IT Audit & Compliance Analyst

Description Mascoma Bank is looking for an IT Audit & Compliance Analyst to join our Information Technology team. In this role, you will support the Bank’s technology risk, audit, and access governance programs by reviewing user access, evaluating internal IT controls, and helping ensure our systems and practices meet regulatory, audit, and information security expectations.

What You'll Do

• Perform scheduled and risk-based user access reviews across core banking, lending, deposit, digital, infrastructure, cloud, and third-party systems.
• Evaluate access against least-privilege, segregation-of-duties, and role-based access control principles.
• Identify and document access concerns such as dormant, terminated, shared, or over-privileged accounts, and partner with system owners to drive timely remediation.
• Review privileged, administrative, service, and emergency access on a defined cadence.
• Verify timely access provisioning, transfers, and de-provisioning in partnership with People Resources and IT Support.
• Maintain accurate evidence, documentation, and audit trails to support internal audit, external audit, and regulatory examination needs.
• Assess the design and operating effectiveness of IT general controls across areas such as change management, logical access, computer operations, backup and recovery, and incident response.
• Test adherence to IT policies, standards, and procedures, and identify gaps between documented processes and actual practice.
• Partner with business line managers to determine appropriate system access profiles for new or changing roles.
• Recommend and document role-based access templates that support strong controls and effective business operations.
• Help managers understand access request standards, recertification responsibilities, and the business rationale for control requirements.
• Coordinate with IT, Risk, and Compliance teams to support audit plans, regulatory requests, evidence gathering, issue tracking, and corrective action follow-up.

What We're Looking For

• Bachelor’s degree in information systems, Computer Science, or a related field, or an equivalent combination of education and experience.
• 3–5+ years of experience in IT audit, IT controls, information security, identity and access management, or IT risk, preferably in banking, financial services, or another regulated environment.
• Working knowledge of GLBA, FDICIA, IT general control expectations, and NIST Cybersecurity Framework concepts.
• Experience conducting or supporting user access reviews and IT control testing.
• Strong analytical, organizational, and documentation skills.
• Ability to communicate risk and control concepts clearly to both technical and non-technical audiences.
• Ability to work independently, manage multiple reviews at once, and handle confidential information with discretion.
• Relevant certifications such as ISACA IT Audit Fundamentals, CISA, or CIA are preferred.

Background and Credit Check As part of our commitment to maintaining a secure financial institution, all final candidates will be required to successfully complete background and credit screenings as part of the hiring process. These screenings will be conducted in accordance with applicable laws and industry regulations. Please note: Having a record on a background or credit report does not automatically disqualify you. We evaluate results on a case-by-case basis, considering their relevance to the role and any regulatory requirements. Our Commitment to Belonging! The communities served by Mascoma Bank consist of individuals from diverse backgrounds. Our employees likewise bring unique perspectives, experiences, and approaches to the bank. We strive to create a safe and welcoming environment for all who pass through our doors and a workplace that actively demonstrates mutual respect and trust, one of our core values. A truly inclusive culture leads to a sense of belonging and support for all team members and inspires innovation and creativity. We are committed to recruiting and retaining a diverse talent pool, increasing team member engagement through professional development and community outreach activities, and offering personal growth workshops and team-building opportunities. By embracing diversity, equity, and inclusion, we strengthen our communities and ourselves. Mascoma Bank is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, ethnicity, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, veteran status, status as an individual with a disability, or other applicable legally protected characteristics. To request reasonable accommodations, please contact [email protected]. Mascoma Bank is an Affirmative Action and Equal Opportunity Employer, M/F/D/V. Salary Description $80,000 - $90,000 depending on experience Apply tot his job Apply To this Job