IT Risk Compliance Specialist

Job Title: IT Risk Compliance Specialist

Department: Information Technology

Location: Pittsburgh, PA

Reports To: CIO

Company Statement:

Montauk Renewables, Inc. (NASDAQ: MNTK) is a renewable energy company specializing in the management, recovery, and conversion of biogas into RNG. The Company captures methane, preventing it from being released into the atmosphere, and converts it into either RNG or electrical power for the electrical grid (“Renewable Electricity”). The Company, headquartered in Pittsburgh, Pennsylvania, has more than 30 years of experience in the development, operation, and management of landfill methane-fueled renewable energy projects. The Company has current operations at 15 operating projects located in California, Idaho, Ohio, Oklahoma, Pennsylvania, North Carolina, and Texas. The Company sells RNG and Renewable Electricity, taking advantage of Environmental Attribute premiums available under federal and state policies that incentivize their use.

Job Summary:

The IT Risk Compliance Specialist reports to the CIO and is responsible for ensuring that the organization’s information technology systems and processes comply with regulatory requirements, internal policies, and industry best practices. This role focuses on identifying, assessing, and mitigating IT-related risks while supporting audits, compliance initiatives, and security frameworks.

Key Responsibilities:

• Develop, implement, and maintain IT risk management and compliance programs aligned with regulatory standards (e.g., SOX, GDPR, HIPAA, PCI-DSS).
• Work closely with IT, Audit, and Operations business units to address compliance gaps.
• Conduct risk assessments and recommend mitigation strategies for IT systems and processes.
• Track and report compliance metrics, risk findings, and remediation progress to stakeholders.
• Monitor compliance with internal policies, procedures, and external regulations.
• Prepare documentation and evidence for internal and external audits.
• Maintain accurate records of compliance activities and risk assessments.
• Assist in creating and updating IT security and compliance policies.
• Ensure adherence to frameworks such as NIST, CIS, and ISO.
• Provide guidance and training on compliance requirements and best practices.
• Other duties as required.

Qualifications:

• Bachelor’s Degree in Information Technology, Cybersecurity, Risk Management, or related field.
• Minimum of 3 years in IT risk management, compliance, and/or audit roles.
• Familiarity with regulatory standards and security frameworks.
• Proficiency in risk assessment tools and compliance software.
• Strong analytical and problem-solving abilities.
• Excellent communication and documentation skills.

Preferred Certifications

• Certified Information Systems Auditor (CISA)
• Certified in Risk and Information Systems Control (CRISC)
• Certified in Governance, Risk, and Compliance (CGRC)

BENEFITS:

· Full-Time employees are eligible for a strong benefits package including:

· Medical, Dental and Vision

· Flexible spending account

· Paid time off

· Long term disability, and life insurance

· Retirement 401K

· Pay is commensurate with qualifications.

Montauk Renewables is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to status as a protected veteran or a qualified individual with a disability, or other protected status, such as race, religion, color, national origin, sex, age. We are a drug free work environment based on Federal guidelines and use E-Verify to confirm employment eligibility.