Analyst, IT Audit and Compliance

Location US-CA-Santa Ana
ID 2026-3651
Category
Information Technology
Position Type
Regular Full-Time
Workplace Type
Onsite

About Us

Company Overview

Foundation Building Materials (FBM) is a leading construction materials distribution company serving the commercial and residential construction markets across United States and Canada.  In conjunction with Unified Door & Hardware Group (UDHG), a premier provider of commercial door, frame, and hardware solutions, FBM supports a broad range of construction and architectural projects nationwide.

 

Together, FBM and UDHG’s 8,000+ Team Members are committed to operational excellence, innovation, and employee development.  By combining scale, specialty expertise, and a customer-first mindset, we deliver high-quality products and services to contractors, builders, and project teams across diverse markets.  As the organization continues to grow and evolve following the recent acquisition by Lowe’s, we are investing in strong, forward-thinking talent to support our long-term success.

Overview

Position Overview

The Analyst, IT Audit and Compliance, is responsible for handling IT audit, risk assessment, and compliance program work.  This role ensures that IT systems, processes, and controls comply with internal policies, industry standards, and regulatory requirements. This role will work closely with IT, security, finance, and business teams to strengthen internal controls, mitigate risks, and support strategic initiatives under the leadership of the Manager, IT Audit and Compliance.

Responsibilities and Qualifications

Key Responsibilities
Audit & Risk Management
  • Support the planning and execution of IT audits to evaluate the design and effectiveness of internal controls, security measures, and operational processes.
  • Assist with testing and documentation of SOX controls within a publicly traded company environment to support compliance with financial and IT regulatory requirements.
  • Participate in risk assessments to identify gaps and vulnerabilities in IT systems and processes.
  • Support third-party risk assessments of vendors in accordance with established frameworks such as NIST.
  • Assist in maintaining audit plans and supporting audit activities aligned with business priorities and regulatory changes.
  • Track and monitor remediation efforts from audit findings and assist in ensuring timely closure of action items.
 
Compliance & Governance
  • Support compliance activities related to regulatory requirements and frameworks, including SOX, NIST, and PCI.
  • Assist with PCI-DSS 4.0 compliance efforts, including evidence collection and documentation related to scope reduction initiatives such as segmentation, iFrame, and P2PE.
  • Maintain IT compliance documentation, policies, procedures, and supporting materials to promote effective governance practices.
  • Collaborate with Legal, Finance, IT, and business stakeholders to support compliance initiatives across systems and processes.
  • Monitor regulatory updates and communicate relevant changes and potential impacts to the broader team.
 
Leadership & Collaboration
  • Support internal and external audit activities by coordinating requests, gathering documentation, and assisting with audit inquiries.
  • Assist with monitoring compliance risks through established internal controls and process improvement initiatives.
  • Coordinate with internal stakeholders and external auditors to support audit and compliance activities.
 
Continuous Improvement
  • Participate in initiatives to improve IT audit, risk management, and compliance processes and controls.
  • Partner with IT and Security teams to promote best practices in information security and data protection.
  • Assist with external audits, assessments, and compliance reviews conducted by auditors, regulators, and third-party assessors.
  • Prepare reports, metrics, and documentation to support management visibility into audit and compliance activities.
 
Additional Responsibilities & Miscellaneous
  • Perform other duties as assigned to support IT Audit and Compliance objectives.
 
 
Qualifications
  • Bachelor's degree in Information Systems, Computer Science, Accounting, Cybersecurity, or a related field.
  • CISA, CISM, CISSP, CRISC, or similar certifications preferred but not required.
  • 1–3 years of experience in IT audit, compliance, cybersecurity, risk management, or related fields.
  • Foundational understanding of IT general controls, cybersecurity frameworks, and regulatory requirements.
  • Exposure to SOX, IT audits, compliance testing, or risk assessments through professional experience, internships, or public accounting preferred.
  • Strong analytical, problem-solving, and organizational skills.
  • Effective communication skills with the ability to work with both technical and non-technical stakeholders.
  • Ability to manage multiple priorities and deadlines in a fast-paced environment.
  • Proficiency with Microsoft Excel and experience working with audit documentation and reporting tools preferred.

Compensation and Benefits

Reports To
Manager, IT Audit and Compliance
 
 
Compensation

Within the range, individual pay may vary based on experience, qualifications, and work location within state. This is a full-time position with competitive pay and benefits.

  • Base: $35.00 - $45.00 per hour
  • Bonus: 10% Target Bonus
  • Total Compensation (Base + Bonus): The successful candidate could reasonably expect a Total Compensation Package in the range of $76,000 - $105,000
  • Equity: This role is not eligible for equity opportunities, awards or grants.
 
 
Benefits

At FBM, we’re committed to supporting our employees both personally and professionally. We offer a comprehensive and competitive benefits package designed to help you thrive inside and outside of work. Our excellent package includes:

  • Medical, Dental and Vision
  • HSA / FSA
  • Company Provided Basic Life and Accidental Death & Dismemberment (AD&D) Insurance
  • Voluntary Life and Accidental Death & Dismemberment (AD&D) Insurance
  • Critical Illness, Hospital Indemnity, Accident Coverage
  • Legal Insurance Plan
  • Paid Time Off & Paid Holidays
  • 401(k) plan with generous company match

Statements

Equal Opportunity Employer

Foundation Building Materials is an Equal Opportunity Employer and is committed to providing equal employment opportunities to all individuals. We value diversity and inclusion and are dedicated to creating a workplace where all employees feel respected and empowered. All employment decisions are made without regard to race, color, religion, sex, pregnancy (including childbirth, breastfeeding, or related medical conditions), sexual orientation, gender identity or expression, national origin, age, disability status, genetic information, veteran status, or any other characteristic protected by federal, state, or local law.

 

In accordance with the Americans with Disabilities Act (ADA) and applicable state and local laws, we provide reasonable accommodations to qualified individuals with disabilities to help them perform the essential functions of their job. If you need assistance or an accommodation during the application process or while employed, please contact Human Resources at Talent@myfbm.com.

 

Posting Period

This job will be posted for at least 5 days, starting on the initial post date reflected above.

Salary Range

Min: USD $35.00/Hr., Max: USD $45.00/Hr.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.