Mgr IT Security Compliance

THIS JOB DESCRIPTION DOES NOT ATTEMPT TO LIST ALL OF THE DUTIES THAT ARE OR MAY BE PERFORMED IN THIS POSITION Primary Duties 1. Manages the planning, scoping, and execution of compliance/audit activities in relation to Sarbanes Oxley (SOX), IT Control Framework, Payment Card Industries (PCI), relevant cybersecurity frameworks, and other regulatory and/or compliance requirements.

Designs compliance/audit programs to ensure ongoing evaluation and validation. Identifies focus areas, develops testing strategies, and evaluates outcomes. Ensures timely and accurate completion and reporting. 2.

Evaluates and assesses IT general controls, application controls, and access controls. Researches, recommends, and implements best practices to increase the effectiveness of controls and improve operating procedures. Identifies opportunities and implements improvements to continuously mature the program and the value it delivers to the enterprise. 3.

Oversees internal/external audit engagements and third-party business reviews. Prepares and delivers comprehensive audit and risk assessment reports to leadership. Highlights critical findings, develops recommendations, and reviews action plans designed to enable adequate and timely resolution of all identified issues. 4.

Serves as the subject matter expert for IT compliance topics. Develops, administers, and updates policies and procedures for effective compliance management for all applicable IT related rules and regulations. 5. Develops and maintains strong working relationships with key stakeholders, including business leaders, IT team members, and external auditors, fostering effective communication. 6.

Stays current on emerging technologies, regulatory changes, and evolving best practices to proactively identify opportunities for continuous improvement to enhance the overall effectiveness of the SOX audit program. 7. Maintains adequate staffing levels to ensure proper administration of activities. Selects, develops, motivates, and evaluates the performance of assigned employees. 8.

Develops and monitors functional area budget to ensure efficient utilization of resources. MINIMUM REQUIREMENTS Educational/Experience Level: Bachelor's degree in Computer Science or a closely related field and six years related experience in IT SOX Compliance, audit or a related field; or equivalent.

CISA (Certified Information Systems Auditor), CIA (Certified Internal Auditor), or similar credentials preferred. Communication Skills:

Requires the ability to communicate (both oral and written), and the skills to inform, persuade and/or influence internal and/or external customers and senior management on matters of a technical and/or complex nature.

Numeric Skills:

Requires the ability to perform analyses involving ratios, percentages, and simple statistical methods. Computer Skills:

Requires advanced knowledge of various software applications for creating documents, reports and/or graphics. Work Conditions: Works in an office environment.

Requires occasionally performing activities including, but not limited to, bending, stooping, grasping, reaching, twisting, turning and/or lifting. Atmos Energy Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, or veteran status.

Job Family:

Infrastructure