×
Register Here to Apply for Jobs or Post Jobs. X

Manager, IT Audit & Compliance

Job in Santa Ana, Orange County, California, 92725, USA
Listing for: Foundation Building Materials
Full Time position
Listed on 2026-07-06
Job specializations:
  • IT/Tech
    Cybersecurity, IT Business Analyst
Salary/Wage Range or Industry Benchmark: 130000 - 150000 USD Yearly USD 130000.00 150000.00 YEAR
Job Description & How to Apply Below

About Us

Company Overview

Foundation Building Materials (FBM) is a leading construction materials distribution company serving the commercial and residential construction markets across United States and Canada. In conjunction with Unified Door & Hardware Group (UDHG), a premier provider of commercial door, frame, and hardware solutions, FBM supports a broad range of construction and architectural projects nationwide.

Together, FBM and U&DHG's 8,000+ Team Members are committed to operational excellence, innovation, and employee development. By combining scale, specialty expertise, and a customer-first mindset, we deliver high-quality products and services to contractors, builders, and project teams across diverse markets. As the organization continues to grow and evolve following the recent acquisition by Lowe's, we are investing in strong, forward-thinking talent to support our long-term success.

Overview

Position Overview

The IT Audit and Compliance Manager is responsible for leading and managing the organization’s IT audit, risk assessment, and compliance programs. This role ensures that IT systems, processes, and controls comply with internal policies, industry standards, and regulatory requirements. The manager will work closely with IT, security, finance, and business teams to strengthen internal controls, mitigate risks, and support strategic initiatives.

Responsibilities

and Qualifications

Key Responsibilities

Audit & Risk Management

  • Plan, execute, and manage IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes.
  • Demonstrated experience managing and testing SOX controls within a publicly traded company, ensuring compliance with financial and IT regulatory requirements.
  • Conduct risk assessments to identify gaps and vulnerabilities in IT systems and processes.
  • Conduct 3rd-party risk assessments to identify gaps and vulnerabilities in IT systems and processes with vendors in accordance with NIST.
  • Develop and maintain audit plans aligned with business priorities and regulatory changes.
  • Track, monitor, and report remediation efforts from audit findings and ensure timely closure.

Compliance & Governance

  • Ensure adherence to regulatory requirements (e.g., SOX, NIST, PCI).
  • Ensure adherence to PCI-DSS 4.0 regulatory requirements, with scope reductions (segmentation, iFrame, and P2PE).
  • Manage IT compliance frameworks, policies, and procedures to maintain robust governance.
  • Collaborate with legal, finance, and business stakeholders to ensure compliance across systems and processes.
  • Stay updated on regulatory changes and assess their impact on IT and business operations.

Leadership & Collaboration

  • Lead and manage tax audits, inquiries, and examinations by US federal, state, and Canadian tax authorities.
  • Mitigate tax risks through proactive monitoring, internal controls, and process improvements.
  • Coordinate with external auditors and advisors regarding tax-related matters.

Continuous Improvement

  • Lead and mentor the IT audit and compliance team.
  • Partner with IT and security teams to promote best practices in information security and data protection.
  • Serve as the primary liaison with external auditors, regulators, and third‑party assessors.
  • Provide senior management with reports, insights, and recommendations to strengthen compliance posture.

Additional Responsibilities & Miscellaneous

  • Perform other duties as assigned to support IT and Corporate objectives.

Qualifications

  • Education:

    Bachelor’s degree in Information Systems, Computer Science, Accounting, or related field (Master’s preferred).
  • Certifications:

    CISA, CISM, CISSP, CRISC, or similar highly desirable.
  • Experience:
  • 7+ years in IT audit, compliance, or risk management roles.
  • Strong understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
  • Proven experience managing audits and compliance projects in large organizations.
  • Skills:
  • Excellent analytical, problem‑solving, and organizational skills.
  • Strong communication skills to engage both technical and non‑technical stakeholders.
  • Ability to manage multiple priorities in a fast‑paced environment.
Compensation and Benefits

Reports To

Chief…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary