IT Compliance Analyst

About Us

The company

This role is in our Springer Nature Technology division - a diverse group of over 700 people across our main locations in Germany, India, the Netherlands, Portugal, the United Kingdom, and the United States.

Visit https://group.springernature.com/ to learn more about who we are and what we do.

The Department

Join the Portfolio & Governance Office of our CIO, where our mantra is simple yet powerful: "Do the right things. Do things right." Our team is dedicated to building a strategic, consistent, and transparent approach to how information and technology empower our entire enterprise. We focus on two essential objectives: fostering a unified vision for IT across the organization and ensuring our IT organization consistently delivers value through efficiency and clarity. If you're passionate about driving meaningful change at the intersection of technology, information, and business strategy, we’d love for you to be part of our mission!

The Team

The IT Governance team, part of the Portfolio & Governance Office, plays a pivotal role in shaping and maintaining the integrity of our organization’s technology landscape. The team ensures that our IT systems, processes and data management practices align with the highest standards of security, compliance and operational excellence. Focused on driving governance and risk management, the IT Governance team collaborates across departments to implement policies and controls that protect our organization, enable innovation, and meet both internal and external compliance requirements. By joining this team, you’ll work alongside dedicated professionals passionate about safeguarding our technology framework and enhancing our organizational resilience.

Job summary

Are you passionate about technology, compliance and driving standards that keep an organization secure and resilient? Do you thrive in a fast-paced environment and continual change driven by quick decisions within adaptive IT governance practices? Join our team as a Compliance Analyst in IT Governance! In this dynamic role, you'll support and enhance our compliance framework, ensuring our organization meets industry standards and regulatory requirements. You’ll work closely with teams across the business to implement policies, monitor compliance metrics, conduct audits, and produce insightful reports that drive continuous improvement. If you are a proactive, detail-oriented professional with a knack for finding solutions and a commitment to excellence, we’d love to hear from you!

As part of our team, you’ll have the chance to make a real impact on the organization’s resilience and risk posture, working on meaningful projects that protect our ecosystem and drive innovation. We offer a collaborative and supportive environment, continuous learning opportunities, and competitive benefits. If you’re ready to bring your skills and enthusiasm for compliance to a forward-thinking team, apply today!

Key Responsibilities

The Compliance Analyst in IT Governance will play a critical role in monitoring, assessing, and reporting on compliance with internal policies and external regulations across the organization. This position blends hands-on compliance monitoring, internal auditing and program enhancement responsibilities, helping to maintain the integrity of IT governance and risk management practices. You will identify gaps, collaborate with cross-functional teams to design and implement controls and produce regular compliance reports. This role requires a strong understanding of IT governance frameworks, data protection standards and industry-specific regulations. Daily responsibilities include:

• Monitor and Report on Compliance: Translate legal, regulatory and compliance expectations to tangible quality criteria that can be used for compliance and quality checks of SN-domain websites, IT products and the related delivery and maintenance processes. Support stakeholders in how to apply the expectations to increase compliance level. Regularly review and monitor compliance with internal and external standards, such as data protection (GDPR, CCPA) and other regulatory requirements.
• Support Internal Audits: Support audits of IT systems, processes and policies to ensure alignment with compliance frameworks, facilitate IT / SN Technology activities and participation in the audit process. Support planning of mitigation actions answering to audit findings and identifying areas of improvement.
• Compliance Program Support: Develop, enhance and maintain user-friendly compliance documentation, such as policies, procedures and controls, to support effective IT governance and maximize adoption.
• Risk Identification and Mitigation: Support and/or execute planned compliance checks on the targeted IT products and processes. Elaborate the methodology of compliance checks tailored to the targeted IT product or process, plan and organize the related activities, participate in the execution. Collaborate with cross-functional teams to identify, assess and manage IT compliance risks, proactively recommending solutions to mitigate potential risks.
• Reporting and Analytics: Elaborate compliance reporting framework, generate detailed reports on compliance metrics, audit findings and risk assessments and present insights and actionable recommendations to stakeholders.
• Support Training and Awareness Initiatives: Participate in developing and delivering training programs to promote compliance awareness, data protection and secure practices across the organization.
• Continuous Improvement: Search for improvement opportunities on process compliance, application of legal expectations, and quality of IT product delivery. Bring ideas and proposals in these areas and support the implementation.
• Stay Updated on Regulatory Changes: Monitor the latest developments in compliance standards and regulations and assess their impact on the organization’s policies and procedures.

About You YOUR EXPERIENCE

• Minimum 5 years of experience in IT compliance, governance or audit roles with hands-on exposure to IT risk management, regulatory compliance or similar functions.
• Demonstrated experience with compliance monitoring, internal audits, and risk assessments within an IT environment.
• Familiarity with industry standards and frameworks (e.g.,ISO 27001, NIST, COBIT, GDPR, WCAG and more), especially in a corporate or technology-driven environment.
• Strong history of collaboration with both IT and business stakeholders, demonstrating an ability to understand and align with business needs while ensuring project outcomes deliver value.

Your qualifications

• Degree in Information Technology, Business Administration, or a related field (equivalent experience may be considered).
• Strong understanding of IT governance frameworks and best practices.
• Strong knowledge of the regulatory environment larger organizations have to comply with (data protection regulations, accessibility standards, AI-regulations, Sustainability etc.)
• Analytical mindset with the ability to interpret data, assess risks, and present clear, actionable insights.
• Strong written and verbal communication skills in English language for preparing detailed reports and interacting with stakeholders.
• Self-starter with a strong attention to detail and ability to manage multiple tasks and priorities in a fast-paced environment.
• Relevant certifications are highly desirable but not required.

#LI-AR1