IT Audit and Compliance Analyst

Robert Half is partnering with a well known brand that is seeking a highly skilled IT Audit and Compliance Analyst. The position is direct hire, with full benefits, with 5 days onsite in the Orange County Area. We need a candidate with proven experience managing PCI‑DSS compliance in fast‑paced, high‑volume payment environments, including handling complex transaction flows and strict security requirements.

• Conduct compliance activities tied to standards such as SOX, PCI, NIST, or similar frameworks.
• Support PCI‑DSS 4.0 compliance efforts, including scope reduction, controls implementation, monitoring activities, and coordination with external auditors and assessors.
• Maintain and update governance policies, procedures, and documentation.
• Work closely with legal, finance, and functional teams to support organization-wide compliance.
• Assess regulatory changes and communicate their potential operational impact.
• Lead end-to-end IT audits, reviewing internal controls, operational workflows, and security practices.
• Manage and evaluate SOX-related controls for a technology environment within a regulated or public-company setting.
• Perform risk assessments across systems and processes to identify weaknesses or areas for improvement.
• Serve as a key point of contact for external auditors, partners, and regulatory assessors.

Education

• Bachelor’s degree in Information Systems, Computer Science, Accounting, or a related discipline.

Certifications (Preferred, not required)

• CISA, CISM, CISSP, CRISC, or similar designations.

Experience

• 1+ years in IT audit, IT risk, compliance, or a related function.
• Demonstrated experience in PCI "Scope"
• Strong understanding of IT general controls, cyber frameworks, and regulatory environments.
• Proven success managing audits or compliance programs in mid‑size or large organizations.