Sr. Director of Compliance
DoIT Technology Chief
Recruitment #25-004778-0001
| Department | DoIT Strategic Planning |
|---|---|
| Date Opened | 3/17/2025 4:00:00 PM |
| Filing Deadline | 3/31/2025 11:59:00 PM |
| Salary | $150,000 - $180,000/year |
| Employment Type |
Full-Time
|
| HR Analyst | Leah Lastner |
| Work Location |
Anne Arundel
|
Introduction
The Department of Information Technology (DoIT) provides support to state agencies, the Executive Office of the Governor, the Governor’s coordinating offices, and a variety of independent agencies within the Executive Branch.
Striving to provide the highest level of customer service to its internal and external customers, DoIT supports Maryland’s agencies and commissions through its leadership and strategic direction for Information Technology and Telecommunications, establishing a long range, target technology architecture, encouraging cross agency collaboration and advocating best practices for operations and project management.
GRADE
INDV 0018
LOCATION OF POSITION
100 Community Place, Crownsville, MD 21032
POSITION DUTIES
This Senior Director of Compliance is responsible for coordinating the development, implementation and maintenance of policies and procedures across DoIT; implementing an internal and external audit and monitoring program, to include the conduction of audits and systemic monitoring; procurement compliance; third party compliance with vendor contracts; coordination, preparation, and implementation of external, independent, State and federal audits, and monitoring of implementation of corrective action/risk mitigation plans; and the oversight of the State’s privacy program.
The position is designated to manage compliance, policy and procedure, privacy, audit, monitoring and ethics activities within each division of the Department of Information Technology (DoIT).
Will also ensure that any state agency that falls under DoIT’s jurisdiction for IT services, is staying compliant with their approved/established IT policies, OLA audit findings and responses and training of staff in all DoIT Security IT policies as well as state and federal security policies and best practices.
Develop, implement and manage DoIT’s compliance program.
- Develop a comprehensive, effective Compliance Program to include an annual compliance plan, policies and procedures, training, reporting mechanisms, non-retaliation, and corrective actions.
- Independently investigate, or cause an investigation, of individual and systemic problems, assist in the design and implementation of corrective actions/risk mitigations, and develop policies accordingly.
- Conduct analyses and advise executive leaders about compliance implications of business decisions, upon request, to include action taken by the Software Review Board (SRB) and Change Advisory Board (CAB).
- Advise senior leaders, or their designees, on standards and methods to address issues and risks jeopardizing initial or ongoing compliance with applicable requirements.
- Establish a plan for the prioritization, creation, review, and oversight of new and current policies and standard operating procedures (SOPs) for all DoIT offices, in close coordination with leadership who are accountable for their staff’s consistent implementation, thereof.
- Validate that all policies and SOPs both existing and new are workable, accountable and functioning. Analyze and prioritize compliance risks to minimize risk and maximize resources. Make recommendations of such to executive leadership.
- Stay abreast of current compliance practices via review of proposed State legislation, fiscal notes, and position statements as well as pending federal laws and regulations.
- Create policies and procedures for criminal background checks for both DoIT staff and third party vendors.
- Ensure third party vendors are hiring their employees based on employment eligibility that adheres to federal I-9 guidelines.
- Reviews Office of Legislative Audit (OLA) reports, discussion notes, and audit work papers for both DoIT audits and other state agency/programs with repeat or significant IT findings. Review these plans to resolve audit findings and assess the adequacy of agency plans to satisfactorily resolve findings. Assists and advise state agencies on the adequacy of their plans to resolve findings. Identifies where planned corrective actions appear inadequate and where areas of disagreement exist.
- Monitors overall implementation of agency corrective and ongoing actions to resolve audit findings. Audits implementation of agency actions to ensure that corrective actions are taken to ensure audit findings are resolved. Will report to the Deputy Secretary, and other executive leadership, on the adequacy of agency actions.
- Coordinates with Department of Budget and Managements Audit Compliance Unit (DBM ACU) and attends quarterly Internal Auditor Forum Meetings and periodic Chief Internal Auditor meetings.
- Oversee and coordinate OLA requests relating to external agency audits.
- Assists or conducts special audits and reviews, as necessary.
- Recommend corrective action or sanctions when repeat audit findings are not remedied.
- Initiate, facilitate, and promote activities that foster a culture of compliance, including training on the Code of Ethics, compliance program, and fraud, waste and abuse reporting and awareness programs.
- Collaborate with either state agency human resource staff or Chief Information Officers are ensuring regular and contractual employees are completing required IT training and executing any attestations in a timely manner.
- Collaborate with third party vendor company designee to ensure third party contractors are completing required IT training and executing any attestations in a timely manner.
- Create regulation specific checklists to promote compliance, especially related to IRS Safeguards, Criminal Justice information, and procurement requirements.
- On an annual basis, update employee orientation and employee and external stakeholder training to include lessons learned, best practices, and updates to state and federal regulations.
- Additionally, provide ad hoc training and awareness programs to promote best practices, across DoIT and state agencies.
***This is a Management Service position that serves at the pleasure of the appointing authority***
MINIMUM QUALIFICATIONS
Education: Bachelors Degree in Business Administration, Accounting, Information Technology or related field.
Experience: Eight years experience creating and managing an IT compliance program for a large organization or state/federal government entity. To include experience with financial and IT compliance audits. Three of the eight years needs to be in a supervisory role overseeing other compliance/audit staff.
DESIRED OR PREFERRED QUALIFICATIONS
Preference will be given to applicants who possess the following preferred qualification(s). Include clear and specific information on your application regarding your qualifications.
- A Juris Doctor (JD) degree.
- Certifications such as: CISA, CISSP and/or CIPP
SELECTION PROCESS
Please make sure that you provide sufficient information on your application to show that you meet the qualifications for this recruitment. All information concerning your qualifications must be submitted by the closing date. We will not consider information submitted after this date. Successful candidates will be ranked as Best Qualified, Better Qualified, or Qualified and placed on the eligible (employment) list for at least one year.
BENEFITS
FURTHER INSTRUCTIONS
Online applications are highly recommended. However, if you are unable to apply online, the paper application and supplemental questionnaire may be submitted to: Department of Budget and Management, Recruitment and Examination Division, 301 W. Preston St., Baltimore, MD 21201. Paper application materials must be received in our office by the closing date for the recruitment. No postmarks will be accepted.
For questions regarding this recruitment, please contact the DBM Recruitment and Examination Division at Application.Help@maryland.gov or 410-767-4850, MD TTY Relay Service 1-800-735-2258.
We thank our Veterans for their service to our country.
People with disabilities and bilingual candidates are encouraged to apply.
As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.
Click on a link below to apply for this position:
| Fill out the Supplemental Questionnaire and Application NOW using the Internet. | Apply Online |
| View and print the Supplemental Questionnaire. | This recruitment requires completion of a supplemental questionnaire. You may view and print the supplemental questionnaire here. |
| Apply via Paper Application. | You may also download and complete the Paper Application here. |
Powered by
