Lucidworks is leading digital transformation for some of the world's biggest retailers, financial services firms, manufacturers, and B2B commerce organizations. We believe that the core to a great digital experience starts with search and browse. Our Deep Learning technology captures user behavior and utilizes machine learning to connect people with the products, content, and information they need. Brands including Crate & Barrel, Lenovo, Red Hat, and Cisco Systems rely on Lucidworks' suite of products to power commerce, customer service, and workplace applications that delight customers and empower employees. Lucidworks believes in the power of diversity and inclusion to help us do our best work. We are an Equal Opportunity employer and welcome talent across a full range of backgrounds, orientation, origin, and identity in an inclusive and non-discriminatory way.
About the Role
We are seeking an experienced and detail-oriented Compliance and IT Audit professional to join our team, playing a critical role in upholding our commitment to information security and compliance. In this role, you will be integral to our efforts in risk management, regulatory compliance, and continuous improvement of internal controls. Working closely with cross-functional teams—including IT, Development, Product Security, and Sales—you will support the design and execution of controls, monitor compliance initiatives, and facilitate both internal and external audits. If you are organized, proactive, and collaborative, with a passion for developing compliance frameworks and fostering a security-first mindset across the organization, this role is for you. Join us in our mission to safeguard our organization’s integrity and resilience in a dynamic regulatory landscape.
\n- Support the IT and Development/Engineering teams in assessing the effectiveness of internal controls and recommend improvements as needed to enhance compliance and minimize risks.
- Facilitate annual policy & procedure reviews with control owners, create/maintain process maps, and assist control owners in updating policies and procedures.
- Act as customer assurance liaison for customer risk reviews, RFP’s, etc engaging with Sales and Sales Engineering teams to complete or answer questions.
- Partner with IT leaders, Engineering, Product Security & Security to ensure controls testing is effectively managed.
- Coordinate with external auditors and outside consultants on audit-related activities, acting as the liaison for Lucidworks.
- Assist in designing and executing monitoring and testing practices to assess compliance with the Lucidworks Information Security Policy and Data Privacy Requirements.
- Perform and maintain vendor assessments as part of procurement and on an annual basis in accordance with compliance.
- Own Security & Awareness Training and Phishing Campaigns for Lucidworks.
- Own Risk register for company, Identify potential areas of non-compliance and develop strategies to mitigate risks.
- Collaborate with the Legal team, Security team and other departments (e.g., legal, finance, sales, etc) to ensure alignment on compliance initiatives and resolve issues as they arise.
- Partner with IT and other compliance stakeholders to find and execute against opportunities to improve controls testing and outcomes.
- Monitor the status of issues and remediation efforts.
- Help collaborate and refine Board quarterly reporting presentations.
- Bachelor’s Degree or equivalent experience
- 5+ years of equivalent professional experience in a IT Audit, IT risk management and/or compliance role
- Solid understanding of compliance frameworks including ISO 27001, SOC 2, GDPR
- Inquisitive and proactive in identifying problems and proposing creative solutions
- Strong collaborative and communication skills to coach personnel on compliance and controls
- CISM, CRISC or CIPP/E certifications helpful
- Drata experience or similar compliance automation system beneficial (Vanta, Tugboat, etc)
- Acceptable background check
- Must be authorized to work in the United States full-time for any employer
- Resourceful-willing to jump in, be agile/flexible, leverage existing resources to accomplish goals, ability to work independently
- Team player-confident in collaborating with a diverse community of people and personalities across geographies, backgrounds, and professional abilities
- Strong verbal and written communication skills
- Empathy and care for all stakeholders of Lucidwork including employees, customers, partners, and guests
- Ability to handle confidential information
Lucidworks believes in the power of diversity and inclusion to help us do our best work. We are an Equal Opportunity employer and welcome talent across a full range of backgrounds, orientation, origin, and identity in an inclusive and non-discriminatory way. Applicants receive consideration based on the relevant talents, skills, and experiences they offer to our company.
Thank you for your interest and we look forward to learning more about you.
Note to third party recruiters:
We appreciate your interest in our job opportunities. However, we kindly request that third-party recruiters and staffing agencies refrain from contacting us regarding these positions. We prefer to work directly with candidates and do not accept unsolicited resumes or candidate referrals from third-party recruiters or agencies. Unsolicited resumes and referrals will become the property of Lucidworks, and no fee will be paid should we hire a candidate whose resume was sent unsolicited.