IT Compliance Analyst
Northpointe Bank · Grand Rapids, MI · 1 wk ago
On-siteInformation TechnologyFull-time
About the role
The IT Compliance Analyst plays a crucial role in supporting Northpointe Bank’s Information Security and IT Risk Management team. This position involves coordinating internal and external IT audits, tracking risks and controls, and ensuring compliance with regulatory requirements.
Responsibilities
- Coordinate internal and external IT audit activities by gathering, validating, and organizing audit evidence
- Track audit requests, responses, findings, and remediation efforts to ensure timely completion
- Aid stakeholders in documenting corrective action plans and monitoring remediation progress
- Maintain and update Information Security risk registers, control inventories, and tracking tools
- Support IT and Information Security risk assessments by collecting data, reviewing control documentation, and summarizing results
- Avoid control gaps and document recommended mitigation strategies
- Support Business Continuity and Disaster Recovery (BC/DR) documentation, testing, and remediation activities
- Maintain regulatory and compliance documentation related to IT and Information Security programs
- Collaborate with IT, Compliance, Information Security, vendors, and business partners to support governance initiatives
- Contribute to process improvements and automation opportunities that enhance audit and risk management activities
- Maintain confidentiality while handling sensitive information and documentation
Requirements
- Associate degree, technical coursework, or training in Information Technology, Cybersecurity, Computer Science, or a related field preferred; bachelor's degree is a plus
- 1–3 years of experience in IT, Information Security, risk management, compliance, audit support, or a related technical or analytical role preferred
- Experience in financial services or another regulated industry is preferred
- Foundational understanding of risk and control frameworks such as NIST, ISO, or FFIEC is a plus
- Strong organizational skills with the ability to manage multiple priorities and deadlines
- Excellent written and verbal communication skills
- Strong attention to detail and documentation accuracy
- Ability to learn technical, regulatory, and risk management concepts quickly
- Proficiency with Microsoft Office applications, including Word, Excel, and Outlook
- Interest in pursuing certifications such as Security+, CRISC, or other information security credentials is a plus
Qualifications
- None specified
Skills
- Technical proficiency in IT and Information Security
- Strong analytical and problem-solving skills
- Effective communication and collaboration abilities
- Attention to detail and accuracy in documentation
- Ability to learn and adapt to new concepts quickly
Benefits
- Medical
- Dental
- Vision
- Life, LTD, & AD&D
- Dependent Care Spending Plan (DCSA)
- Employer Stock Ownership Plan with 401(k) feature and company match
- Complimentary Banking Services
- Tuition Assistance
Pay
- Details TBD
Schedule
- Details TBD