Senior Manager, IT Compliance

Jersey Mike’s is a fast-casual sub sandwich franchise with over 3,100 locations nationwide, offering fresh sliced subs, grilled-to-order authentic Philly cheesesteaks, and freshly baked bread. Established in 1956, the company is committed to providing delicious food made with premium ingredients and giving back to the communities it serves. Jersey Mike’s has earned recognition as one of America’s top franchises by Entrepreneur Magazine and Nation’s Restaurant News, highlighting its rapid growth and dedication. With a history of philanthropy, the brand gives back through initiatives like its Annual Day of Giving and has raised millions for local charities. Jersey Mike’s is driven by its commitment to quality, community, and making a difference.

The Senior Manager of IT Compliance is responsible for leading the Jersey Mike’s IT compliance, governance, and risk management programs. This role ensures that technology systems, processes, and controls align with regulatory requirements, industry standards, and internal policies. The position partners closely with cybersecurity, legal, internal audit, and business stakeholders to maintain a strong compliance posture and support strategic objectives in a fast-paced, cross-functional enterprise environment.

Essential Duties and Responsibilities include but are not limited to the following. Other duties will be assigned to meet business needs.

• Lead the development, implementation, and continuous improvement of the IT compliance framework
• Ensure alignment with regulatory requirements and industry standards (e.g., NIST, ISO 27001, SOC 2, PCI-DSS, GDPR, SOX)
• Assist with maintaining IT policies, standards, and procedures
• Oversee IT risk assessments, control evaluations, and mitigation strategies
• Assist with the maintenance and management of the enterprise IT risk register with risk ownership and remediation tracking
• Partner with CISO to align compliance and security risk priorities
• Serve as primary liaison for internal and external audits (e.g., SOX ITGC, SOC, PCI)
• Coordinate audit responses, evidence collection, and remediation activities
• Ensure timely closure of audit findings and control gaps
• Assist with implementation and monitoring of IT general controls (ITGCs) and automated controls
• Evaluate effectiveness of controls and recommend enhancements
• Support continuous monitoring and compliance automation initiatives
• Oversee IT compliance aspects of third-party risk management programs
• Ensure vendors meet security and compliance requirements (e.g., due diligence, ongoing assessments)
• Collaborate with cybersecurity, procurement, and legal teams on contractual compliance requirements
• Develop KPI/KRI dashboards to measure compliance effectiveness and risk posture
• Track regulatory changes and assess impact to the organization
• Perform other duties as assigned by the CISO

Key Competencies

• Strategic thinking and leadership
• Strong analytical and risk assessment skills
• Excellent communication and executive presentation abilities
• Ability to influence cross-functional stakeholders
• Detail-oriented with strong organizational skills

Qualifications/Requirements

• Bachelor’s degree in Information Technology, Cybersecurity, Business, or related field
• 8–12+ years of experience in IT compliance, risk management, or cybersecurity
• 3–5+ years in a leadership or management role
• Strong knowledge of regulatory frameworks and standards (e.g., NIST, ISO 27001, SOC 2, SOX, PCI-DSS)
• Experience managing audits and regulatory engagements
• Demonstrated ability to build and mature compliance programs

Preferred Skills

• Master’s degree (MBA, MS Cybersecurity, or related)
• Professional certifications such as CPA, CISA, CRISC, CISSP, CISM

· Experience with GRC platforms (e.g., Workiva, Archer, AuditBoard)

Pay: $172,200.00 - $275,500.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Work Location: In person