Job Application for IT Governance & Compliance Manager at IEQ Capital

New

Who are we?

IEQ Capital is a Registered Investment Advisor seeking to transform traditional wealth management. Our quest is to integrate the Intellectual and Emotional Quotient, generating exceptional investment results driven by a values-oriented culture that fosters connection and collaboration with our clients. We are an independent, predominantly employee-owned company, adhering to the fiduciary standard to put our clients' interests first. We focus our efforts on helping clients meet their investment objectives without the distractions and limitations that can arise within much larger organizations.

The Role

IEQ Capital is seeking a proactive and detail-oriented IT Governance & Compliance Manager to oversee IT strategy, compliance, and vendor management. This individual will work closely with our Managed Service Provider, Compliance, and Finance teams to ensure seamless IT operations, regulatory compliance, and a secure, efficient IT environment while also assisting in light infrastructure and day-to-day support as needed.

Key Responsibilities

Ensure IT operations align with SEC, FINRA, and cybersecurity compliance requirements.
Develop and maintain IT policies, procedures, and documentation in collaboration with Compliance.
Oversee IT audits, risk assessments, and security reviews, ensuring adherence to industry regulations and internal policies.
Maintain the Written Information Security Program (WISP) and ensure security controls are enforced.
Change Management & IT Governance: Review and approve non-standard software/hardware changes, distribution list modifications, and security-related requests.
Collaborate with leadership to define the firm’s IT strategy and roadmap.
Ensure IT investments align with business objectives, compliance mandates, and security best practices.
Evaluate and recommend new technologies to enhance security, efficiency, and compliance.
Oversee IT projects related to security, cloud migrations, regulatory compliance, and growth.
Lead IT projects in coordination with the MSP, including hardware refresh cycles, network upgrades, cloud migrations, and system rollouts, ensuring alignment with business goals and compliance requirements.
Vendor & Budget Management: Oversee IT vendors, assess performance, negotiate renewals, manage SLAs, and align IT budgets with Finance.
Serve as the primary liaison between the firm and its MSP, ensuring service levels align with business needs.
Evaluate MSP performance and security controls through regular reviews and audits.
Manage relationships with third-party IT vendors, overseeing contract negotiations and service level agreements (SLAs).
Ensure vendors adhere to compliance and cybersecurity best practices.
Support hardware procurement by coordinating with the MSP to evaluate, approve, and facilitate the acquisition of IT hardware in alignment with business needs and security requirements.
Review and approve user tickets for change requests, ensuring compliance with security policies and IT governance standards before implementation.
Attend weekly meetings with the MSP to review ongoing initiatives, address service performance, and align IT strategy with business objectives.
Oversee firm-wide cybersecurity initiatives, including incident response planning and employee security awareness training.
Ensure implementation and enforcement of identity and access management controls (e.g., Single Sign-On, Multi-Factor Authentication, role-based access control).
Monitor and assess IT security risks, working with vendors and MSP to implement mitigation strategies.
Facilitate regular cybersecurity training and phishing simulation programs for employees.
Maintain and oversee the firm’s IT disaster recovery (DR) and business continuity plans (BCP), ensuring regular testing and updates.
Work with MSP and vendors to ensure backup strategies align with security and regulatory requirements.
Collaborate with the MSP to respond to IT incidents and escalations, ensuring timely resolution and alignment with security protocols.

User Education and IT Awareness

Implement IT training programs to ensure employees adhere to best practices in security and compliance.
Act as an internal IT advocate, ensuring leadership and employees understand how to use IT resources securely and efficiently.

Qualifications

5+ years of experience in IT governance, compliance, or risk management, preferably in financial services or a regulated industry.
Strong knowledge of network infrastructure, cybersecurity best practices, and IT governance.
Experience working with Managed Service Providers (MSPs) and IT vendors for security, infrastructure, and cloud services.
Familiarity with regulatory compliance frameworks (SEC, FINRA, SOC 2, WISP, etc.).
Hands-on experience with IT budgeting, strategic planning, contract negotiations, and cost optimization.
Ability to manage IT projects, implement process improvements, and support a fast-paced, high-growth environment.
Strong communication and stakeholder management skills to collaborate with business leaders, compliance, and vendors.

Compensation

The salary range for this role, inclusive of base and bonus, is $120,000 - $170,000, depending on skills and experience.

