At Tailored Brands, we help people love the way they look and feel for their most important moments. Our Technology team loves the way they feel and thrive at work, with: Flexible work opportunities, including remote and hybrid options Small, empowered teams that have fun delivering real value for our customers A culture that values a 50-year legacy while eagerly embracing the future Want to be part of this? We currently have an exciting opportunity for Sr. Internal Controls and Compliances Analyst to join our Tailored Technology team. This individual is responsible for development, implementation and adherence of the enterprise IT Security Governance, Risk Management & Compliance strategy which includes compliance management, and keeping Tailored Brands in compliance with standards and regulations such as PCI, SOX, CCPA, ISO27001 and EU GDPR (to name a few). What you’ll do Develop and implement internal controls frameworks, policies, standards, and procedures to ensure compliance with regulatory requirements and industry standards / best practice. Conduct risk assessments and internal control reviews to identify areas of potential risk, fraud, or non-compliance. Evaluate the design and effectiveness of internal controls, including segregation of duties, access controls, authorization processes, change management, and computer operations. Develop and implement review and testing of internal controls. Perform internal audits, reviews, and testing procedures to assess the reliability and accuracy of systems controls. Collaborate with department managers and process owners to address control deficiencies and implement corrective actions. Monitor and track remediation efforts and action plans to address finding and control weaknesses. Liaise with internal and external auditors, regulators, and other stakeholders during audits. Analyze data and trends to identify emerging risks and areas for improvements in internal controls processes. Monitor compliance and internal policies, standards, and procedures along with ethical standards, as necessary. Contribute to the development and implementation of risk management strategies and initiatives to enhance organizational resilience and sustainability. Develop the Compliances operating model and a service-oriented customer engagement model. Work with various operational and business teams to drive toward a cohesive view of internal controls along with security risk and drive remediation items to closure. Maintain accurate reporting of remediation activities to bring appropriate visibility to stakeholders. Deliver data-driven decision-making solutions, via business intelligence that is timely, accurate, and actionable. Apply risk event data, KCIs, KPIs, and KRIs, and model risk & control relationships, to support ad-hoc and pre-built reports. Drive service efficiency and effectiveness via application of technology, for better business solutions. Establish and maintain GRC metrics and reporting, and continuously improve best-in-class metrics, analytics, and reporting roadmap, products, and services. Audit, Regulatory, and Risk Governance: Sustain purpose-driven engagement and effective interaction with Auditors, Regulators, and Risk and compliance partners. Drive remediation activities from identification, remediation plan and closure. Hold owners accountable to delivery of remediation solution within the agreed upon/reasonable SLA. Ensure Tailored Brands meets all PCI-DSS requirements to prove PCI compliance by working with the QSA, collecting evidence, and working with stakeholders, IT, and various teams, and ensuring objectives are met to meet the AOC deadline. What you’ll bring 8+ years working in internal controls, internal auditing, and including risk compliance or management. Strong understanding of internal control principles, practices, and frameworks (e.g., SOX, PCI, NIST, GDPR, CCPA) and security regulatory requirements. Experience in IT risk assessment that includes performing formal risk analyses that involve thorough threat, control, and residual risk analysis. A deep understanding of the risk management life cycle and experience using a GRC tool for risk management preferred CISA certification preferred. ISMS governance models (i. e. ISO 27001, NIST), information security roles, security controls. Common security certifications (i. e. ISO 27001, SOC1, SOC2, Webtrust) and ability to glean significance from findings identified in these reports. Ability to communicate internal controls, risk methodologies and concepts to the business unit and IT. Demonstrated experience with controls definition, development, implementation, and assessment. Strong interpersonal skills and ability to work effectively with diverse and distributed teams. Strong attention to detail, project management and organizational skills. If you see yourself in this role, but fall short in any areas above, apply anyway! We love to invest in our team members! The Best Kept Secret in Retail Tailored Brands is North America’s leading specialty retailer of menswear, famous for world-class customer service and unique offerings like tailoring and custom suits. We are best known by our brands, including Men’s Wearhouse, Jos. A. Bank, K&G Fashion Superstore, and Moores Clothing for Men in Canada. We are emerging from the pandemic with incredible momentum. We own a unique and special market segment experiencing record-level demand. This has inspired our 3-year journey to become Legendary; an exciting strategy that leans heavily upon a strong technology foundation. With over 1,000 stores across the US and Canada, 15,000 employees, and over 35 million customers, we’re the perfect size! Large enough to demand leading-edge enterprise-worthy technology, but small enough to move quickly and empower our teams with significant scope & autonomy. Apply now to power your career journey to Legendary! Benefits This role is eligible for healthcare including medical, dental and vision, retirement savings (401k with a company match), income protection programs such as life, accident and disability insurance, paid time off for sick leave, vacation, bereavement, jury duty, and holidays, wellbeing program, commuter, adoption assistance, education assistance, legal services, and employee merchandise discounts. For more detailed information go to mytbtotalrewards.com. Work-Life Balance We understand the demands of work, school, family, and personal responsibilities. Through our work-life resources and programs we offer services for every stage of life to help you manage the day-to-day needs. We offer programs such as: Meeting-Free Fridays (encouraged) | so you can catch up on work and self-development Summer Fridays | from Memorial Day to Labor Day so you can enjoy a head-start to the weekend Holiday Early Departure | close out early the business day before a company observed holiday This salary range is specific to Colorado, New York, California, and Washington. The starting salary for this position is $106,800–$142,300 and may increase to $160,000 depending on merit, length of service with the Company, and other factors. We take into consideration an individual’s skills, background, and experience in determining final salary. Other compensation may include a 10% Annual Incentive Plan (AIP) bonus paid out according to policy. Base pay information is based on market location and may be subject to prevailing wage laws, if applicable. Work Environment, Physical & Mental Demands Ability to sit and work at a computer keyboard for extended periods of time Ability to stoop, kneel, bend at the waist, and reach daily Able to lift and move up to 25 pounds occasionally Must utilize visual acuity, speech and hearing, hand and eye coordination and manual dexterity necessary to operate a computer and office equipment Hours regularly 40 hours per week, as work dictates, from a remote location. Note: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed are representative of the knowledge, skill, and/or ability required and are not intended to be an exhaustive list of all duties, responsibilities or qualifications associated with this job. Work Locations: 01099I IT Dept. 6380 Rogerdale Rd Houston 77072 Job: Information Technology (IT) Organization: Tailored Shared Services Shift: Day Job