Director, Audit Response & Compliance Operations

The Department of Information Technology (DoIT) leads the State in the creation and implementation of information technology solutions that improve IT infrastructure and government services and keep Maryland current within IT industry trends. Within DoIT, the Compliance Unit safeguards the integrity of the State’s IT operations by ensuring that audit, regulatory, and policy obligations are met with rigor, transparency, and enterprise-wide consistency.  As a newly established function, Compliance Unit is building the structure, standards, and tooling that will define how Maryland responds to audit and regulatory scrutiny for years to come.  This is an exciting opportunity to shape an enterprise capability from the ground up.

STD 0024

100 Community Pl., Crownsville, MD  21038

This position is the operational execution of Maryland DoIT’s enterprise audit response function, exercising day-to-day command authority over the State Audit Response Operating Model (SAROM). SAROM is DoIT’s foundational governance framework for audit response, defining the accountability model, intake standards, routing logic, escalation paths, and reporting cadence used to manage Office of Legislative Audits (OLA) requests, external audits, corrective actions, and policy attestations. Operating as the SAROM control tower, this role audit response from a reactive, ad-hoc activity into a disciplined enterprise workflow, setting service levels, enforcing standards, driving accountability across agencies, and maintaining the system of record for all audit related obligations. The position carries significant influence across DoIT and partner agencies, acting as the central authority on how audit work is received, prioritized and executed. The role requires sound judgement in balancing competing demands from legislative auditors, executive leadership, and agency stakeholders, often under tight deadlines and high visibility conditions. Beyond day-to-day operations, this role shapes the maturity of the State’s compliance posture by identifying systematic gaps, recommending process improvements, and codifying repeatable practices. Success in this position strengthens public trust in how Maryland manages its technology investments and regulatory commitments. Reporting Structure This position reports directly to the Senior Director of Compliance within the Department of Information Technology and operates as the senior operational lead for the SAROM function. The role works in close coordination with DoIT executive leadership, agency compliance liaisons, the Office of Legislative Audits, and external audit partners, and may provide functional directions to analysts, coordinators, or contractors supporting audit response activities.

• Direct enterprise intake operations across email and ServiceNow, ensuring every audit request – internal, external, or legislative – is formally captured, classified, and accountable to a defined owner from the moment it enters the organization.• Establish and enforce service level expectations, escalation thresholds, and operational throughput standards to prevent response degradation, missed commitments, or reputational exposure.• Govern workflow and routing automation so requests are assigned to the correct owners on first touch and escalated when delays or risks emerge.• Serve as steward of the authoritative audit repository, standard templates, operating procedures, and record retention discipline, preserving evidentiary integrity and audit defensibility.• Lead cross agency response coordination to deliver unified submissions, consistent messaging, and full enterprise visibility into open audit obligations and corrective actions.• Produce executive level reporting on audit posture, throughput, aging, and risk trends to inform Senior Leadership and external stakeholders.• Drive continuous improvement of SAROM by analyzing performance data, capturing lessons learned from completed engagements, and evolving intake, routing, and escalation standards to keep pace with changing regulatory and operational demands.• Partner with DoIT leadership, agency liaisons, and external auditors to build trusted working relationships, clarify expectations, and resolve disputed or ambiguous findings before they escalate.

Education: Bachelor’s degree in Information Technology, Computer Science, Information Systems, Business Administration, Accounting/Finance, or a related field Experience: Three (3) years’ experience performing one or more of the following in an information technology environment: audits, compliance reviews, risk management and/or quality assurance Note: Candidates may substitute two additional years of qualifying experience for the degree requirement

One year of audit, compliance, risk management or quality assurance experience in a public sector information technology environment (county, state, or federal)

Please make sure that you provide sufficient information on your application to show that you meet the qualifications for this recruitment. All information concerning your qualifications must be submitted by the closing date. We will not consider information submitted after this date. Successful candidates will be placed on the eligible (employment) list for at least one year.

The assessment may consist of a rating of your education, training, and experience related to the requirements of the position. It is important that you provide complete and accurate information on your application. Please report all experience and education that is related to this position.

Benefits

Online applications are highly recommended. However, if you are unable to apply online, the paper application and supplemental questionnaire may be submitted to: Department of Budget and Management, Recruitment and Examination Division, 301 W. Preston St., Baltimore, MD 21201. Paper application materials must be received in our office by the closing date for the recruitment. No postmarks will be accepted.

For questions regarding this recruitment, please contact the DBM Recruitment and Examination Division at Application.Help@maryland.gov or 410-767-4850, MD TTY Relay Service 1-800-735-2258.

We thank our Veterans for their service to our country.

People with disabilities and bilingual candidates are encouraged to apply.

As an equal opportunity employer, Maryland is committed to recruitment, retaining and promoting employees who are reflective of the State's diversity.