Senior Manager, IT Compliance

Location: Alpharetta, GADepartment: Information Security & ComplianceReports To: CIO Senior Manager, IT ComplianceAgilysys is seeking an experienced Senior Manager of IT Compliance. The IT Compliance Manager is responsible for ensuring the organization’s IT operations comply with applicable laws, regulations, policies, and industry standards. This role involves developing, implementing, and monitoring compliance frameworks, conducting audits, and working cross-functionally to mitigate IT-related risks. In addition, the candidate will have hands-on technical experience with on-premises, SaaS, and Cloud environments, as well as risk management experience, cybersecurity practices, and regulatory requirements such as Sarbanes-Oxley (SOX), Payment Card Data Security Standard (PCI DSS), and Service Organization Control 2 (SOC 2) compliance. Hands-on role in executing IT compliance projects and also contributing to broader IT initiatives. This role includes designing and testing controls for new systems, participating in architecture reviews, and embedding compliance requirements into IT projects such as new application deployments or cloud migrations. Responsibilities:

• Develop, implement, and manage IT compliance policies and procedures in alignment with legal, regulatory, and internal governance requirements.
• Conduct regular IT audits to assess compliance with internal controls and external regulations.
• Provide hands-on technical expertise in ITGC controls across our on-premises, SaaS, and Cloud environments.
• Lead risk assessments, develop risk mitigation plans and oversee the remediation of IT compliance gaps.
• Monitor changes to relevant regulations and ensure timely updates to internal compliance processes.
• Collaborate with internal teams (e.g., IT, Legal, Security, Internal Audit) to manage compliance activities and provide recommendations where relevant.
• Work closely with international teams, including a dedicated compliance or IT support team in India, to ensure global alignment and execution of compliance initiatives.
• Prepare and present compliance reports to senior management and stakeholders.
• Assist in the development of IT security and data protection training and awareness programs.
• Support incident response processes from a compliance and reporting perspective.
• Maintain documentation related to IT compliance efforts, including audit trails, risk assessments, and policy acknowledgments.
• Write and maintain IT policies, procedures, and documentation.
• Oversee vendor risk assessments and ensure third-party compliance with organizational policies.
• Ensure that as the company adopts new technologies (SaaS solutions, hybrid cloud/on-prem), security and compliance controls are built into the design from the start.
• Monitor changes in regulations, standards, and best practices to ensure that our IT controls and risk management processes remain current.
• Continuously monitor the effectiveness of IT controls (e.g. user access management, change management, etc.) and maintain dashboards or metrics for compliance status.
• Deliver clear, transparent reports on our IT compliance posture, control testing results, and risk indicators to senior management.

 Requirements:Education & Certifications:

• Bachelor’s degree in Information Technology, Computer Science, or a related field.
• Relevant certifications such as CISA, CISSP, or CRISC are preferred.

 Professional Experience:

• Minimum of 5 years of experience in IT compliance, risk management, or IT audit.
• Demonstrated experience managing compliance projects from initiation through completion across cross-functional teams.
• Experience working effectively in global or geographically distributed teams, including coordination with teams based in India.

 Compliance & Risk Frameworks:Strong working knowledge of IT General Controls (ITGC) and experience implementing or auditing them across:

• On-premises, SaaS, and Cloud environments.
• Proven experience with regulatory and control frameworks, including:
• COBIT, NIST, and ISO/IEC 27001
• NIST Cybersecurity Framework
• PCI DSS and SOC 2 compliance standards.

 Technical & Analytical Skills:

• Ability to assess technical controls and translate complex IT risks into clear, actionable business recommendations.
• Strong analytical thinking, with the ability to identify issues, evaluate solutions, and implement effective controls.
• Experience using risk assessment and GRC tools is a plus.

 Communication & Leadership:

• Excellent verbal and written communication skills, with the ability to engage both technical and non-technical stakeholders.
• Strong interpersonal skills, with the ability to influence, collaborate, and build trust across departments and cultures.
• Exceptional organizational and project management abilities, with attention to detail and a high degree of accuracy.

 Other Requirements:

• Capable of working independently and as part of a collaborative team in a global and fast-paced environment.
• Willingness to work flexible hours to support coordination with international teams, particularly in India.

  Additional RequirementsLicensing Requirement: Must be willing to complete all license applications, background checks, security checks, and/or any other documentation and provide copies of any identification documents required by any State, Federal or Tribal governmental agency in order to maintain compliance with their laws and to successfully perform in the role. The information in this description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Conditions may require the Company to modify this job description, and the Company reserves the right to exercise its discretion to make such changes. Agilysys is an equal opportunity employer. In compliance with Federal and State EEO laws, qualified applicants are considered for all positions without regard to race, color, gender, religion, national origin, ancestry, place of birth, age, marital status, sexual orientation, disability, or veteran status. EEO/AAP Employer M/F/V/D