About the position
Alphanumeric is seeking an experienced Audit/Compliance Analyst IV (Lead) to join a high-performing IT Security team supporting enterprise-level governance, risk, and compliance initiatives. This is a hands-on, execution-focused role with direct ownership of policy and compliance operations within a defined scope. If you thrive in structured environments, enjoy automation and process optimization, and have strong ServiceNow GRC experience - this could be a great fit. This role requires strong independent execution while collaborating across a distributed team.
Responsibilities
• Administer and optimize ServiceNow Policy & Compliance (GRC/IRM) modules
• Manage ITSM oversight queues for policy and compliance workflows
• Automate control activities, evidence collection, and lifecycle processes
• Support a 'test once, satisfy many' compliance methodology
• Implement continuous monitoring and identify control violations
• Develop dashboards, reporting, and compliance metrics for leadership
• Coordinate enterprise-wide audit evidence and regulatory responses
• Partner cross-functionally with InfoSec, Risk, Legal, Audit, and IT
• Create SOPs, documentation, and drive process improvements
Requirements
• 3+ years of ServiceNow GRC/IRM experience (ITSM preferred)
• Strong understanding of cybersecurity frameworks (NIST 800-53, NIST CSF, ISO 27001)
• Practical GRC application experience
• Familiarity with Unified Control Framework (UCF) and SIG
• Experience supporting audits, compliance reviews, and regulatory frameworks
• Strong communication skills and attention to detail
• Bachelor's degree preferred (experience may substitute)
Nice-to-haves
• Certifications: Security+, CISA, CISSP, CISM, CGRC, PMP
• Experience with HIPAA, SOX, NY DFS, SOC 1/SOC 2
• Experience working with Risk, Compliance, Legal, and Internal Audit teams