IT Compliance Analyst

Support the implementation and maintenance of Rockland Trust’s IT Change Management and IT Asset Management (ITAM) Standards, helping ensure compliance with internal policies and external audit or regulatory requirements—including cybersecurity, data protection, and industry standards such as FFIEC and SOX. Assist in reviewing change requests and impact analyses for enterprise-wide IT assets, including hardware, software, applications, and infrastructure, to help maintain accuracy and support risk management goals.

Develop foundational knowledge of the bank’s IT and ITAM environments to assist in identifying operational, security, and compliance risks. Support the evaluation of downstream impacts related to IT changes and asset decisions, ensuring alignment with the organization’s risk management framework and resilience objectives. Collaborate with cross-functional teams to help monitor ITAM Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs), contributing to visibility into asset lifecycle management, security posture, and risk exposure.

Responsibilities and Duties

• Evaluate and challenge IT change requests and impact analyses throughout their lifecycle, ensuring proper risk assessments, approvals, completion, and post-implementation reviews that consider both change and asset management risks.
• Collaborate closely with cross-functional teams, including operations, security, and IT, to integrate change and asset management processes into the bank’s broader risk management frameworks, including cybersecurity and operational risk management.
• Participate in regular asset reconciliation meetings and ensure asset records are accurate and reflect changes in the environment, supporting traceability and accountability for all IT assets in compliance with audit and regulatory standards.
• Leverage automation and tools to improve tracking, risk identification, and reporting efficiency across both change and asset management activities, reducing manual errors and strengthening control environments.
• Engage with application and process owners to streamline routine change approvals (standard changes) and identify opportunities to enhance process efficiency and effectiveness.

Education:

• Bachelor’s degree in Information Technology, Cybersecurity, Business Administration, or a related field.

Experience:

• 1-3 years of experience in IT Change Management, IT asset management, IT risk management, or IT governance roles, preferably within a financial services or regulated industry.
• Hands-on experience with IT Service/Asset Management tools (e.g., Ivanti, Lansweeper, ServiceNow, or other ITSM/ITAM software).
• Familiarity with the application of IT frameworks such as ITIL, CIS, COBIT, or NIST, particularly in the context of asset management and change management.

Knowledge:

• In-depth understanding of IT asset management processes, including asset tracking, inventory management, and lifecycle management.
• Strong knowledge of IT security principles and best practices, particularly related to asset protection and data security.
• Understanding of IT risk management processes, including the identification, assessment, and mitigation of risks associated with IT assets and infrastructure.