Manager of Audit & Compliance

Vectra® is the leader in AI-driven threat detection and response for hybrid and multi-cloud enterprises. The Vectra AI Platform delivers integrated signal across public cloud, SaaS, identity, and data center networks in a single platform. Powered by patented Attack Signal Intelligence, it empowers security teams to rapidly prioritize, investigate and respond to the most advanced cyber-attacks. With 35 patents in AI-driven threat detection and the most vendor references in MITRE D3FEND, organizations worldwide rely on the Vectra AI to move at the speed and scale of hybrid attackers. For more information, visit www.vectra.ai. Position Overview Vectra is looking for an Manager of Audit Compliance to plan and execute internal audits of the company’s IT processes, systems, and controls, helping ensure effective risk management and regulatory compliance. The position reports directly to the Sr. Director of IT Security and can be based in Austin, Boston, or Remote US. Responsibilities Audit Planning Execution: Develop and carry out a risk-based internal audit plan for IT operations, security controls, and compliance processes. Conduct audits from planning through reporting, evaluating the effectiveness of IT controls, policies, and procedures. Risk Identification Remediation: Identify control gaps and IT-related risks during audits and recommend actionable improvements. Prepare clear audit findings reports and work with stakeholders on remediation plans. Track audit findings and drive remediation efforts to closure with accountable owners. Cross-Functional Collaboration: Work closely with IT, Security, Engineering, and other teams to gather evidence and facilitate audit processes. Serve as a liaison with external auditors and internal teams for any audit inquiries or compliance assessments. Ensure security controls and processes are well documented and demonstrated during audits. Compliance Support: Support external compliance audits and certifications (e.g. ISO 27001, SOC 2) by providing required documentation and coordinating audit logistics. Partner with compliance and GRC functions to align internal audit activities with regulatory requirements and company policies. Process Improvement Documentation: Maintain comprehensive audit workpapers and documentation repositories using a modern GRC tool in order to meet quality and retention standards. Help build audit playbooks and improve audit workflows (e.g. automating evidence collection) to increase efficiency. Stay up-to-date on industry best practices and emerging regulations to continually enhance the IT audit program. Qualifications Education Certification: University degree in Information Systems, Computer Science, MIS, or a related field. Professional certification such as CISA (Certified Information Systems Auditor) or CIA is strongly preferred. Experience: 5+ years of experience in IT auditing, IT risk, or related compliance fields. Demonstrated experience leading or executing multiple IT audits end-to-end, including working with external or third-party auditors. Experience in a high-growth or technology-driven environment is a plus. Technical Knowledge: Strong understanding of IT governance, security, and compliance frameworks – e.g. ISO 27001, SOC 2, NIST 800-53, Sarbanes-Oxley (SOX), GDPR – and how they apply to enterprise environments. Familiarity with cloud platforms and enterprise IT controls (AWS, Azure, O365, etc.) and with IT general controls and processes. Tools: Experience with GRC or audit management tools (e.g. AuditBoard, Drata, Vanta) is a plus for streamlining compliance evidence and audit tracking. Soft Skills: Excellent communication skills, with the ability to clearly report findings and recommendations to both technical and non-technical stakeholders. Strong organizational and project management skills to handle multiple audits simultaneously. A collaborative, integrity-driven approach and a problem-solving mindset are essential. ... (truncated, view full listing at source)