IT Compliance Analyst (Hybrid/Remote Potential)

At Everus, employees come first. We provide great pay, benefits and growth opportunities to more than 8,000 highly skilled team members across the country who are united by the common goal of safely Building America's Future. We take great pride in the work our employees do each day, which drives our success as one of the Top 10 largest specialty contractors in the nation, and we will ensure you have the tools, training and opportunities for a successful career. We look forward to having you on the team!

The IT Compliance Analyst will be responsible for ensuring that an organization's information technology practices, systems, and processes adhere to relevant laws, regulations, industry standards, and internal policies. Their primary focus is on maintaining and verifying compliance in the areas of data security, privacy, and regulatory requirements.

Responsible for understanding, upholding, and promoting the Everus 4EVER Strategy.
Employees | Value | Execution | Relationships

• A working knowledge of IT compliance, risk management, audit, or related roles, with a focus on regulatory compliance and industry standards at a level normally acquired through completion of a bachelor's degree in information technology, business administration, or related field or equivalent experience; and
• 2 years' experience in IT administration, security or audit

• 
  

  Stay informed about laws and regulations that impact the organization's IT operations, such as data protection regulations (e.g., GDPR, HIPAA), industry-specific standards (e.g., PCI DSS), and other relevant compliance frameworks.

  
  
• 
  

  Assist in the development and maintenance of IT compliance policies, procedures, and guidelines that align with regulatory requirements and industry best practices.

  
  
• 
  

  Conduct risk assessments to identify areas where the organization may be at risk of non-compliance with regulatory requirements.

  
  
• 
  

  Evaluate the impact of non-compliance and recommend mitigation strategies.

  
  
• 
  

  Work with the Audit team to plan and execute compliance audits and assessments to evaluate the organization's adherence to internal policies and external regulations. Document findings and report results to management.

  
  
• 
  

  Ensure that the organization's data handling and data protection practices follow applicable data privacy regulations.

  
  
• 
  

  Monitor data processing activities and data flows to identify potential compliance gaps.

  
  
• 
  

  Review and assess IT security controls, including access controls, encryption, authentication mechanisms, and intrusion detection systems, to ensure they meet regulatory requirements.

  
  
• 
  

  Develop and manage data protection plans to protect customer and client data the company works with.

  
  
• 
  

  Maintain accurate and up-to-date records of compliance assessments, audit reports, and related documentation.

  
  
• 
  

  Ensure that records are readily available for internal and external audits.

  
  
• 
  

  Develop and deliver training programs and awareness campaigns to educate employees and stakeholders about IT compliance requirements and best practices.

  
  
• 
  

  Prepare compliance reports for management, regulatory authorities, and other relevant stakeholders.

  
  
• 
  

  Communicate compliance-related findings, risks, and recommendations to leadership.

  
  
• 
  

  Work with relevant departments and teams to address compliance gaps and implement corrective actions and solutions.

  
  
• 
  

  Enforce IT compliance policies and procedures across the organization.

  
  
• 
  

  Collaborate with internal departments to ensure alignment with compliance requirements.

  
  
• 
  

  Assist with external audits conducted by regulatory agencies or third-party auditors.

  
  
• 
  

  Provide documentation and evidence of compliance as required.

  
  
• 
  

  Stay current with changes in laws, regulations, and industry standards to ensure ongoing compliance efforts remain effective and up to date.

  
  
• 
  

  Assist with software licensing, third-party vendor management, and contracts.

  
  
• 
  

  Performs other tasks and special projects as assigned.

  
  

• Salary range $62,130 - $77,660
• Annual short-term incentive bonus of up to 14% of eligible wages based on eligibility and company goal achievement.
• Medical insurance (health savings account), including free programs like Learn to Live, Omada and Grand Rounds.
• Virtual care options, including Hinge Health, virtual primary care and Doctor on Demand.
• Prescription delivery service.
• Dental insurance.
• Vision insurance.
• Life insurance for employees, spouses and dependents.
• Accidental death and dismemberment (AD&D) insurance.
• Flexible spending accounts.
• 401(k) plan with matching contribution and retirement contribution.
• Employee Assistance Program.
• Disability insurance.
• Sick leave
• Vacation.
• 11 paid holidays.
• Flexible work hours, where feasible.
• Employee discount programs.

• Relevant certifications such as CISA, CISM, or CRISC.
• Proficiency in contract management tools, Microsoft Office Suite, and data analysis tools (e.g., Excel, Power BI).

• Background check, MVR and drug screen may be required

Current Everus employees: Ask HR about our referral program!