Senior IT Risk and Compliance Analyst

Paylocity is an equal opportunity employer.
Paylocity is a cloud-based software company that creates customized HR solutions for small to mid-sized organizations. Our workplace enhances communication and enables employees to connect, collaborate, and create from anywhere. Our award-winning culture ensures everyone has a voice and feels truly welcome. Join Paylocity as we shape the future of technology and the workplace.
We give our employees what they need to succeed, including great benefits and perks! We offer medical, dental, vision, life, disability, and a 401(k) match, as well as perks that support you, your family, and your finances. And if it's career development you desire, we provide that, too! At Paylocity, people matter most and have always been at the heart of our business.
When you feel like you belong, work is no longer work - it's personal. At Paylocity, we believe better employees lead to better companies. Workplaces and cultures that care will build the future, and at Paylocity, we're doing just that. Join us as we change the future and transform your career!
Position Overview
As a Senior IT Risk & Compliance Analyst, you will assist with driving the transformation of the company's IT compliance program by supporting the execution of internal and external assessments associated with current and emerging regulations and standards including SOX, SSAE 18 (SOC), ISO27001, and HIPAA. The person in this key role will work closely with individuals across the organization to understand existing IT policies, procedures and processes and provide insights related to applicable risk areas, mitigations, process improvements, and control recommendations.
Primary Responsibilities
The below represents the primary duties of the position, others may be assigned as needed. To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Assess compliance with policies, standards, and regulations through the performance of risk assessments and controls testing and provide recommendations related to non-compliance areas requiring remediation.
• Support coordination of internal and external audits with IT process owners and other key stakeholders including facilitating evidence collection and other requests from audit teams related to SOX, SSAE 18 (SOC), ISO27001, and HIPAA.
• Establish centralized compliance repository including drafting and maintaining process and controls documentation, workflows, diagrams, and training materials/manuals related to IT processes.
• Monitor existing risk and controls framework for emerging risks including evaluating applicability to the company and providing control recommendations, where applicable, to align with the company's risk tolerance level.
• Develop the management action plan related to non-compliance areas and drive to completion including performing final testing to ensure remediation.
• Identify improvement opportunities and provide recommendations to further mature existing IT processes and controls to align with best practices including use of automation and optimization.
• Serve as a subject matter resource to assess compliance implications related to technical implementations and other IT projects and execute pre-implementation reviews.
• Design continuous controls monitoring program utilizing GRC solution, dashboards, analytics, automation, and other supporting tools.
• Facilitate and monitor to completion the execution of certain control activities including periodic user access reviews.
• Prepare ongoing reports with specified metrics/key performance indicators related to compliance activities, audit results, remediation plans, and other compliance efforts and present to IT and executive management.
• Assist in educating and training individuals across the organization including control and process owners related to compliance concepts, requirements, and responsibilities and establish awareness regarding role of the overall compliance function.
• Other duties as assigned.

Paylocity is an equal opportunity employer.
Paylocity is committed to the full inclusion of all individuals. We comply with federal and state disability laws and make reasonable accommodations for applicants and employees with disabilities. To request reasonable accommodation in the job application or interview process, please contact [email protected] .
This role can be performed from any office in the US. The pay range for this position is $82,352-115,302/yr; however, base pay offered may vary depending on job-related knowledge, skills, and experience. This position is eligible for an annual bonus and restricted stock unit grant based on individual performance in addition to a full range of benefits outlined here.
This information is provided per the relevant state and local pay transparency laws for the location in which this position will be performed. Base pay information is based on market location. Applicants should apply via .