Mgr IT Compliance & Controls

Apply now »

Apply now

Apply for Job

Date: Mar 30, 2026

Location: San Antonio, TX, US, 78205

Company: CPS Energy

We are engineers, high line workers, power plant managers, accountants, electricians, project coordinators, risk analysts, customer service operators, community representatives, safety and security specialists, communicators, human resources partners, information technology technicians and much, much more. We are 3,500 people committed to enhancing the lives of the communities we serve. Together, we are powering the growth and success of our community progress every day!

Deadline to apply: April 10, 2026 at 11:59pm

Pay Grade

Position Summary

CPS Energy is seeking a results-driven Manager – IT Compliance & Controls to lead strategic functions across IT regulatory compliance and internal controls. This role ensures that CPS Energy's technology systems are secure, compliant, and aligned with internal policies and external regulatory requirements.
The ideal candidate is a seasoned IT leader with deep experience in managing IT audits, QA frameworks, and risk control environments in highly regulated industries—ideally utilities or public sector organizations.

Tasks and Responsibilities

Oversee IT Compliance with internal policies and external regulations (e.g., NERC Critical Infrastructure Protection (CIP), Sarbanes-Oxley Act (SOX), data privacy, cybersecurity).
Manage IT Controls programs including IT General Controls, application controls, and established risk assessments.
Coordinate Internal & External Audits, including control testing, evidence collection, and remediation tracking.
Collaborate with Cybersecurity, Legal, Audit, and Enterprise Risk teams to maintain audit readiness and control health.
Develop IT Policies, Standards, and Procedures that support enterprise governance, risk mitigation, and compliance.
Produce Executive-Level Reporting on QA outcomes, risk status, and compliance gaps for leadership and Board stakeholders.
Lead and Develop a High-Performing Team, fostering a culture of quality, accountability, and continuous improvement.
Drive IT compliance training and awareness programs across IT and supporting business units to foster a culture of compliance.
Monitor emerging risks, regulations, and industry standards (e.g., evolving NERC CIP, data privacy laws) and advise leadership on compliance impacts.

Minimum Skills

Minimum Knowledge and Abilities

Progressive IT experience with demonstrated leadership in managing IT compliance, quality assurance, and control functions.

Strong understanding of industry and/or IT control frameworks (e.g., NERC, National Institute of Standards and Technology (NIST), Control Objectives for Information and Related Technologies (COBIT), ISO 27001).

Demonstrated success in audit and regulatory engagements.

Preferred Qualifications

Experience in a regulated industry (energy, utilities, financial services, etc.).
Professional certifications such as CISA, CRISC, CGEIT, PMP, or ITIL.
Working knowledge of GRC tools (e.g., Archer, ServiceNow GRC).
Familiarity with utility regulations including NERC CIP or equivalent state/local compliance frameworks.

Competencies

Setting a Strategic Vision

Establishing Relationships

Prioritizing and Organizing Work

Making Accurate Judgments and Decisions

Acting as a Champion for Change

Communicates Effectively

Minimum Education

Bachelor’s degree in Information Systems, Cybersecurity, Computer Science, or related field.

Required Certifications

Working Environment

Indoor work, operating computer, manual dexterity, talking, hearing, and repetitive motion. Use of personal computing equipment, telephone, multi-functioning printer and calculator.

Ability to travel to and from meetings, training sessions or other business related events.

Hybrid work model (subject to department and business needs).

May require occasional travel to CPS Energy facilities, audit meetings, or regulatory events.

Physical Demands

Exerting up to 10 pounds of force occasionally, and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body.

Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally, and all other sedentary criteria are met.

CPS Energy does not discriminate against applicants or employees. CPS Energy is committed to providing equal opportunity in all of its employment practices, including selection, hiring, promotion, transfers and compensation, to all qualified applicants and employees without regard to race, religion, color, sex, sexual orientation, gender identity, national origin, citizenship status, veteran status, pregnancy, age, disability, genetic information or any other protected status. CPS Energy will comply with all laws and regulations.

Nearest Major Market: San Antonio
Job Segment: Quality Assurance, Power Plant, Manager, Computer Science, Information Systems, Technology, Energy, Management

Apply now »

Apply now