Manager, IT Audit & Compliance
Listed on 2026-07-08
-
IT/Tech
Cybersecurity, IT Business Analyst
IT Audit and Compliance Manager Company Overview
Foundation Building Materials (FBM) is a leading construction materials distribution company serving the commercial and residential construction markets across the United States and Canada. In conjunction with Unified Door & Hardware Group (UDHG), a premier provider of commercial door, frame, and hardware solutions, FBM supports a broad range of construction and architectural projects nationwide.
Position OverviewThe IT Audit and Compliance Manager is responsible for leading and managing the organization’s IT audit, risk assessment, and compliance programs. This role ensures that IT systems, processes, and controls comply with internal policies, industry standards, and regulatory requirements. The manager will work closely with IT, security, finance, and business teams to strengthen internal controls, mitigate risks, and support strategic initiatives.
Key Responsibilities Audit & Risk Management- Plan, execute, and manage IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes.
- Demonstrated experience managing and testing SOX controls within a publicly traded company, ensuring compliance with financial and IT regulatory requirements.
- Conduct risk assessments to identify gaps and vulnerabilities in IT systems and processes.
- Conduct 3rd‑party risk assessments to identify gaps and vulnerabilities in IT systems and processes with vendors in accordance with NIST.
- Develop and maintain audit plans aligned with business priorities and regulatory changes.
- Track, monitor, and report remediation efforts from audit findings and ensure timely closure.
- Ensure adherence to regulatory requirements (e.g., SOX, NIST, PCI).
- Ensure adherence to PCI‑DSS 4.0 regulatory requirements, with scope reductions (segmentation, iFrame, and P2PE).
- Manage IT compliance frameworks, policies, and procedures to maintain robust governance.
- Collaborate with legal, finance, and business stakeholders to ensure compliance across systems and processes.
- Stay updated on regulatory changes and assess their impact on IT and business operations.
- Lead and manage tax audits, inquiries, and examinations by US federal, state, and Canadian tax authorities.
- Mitigate tax risks through proactive monitoring, internal controls, and process improvements.
- Coordinate with external auditors and advisors regarding tax‑related matters.
- Lead and mentor the IT audit and compliance team.
- Partner with IT and security teams to promote best practices in information security and data protection.
- Serve as the primary liaison with external auditors, regulators, and third‑party assessors.
- Provide senior management with reports, insights, and recommendations to strengthen compliance posture.
- Perform other duties as assigned to support IT and Corporate objectives.
- Education:
Bachelor’s degree in Information Systems, Computer Science, Accounting, or related field (Master’s preferred). - Certifications:
CISA, CISM, CISSP, CRISC, or similar highly desirable. - Experience:
7+ years in IT audit, compliance, or risk management roles. - Strong understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
- Proven experience managing audits and compliance projects in large organizations.
- Excellent analytical, problem‑solving, and organizational skills.
- Strong communication skills to engage both technical and non‑technical stakeholders.
- Ability to manage multiple priorities in a fast‑paced environment.
Chief Information Officer
Compensation & Benefits Compensation- Base: $130,000 – $150,000 per year
- Bonus: 20% target bonus
- Total compensation (Base + Bonus): $150,000 – $190,000
- Equity:
Not eligible to participate in the Lowe’s Long‑Term Incentive (LTI) program
- Medical
- Dental
- Vision
- HSA / FSA plans
- Voluntary life and accidental death & Dismemberment (AD&D) insurance
- Critical illness, hospital indemnity, accident coverage
- Legal insurance plan
- Paid time off & paid holidays
- Generous 401(k) plan with company match
Foundation…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).