Create a Job Alert

Interested in building your career at IEQ Capital? Get future opportunities sent straight to your email.

First Name

Last Name

Preferred First Name

Country

Phone

Resume/CV

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf

LinkedIn Profile

Do you have a Bachelor's Degree?

Select...

GPA

Select...

What is your desired salary range?

Are you authorized to work in the country in which this job is offered?

Select...

Will you now or in the future require IEQ's sponsorship to continue or extend your current work authorization status?

Select...

Are you currently involved in any Outside Business Activities which requires you to devote time outside of your role at the firm?

Select...

If so, please describe any compensation you receive:

Do you provide investment advice as part of your role?

Please be advised that IEQ is a mandatory vaccination employer. If you join IEQ’s team, you will need to provide proof of your vaccination status, and, if not vaccinated, obtain an approved-vaccine, unless a medical or religious exemption applies. Please check the box below to acknowledge this policy. *

I acknowledge this policy.

IEQ Capital Privacy Policy Acknowledgment

Select...

IEQ CAPITAL, LLC
CALIFORNIA APPLICANT PRIVACY NOTICE – CALIFORNIA PRIVACY RIGHTS
AND DISCLOSURES
Last Updated: January 1, 2023
This California Job Applicant Privacy Notice (“Privacy Notice” or “Notice”) explains how IEQ
Capital, LLC (“company,” “we,” or “us,” or “our”) collects personal information from job
applicants who are California residents, to the extent the personal information is collected and
used by us solely within the context of their status as a job applicant. This Notice supplements
other privacy notices you may receive in connection with your relationship with us.
Personal Information We Collect and Have Collected in the Past 12 Months – Sources and
Categories
In the 12 months preceding the date of this Notice, we collected your personal information when
you applied for a position with us or otherwise voluntarily provided information to us. We will
continue to collect personal information from the same sources.
The categories of personal information we collected from these sources during the 12 months
preceding the date of this Notice, and will continue to collect, includes the following:
 Personal identifiers: name, address, email address, government-issued identification
documents
 Protected class information: race, ethnicity, gender, gender identification, veteran status
 Professional information: records of your work and education history (including internal
and external work history and references)
 Educational information: Education history; trade school records; certificates obtained
Purposes for Collection of Personal Information
We use your personal information to evaluate your application for employment, to conduct job
interviews, and to comply with applicable law.
Disclosure of Personal Information For Business Purposes in the Past 12 Months
The following chart describes the categories of personal information that we disclosed to third
parties for a business purpose in the 12 months prior to the date of this Notice:
Categories of Consumers’
Personal Information
Categories of Third Parties With Which We Shared
Personal Information for a Business Purpose
Personal identifiers: name, address,
email address, government-issued
identification documents
Service providers that assist in providing human
resource functions; facilitate scheduling and email
communications; provide security services and cloudbased
data storage, assist with other IT-related
functions; provide legal services
Protected class information: race,
ethnicity, gender, gender
identification, veteran status
Service providers that assist in providing human
resource functions; provide legal services
Professional information: records of
your work and education history
(including internal and external
work history and references)
Service providers assist with recruitment activities and
HR services
Educational information: Education
history; trade school records;
certificates obtained
Service providers assist with recruitment activities and
HR services
Additional Information About How We May Disclose Personal Information
We may also share your personal information as required or permitted by law to comply with a
subpoena or similar legal process or government request, or when we believe in good faith that
disclosure is legally required or otherwise necessary to protect our rights and property or the
rights, property or safety of others, including to law enforcement agencies, and judicial and
regulatory authorities. We may also share your personal information with third parties to help
detect and protect against fraud or data security vulnerabilities. And we may share or transfer
your personal information to a third party in the event of an actual or potential sale, merger,
reorganization of our entity or other restructuring.
No Sale of Personal Information
We do not sell the personal information of job applicants.
Rights Related to Personal Information Held by Us
Your Right To Access Information We Collect and Share About You
We are committed to ensuring that you know what personal information we collect. To that end,
you can ask us for the following information from us with respect to the personal information
that we’ve collected about you in the 12 months prior to our receipt of your request:
 Specific pieces of personal information we have collected about you;
 Categories of personal information we have collected about you;
 Categories of sources from which such personal information was collected;
 Categories of personal information that the business sold or disclosed for a business
purpose about you;
