows through on commitments.
• Strategic Foresight – Understands team goals, asks strategic questions.
• Customer‑Centric Innovation – Suggests improvements from customer feedback, tries new methods.
• Urgency for Impact – Act quickly and take ownership of outcomes.
• Bold Accountability – Own work and deliver consistently strong results.
• Empowered Collaboration – Shares ideas, listens well, collaborates with peers.

Kontoor offers a comprehensive benefits program that includes health, wellness, and financial resources, paid parental leave, flexible Fridays, tuition reimbursement, and discounts on apparel. The focus of the benefits is to support physical, emotional, social, and financial wellbeing.

Kontoor Brands is committed to creating an inclusive environment that welcomes and values differences among associates, customers, suppliers, and the communities in which we operate.

Kontoor Brands is an equal employment opportunity/affirmative action employer of minorities, females, protected veterans and the disabled. Kontoor Brands is committed to providing equal opportunities in employment, and treating associates and applicants without discrimination on the basis of race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, protected veteran status, HIV/AIDS status, or any other legally protected factor.