Manager, IT Audit & Compliance
Listed on 2026-07-06
-
IT/Tech
Cybersecurity, IT Business Analyst
About Us
Company Overview
Foundation Building Materials (FBM) is a leading construction materials distribution company serving the commercial and residential construction markets across United States and Canada. In conjunction with Unified Door & Hardware Group (UDHG), a premier provider of commercial door, frame, and hardware solutions, FBM supports a broad range of construction and architectural projects nationwide.
Together, FBM and U&DHG's 8,000+ Team Members are committed to operational excellence, innovation, and employee development. By combining scale, specialty expertise, and a customer-first mindset, we deliver high-quality products and services to contractors, builders, and project teams across diverse markets. As the organization continues to grow and evolve following the recent acquisition by Lowe's, we are investing in strong, forward-thinking talent to support our long-term success.
OverviewPosition Overview
The IT Audit and Compliance Manager is responsible for leading and managing the organization’s IT audit, risk assessment, and compliance programs. This role ensures that IT systems, processes, and controls comply with internal policies, industry standards, and regulatory requirements. The manager will work closely with IT, security, finance, and business teams to strengthen internal controls, mitigate risks, and support strategic initiatives.
Responsibilitiesand Qualifications
Key Responsibilities
Audit & Risk Management
- Plan, execute, and manage IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes.
- Demonstrated experience managing and testing SOX controls within a publicly traded company, ensuring compliance with financial and IT regulatory requirements.
- Conduct risk assessments to identify gaps and vulnerabilities in IT systems and processes.
- Conduct 3rd-party risk assessments to identify gaps and vulnerabilities in IT systems and processes with vendors in accordance with NIST.
- Develop and maintain audit plans aligned with business priorities and regulatory changes.
- Track, monitor, and report remediation efforts from audit findings and ensure timely closure.
Compliance & Governance
- Ensure adherence to regulatory requirements (e.g., SOX, NIST, PCI).
- Ensure adherence to PCI-DSS 4.0 regulatory requirements, with scope reductions (segmentation, iFrame, and P2PE).
- Manage IT compliance frameworks, policies, and procedures to maintain robust governance.
- Collaborate with legal, finance, and business stakeholders to ensure compliance across systems and processes.
- Stay updated on regulatory changes and assess their impact on IT and business operations.
Leadership & Collaboration
- Lead and manage tax audits, inquiries, and examinations by US federal, state, and Canadian tax authorities.
- Mitigate tax risks through proactive monitoring, internal controls, and process improvements.
- Coordinate with external auditors and advisors regarding tax-related matters.
Continuous Improvement
- Lead and mentor the IT audit and compliance team.
- Partner with IT and security teams to promote best practices in information security and data protection.
- Serve as the primary liaison with external auditors, regulators, and third‑party assessors.
- Provide senior management with reports, insights, and recommendations to strengthen compliance posture.
Additional Responsibilities & Miscellaneous
- Perform other duties as assigned to support IT and Corporate objectives.
Qualifications
- Education:
Bachelor’s degree in Information Systems, Computer Science, Accounting, or related field (Master’s preferred). - Certifications:
CISA, CISM, CISSP, CRISC, or similar highly desirable. - Experience:
- 7+ years in IT audit, compliance, or risk management roles.
- Strong understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
- Proven experience managing audits and compliance projects in large organizations.
- Skills:
- Excellent analytical, problem‑solving, and organizational skills.
- Strong communication skills to engage both technical and non‑technical stakeholders.
- Ability to manage multiple priorities in a fast‑paced environment.
Reports To
Chief…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).