SIGN IN
IT Compliance & Risk Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Alberici Constructors · 2 days ago

IT Compliance & Risk Manager

positionSt Louis, MO
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp
Alberici Constructors is a diversified construction company headquartered in St. Louis, Missouri, specializing in critical infrastructure projects. They are seeking an IT Compliance & Risk Manager to establish and maintain an enterprise IT risk management framework, oversee compliance efforts, and support cybersecurity initiatives across the organization.
Building MaterialCivil EngineeringConstruction
check
Growth Opportunities

Responsibilities

Establish and maintain the enterprise IT risk management framework aligned with industry best practices (e.g., NIST CSF, ISO 27001)
Identify, assess, and prioritize technology and cyber risks across systems, infrastructure, cloud services, and construction jobsite technologies
Conduct risk assessments for new systems, vendors, and technology initiatives
Develop and track remediation plans, ensuring timely mitigation of identified risks
Prepare regular IT risk reporting for executive leadership and key stakeholders
Lead IT compliance efforts related to applicable regulations and standards, such as CMMC, HIPPA, CCPA, GDPR, and client contractual requirements
Maintain, and communicate IT policies, standards, and procedures; ensure companywide adoption and alignment
Coordinate internal and external IT audits, ensuring evidence collection and timely completion of remediation activities
Support compliance related to construction-specific client and project requirements (e.g., data protection clauses, cyber insurance, federal project requirements)
Maintain documentation of compliance controls, processes, and key artifacts
Partner with the cybersecurity team to ensure compliance with security controls, including access management, incident response, vulnerability management, and disaster recovery
Monitor status of cybersecurity initiatives and support alignment with risk and compliance frameworks
Contribute to business continuity and disaster recovery planning, testing, and documentation
Oversee IT vendor risk assessments and ensure relevant security and compliance requirements are included in contracts
Maintain a risk register of critical vendors and monitor ongoing risk and compliance posture
Implement and support IT compliance and risk awareness initiatives across the organization
Conduct training for IT staff and business users on policies, standards, and best practices
Serve as an advisor for IT and construction-tech projects, ensuring compliance and risk considerations are incorporated early in project planning
Provide guidance on secure and compliant implementation of new technology, jobsite solutions, and data-sharing processes
Models and reinforces safety as a top priority of the organization. Always wears a safety helmet and other appropriate personal protective equipment in the field
Ensures client satisfaction, both internally and externally, through efficient handling of issues
Performs other duties as assigned by the Supervisor

Qualification

IT risk managementIT complianceCybersecurity governanceRisk frameworksCloud securityVendor risk managementCommunication skillsMicrosoft OfficeTraining implementationTechnical translationConstruction industry experienceSecurity frameworksIT audit experienceCertifications CISACertifications CRISCCertifications etc.CollaborationTime managementPresentation skills

Required

Bachelor's degree in Information Technology, Information Security, or related field
5+ years of experience in IT compliance, IT audit, cybersecurity governance, or IT risk management
Strong understanding of IT controls, governance, risk frameworks, and compliance requirements
Excellent communication skills and ability to translate technical concepts into business language
Ability to collaborate effectively with cross-functional teams and influence without authority
Effectively presents information to top management and other groups
Organizes and manages time, duties, and activities efficiently
Utilizes Microsoft Office-based applications and other software systems appropriate for this role

Preferred

Experience in construction, engineering, or similar project-driven industries
Experience working within or supporting security frameworks (e.g., NIST, CIS, ISO)
Familiarity with cloud security and compliance (Microsoft 365, Azure, AWS)
CISA, CRISC, CISSP, CISM, or similar relevant certifications

Benefits

Profit-sharing plan, cash bonus programs and annual cost-of-living adjustments
Generous salary increases and per diems for qualified out-of-town assignments
Health, dental and vision insurance eligibility on day one
Paid parental leave
Continuing education reimbursement
Personalized career development and training programs
Minimum of 29 days of PTO (including holidays) for entry-level roles
Fitness center for St. Louis office-based team members
Gym membership reimbursement for project-based team members
Corporate office cafeteria access
Employee Resource Group (ERG) opportunities
Philanthropy opportunities

Company

Alberici Constructors

twittertwittertwitter
company-logo
Alberici is a diversified construction company that partners with leading organizations to build the critical structures that improve lives and strengthen communities.
dateFounded in 1918
location
St Louis, Missouri, USA
people-size1001-5000 employees
web-link
http://www.alberici.com/

Funding

Current Stage
Late Stage

Leadership Team

M
Michael Burke
Chief Operating Officer
linkedin
leader-logo
Greg Hesser
Executive Chairman
linkedin

Recent News

PR Newswire
Alberici & Flintco Expand Services with Investment in LCG Capital Management
2025-06-30
Company data provided by crunchbase