Analyst, IT Audit and Compliance

Company Overview

Foundation Building Materials (FBM) is a leading construction materials distribution company serving the commercial and residential construction markets across United States and Canada.  In conjunction with Unified Door & Hardware Group (UDHG), a premier provider of commercial door, frame, and hardware solutions, FBM supports a broad range of construction and architectural projects nationwide.

Together, FBM and UDHG’s 8,000+ Team Members are committed to operational excellence, innovation, and employee development.  By combining scale, specialty expertise, and a customer-first mindset, we deliver high-quality products and services to contractors, builders, and project teams across diverse markets.  As the organization continues to grow and evolve following the recent acquisition by Lowe’s, we are investing in strong, forward-thinking talent to support our long-term success.

Position Overview

The Analyst, IT Audit and Compliance, is responsible for handling IT audit, risk assessment, and compliance program work.  This role ensures that IT systems, processes, and controls comply with internal policies, industry standards, and regulatory requirements. This role will work closely with IT, security, finance, and business teams to strengthen internal controls, mitigate risks, and support strategic initiatives under the leadership of the Manager, IT Audit and Compliance.

• Plan, execute, and manage IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes
• Manage and test SOX controls within a publicly traded company environment, ensuring compliance with financial and IT regulatory requirements
• Conduct risk assessments to identify gaps and vulnerabilities in IT systems and processes
• Perform third-party risk assessments in alignment with NIST standards
• Develop and maintain audit plans aligned with business priorities and regulatory requirements
• Track, monitor, and report remediation efforts from audit findings and ensure timely closure

• Ensure adherence to regulatory requirements such as SOX, NIST, and PCI
• Maintain compliance with PCI-DSS 4.0, including scope reduction strategies such as segmentation, iFrame, and P2PE
• Manage IT compliance frameworks, policies, and procedures to support strong governance
• Collaborate with legal, finance, and business stakeholders to ensure compliance across systems and processes
• Stay current on regulatory changes and assess their impact on IT and business operations

• Lead and mentor the IT audit and compliance team
• Partner with IT and security teams to promote best practices in information security and data protection
• Serve as the primary liaison with external auditors, regulators, and third-party assessors
• Provide senior management with insights and recommendations to strengthen compliance posture

• Identify and implement process improvements to enhance audit efficiency and effectiveness
• Drive initiatives that strengthen internal controls and reduce risk exposure

• Perform other duties as assigned to support IT audit and compliance objectives

• Bachelor’s degree in Information Systems, Computer Science, Accounting, or a related field.
• 5+ years of experience in IT audit, compliance, or risk management roles.
• Strong understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
• Experience managing audits and compliance initiatives in large or complex organizations.
• Excellent analytical, problem-solving, and organizational skills.
• Strong communication skills with the ability to engage both technical and non-technical stakeholders.
• Ability to manage multiple priorities in a fast-paced environment.
• Professional certifications such as CISA, CISM, CISSP, CRISC, or similar.

• Base: $85,000 - $105,000 per year
• Bonus: 15% Target Bonus
• Total Compensation (Base + Bonus): The successful candidate could reasonably expect a total compensation package in the range of $95,000 - $125,000
• Equity: This role is not eligible for equity opportunities, awards, or grants

• Medical, Dental, and Vision
• HSA/FSA plans
• Company-provided Basic Life and Accidental Death & Dismemberment (AD&D) Insurance
• Voluntary Life and Accidental Death & Dismemberment (AD&D) Insurance
• Critical Illness, Hospital Indemnity, and Accident Coverage
• Legal Insurance Plan
• Paid Time Off & Paid Holidays
• 401(k) plan with company match

Equal Opportunity Employer

Foundation Building Materials is an Equal Opportunity Employer and is committed to providing equal employment opportunities to all individuals. We value diversity and inclusion and are dedicated to creating a workplace where all employees feel respected and empowered. All employment decisions are made without regard to race, color, religion, sex, pregnancy (including childbirth, breastfeeding, or related medical conditions), sexual orientation, gender identity or expression, national origin, age, disability status, genetic information, veteran status, or any other characteristic protected by federal, state, or local law.

In accordance with the Americans with Disabilities Act (ADA) and applicable state and local laws, we provide reasonable accommodations to qualified individuals with disabilities to help them perform the essential functions of their job. If you need assistance or an accommodation during the application process or while employed, please contact Human Resources at Talent@myfbm.com.

Posting Period

This job will be posted for at least 5 days, starting on the initial post date reflected above.