 Categories of third parties to whom the personal information was sold or disclosed for a
business purpose; and
 The business or commercial purpose for collecting your personal information.
Your Right To Request Deletion of Personal Information We Have Collected From You
Upon your request, we will delete the personal information we have collected from you, except
for situations where the CCPA authorizes us to retain specific information, including when it is
necessary for us to perform human resource functions; for other internal uses; to maintain the
functionality or security of our systems; or to comply with or exercise rights provided by the
law.
Our Commitment to Honoring Your Rights
If you exercise any of the rights explained in this Privacy Notice, we will continue to treat you
fairly.
Exercising Your Rights and How We Will Respond
To exercise your access or deletion rights, or to ask a question about your data subject rights,
contact us at compliance@IEQcapital.com or (650) 581-9807. For requests for access or
deletion, we will first acknowledge receipt of your request within 10 business days of receipt of
your request. We will then provide a substantive response to your request as soon as we can,
generally within 45 days from when we receive your request, although we may be allowed to
take longer to process your request under certain circumstances.
We usually act on requests and provide information free of charge, but we may charge a
reasonable fee to cover our administrative costs of providing the information in certain
situations.
In some cases, the law may allow us to refuse to act on certain requests. When this is the case,
we will endeavor to provide you with an explanation as to why.
Verification of Identity – Access or Deletion Requests
We will ask you for two pieces of personal information and attempt to match those to
information that we maintain about you.
If we are unable to verify your identity with the degree of certainty required, we will not be able
to respond to the request. We will notify you to explain the basis of the denial.
Authorized Agents
You may designate an agent to submit requests on your behalf. The agent can be a natural
person or an entity that is registered with the California Secretary of State.
If you would like to designate an agent to act on your behalf, you and the agent will need to
comply with our verification process. Specifically, if the agent submits requests to access, know
or delete your personal information, the agent will need to provide us with your signed
permission indicating the agent has been authorized to submit the request on your behalf. We
will also require that you verify your identity directly with us or confirm with us that you
provided the agent with permission to submit the request.
Please note that this subsection does not apply when an agent is authorized to act on your behalf
pursuant to a valid power of attorney. Any such requests will be processed in accordance with
California law pertaining to powers of attorney.
Personal Information of Minors
We do not advertise our positions to minors under 16 and do not knowingly collect or sell the
personal information of minors, including minors under 16 years of age.
How We Keep Your Personal Information Secure
We maintain reasonable security measures appropriate to the nature of the Personal Information
that we collect, use, retain, transfer or otherwise process. Those measures include
administrative, technical and physical safeguards designed to protect the personal information
you provide against accidental, unlawful or unauthorized destruction, loss, alteration, access,
disclosure or use. However, data security incidents and breaches can occur due to a variety of
factors that cannot reasonably be prevented; therefore, our safeguards may not always be
adequate to prevent all breaches of security.
Changes to This Notice
We will review and update this Notice as required to keep current with rules and regulations,
new technologies and security standards. We will post those changes on the website or update
the Privacy Notice modification date below. In certain cases and if the changes are material, we
will post a notice on our website.
Accessibility
We are committed to ensuring that our communications are accessible to people with disabilities.
To make accessibility-related requests or report barriers, please contact us at
humancapital@ieqcapital.com.
Contact Us
If there are any questions regarding this Privacy Notice or to request a copy of this Privacy
Notice in another format you may contact us at compliance@IEQcapital.com or (650) 581-9807.

Due to U.S. Securities and Exchange Commission (the "SEC") regulations, IEQ Capital must gather information on whether a candidate holds any political positions. When answering this question, do not disclose a political party or candidate. If "yes," please specify the political position. Do you hold a political position, including but not limited to: (i) an officer or employee of any national, regional, local or other government entity, (ii) an elected government official, (iii) an officer or employee of any entity or instrumentality in which a government or government entity possesses a majority or controlling interest, (iv) a candidate for political office, (v) a political party or official of a political party, (vi) an officer or employee of a public international organization, or (vii) a person who is acting in an official capacity for or on behalf of any government or department, agency or instrumentality of a government or for or on behalf of any public international organization?

Have you been referred by someone at IEQ for this position?

Select...

If yes, who?

IT Governance & Compliance Manager

Who are we?

The Role

Key Responsibilities

Qualifications

Compensation

Apply for this job