IT Controls and Regulatory Compliance Analyst

Lee Enterprise is seeking a motivated and detail-oriented IT Controls & Regulatory Compliance Analyst to join our Governance, Risk & Compliance (GRC) team. This role sits at the intersection of technology, internal controls, and regulatory governance, supporting key compliance programs including SOX IT General Controls (ITGC), PCI-DSS, and NIST Cybersecurity Framework (NIST CSF) alignment.

The Analyst will partner with IT, Cybersecurity, Internal Audit, and business stakeholders to support control testing, maintain compliance documentation, and help ensure the organization's control environment remains strong and audit-ready. This is a growth-oriented opportunity for someone looking to build expertise in IT controls, regulatory compliance, and enterprise governance programs.

Key Responsibilities:

• Demonstrated understanding of IT General Controls (ITGC) and regulatory compliance frameworks within enterprise environments.
• Support SOX ITGC testing activities across key domains including Access Management, Change Management, Logical Security, and Backup & Recovery.
• Maintain and update Risk & Control Matrices (RCMs), control narratives, and walkthrough documentation.
• Coordinate Prepared-By-Client (PBC) evidence collection and validate completeness and accuracy of populations.
• Track remediation efforts, follow-ups, and control gap resolution activities.
• Assist in supporting the PCI-DSS compliance program, including documentation, evidence collection, and validation coordination.
• Maintain PCI compliance artifacts and support remediation tracking for identified findings.
• Support governance alignment efforts across SOX, PCI-DSS, and the NIST Cybersecurity Framework.
• Assist with policy lifecycle documentation and enterprise risk register updates.
• Maintain compliance documentation repositories and support governance reporting activities.
• Collaborate cross-functionally with IT infrastructure, engineering, cybersecurity, and internal audit teams to gather evidence, track compliance KPIs, and support audit readiness efforts.

Qualifications:

• Bachelor's degree in Accounting, Information Systems, Cybersecurity, or a related field.
• 1-3 years of experience in IT audit, SOX support, compliance, or internal audit.
• Foundational understanding of IT General Controls (ITGC).
• Strong documentation, organization, and analytical skills.
• Ability to manage multiple priorities and meet deadlines in a structured environment.
• Proficiency in Excel and standard documentation tools.

Preferred Traits:

• Experience supporting SOX testing cycles.
• Exposure to PCI-DSS controls or compliance assessments.
• Familiarity with the NIST Cybersecurity Framework (NIST CSF).
• Internship or prior experience in public accounting or internal audit.
• Interest in pursuing, or currently holding, a CISA or similar certification.
• Detail-oriented and process-driven with a strong commitment to audit readiness.
• Collaborative team player comfortable working across technical and business teams.

recblid wavjicf1qw30qsnsbo5grqw0d3pe3h