"Alerted.org

Learn what makes QTS a unique place to grow your career! (https://vimeo.com/727409140/ff26de87d4)

The Senior Manager, Security Risk & Compliance leads the QTS Security Risk & Compliance Team and reports to the QTS Vice President, Security Risk & Compliance. QTS has embraced a risk-based approach for security risk and compliance, and in this position, you will manage a team of risk and compliance professionals, working to build and maintain a security risk and compliance program through the QTS GRC program.

The Senior Manager, Security Risk & Compliance can be in any of these three QTS locations: Overland Park, Kansas; Suwanee, Georgia; or Ashburn, Virginia. This position will require up to 15% travel to QTS data center locations as required. The ideal candidate will have a broad base of experience in security risk and compliance, both as a contributor and leader.

RESPONSIBILITIES:

• Lead the QTS Security Risk & Compliance Team and manage the planning, execution, and health reporting of QTS’ Security Risk & Compliance programs (SOC 1, SOC 2, ISO 27001, ISO 22301, PCI DSS, FISMA, CMMC, and HITRUST) through:

• Compliance Program Monitoring – Monitor and report on the health of the QTS compliance programs, including compliance program control operating effectiveness.

• Compliance Implementations – Manage the implementation of new QTS compliance programs, or existing compliance programs for new sites.

• Compliance Audit Support – Support the QTS compliance program audits.

• Customer Compliance Support - Support of QTS customer compliance and information/physical security inquiries, questionnaires, and audits.

• Security Risk Program – Manage and monitor the QTS security risk program through the identification, assessment, and tracking of risk issues, and the QTS Security Risk Register.

• GRC Platform Management – Lead the team managing the QTS GRC platform technology, ensuring the platform supports the needs of the QTS GRC program, and adapting the platform to the needs of QTS businesses that use the GRC platform.

QUALIFICATIONS:

• Bachelor’s degree or equivalent professional experience.

• Ten or more years performing or supporting information technology audits, compliance, and/or risk assessments.

• Prior experience using and managing GRC platform technology.

• Prior people leadership experience, preferably five or more years of direct people management experience.

• Six or more years of experience and strong knowledge in at least three of the following compliance standards:

o HITRUST

o SOC1

o SOC2

o PCI DSS

o ISO 27001

o ISO 22301

o FISMA/NIST 800-53

o NIST CSF

o CMMC

PREFERRED QUALIFICATIONS:

• Holds or working towards one or more of the following certifications:

• CISSP

• GIAC Security Essentials (GSEC)

• Certified Information Systems Auditor (CISA)

• Certified in Risk and Information Systems Control (CRISC)

• GIAC Critical Controls Certification (GCCC)

KNOWLEDGE, SKILLS, AND ABILITIES:

In addition to QTS’ Core Values, the candidate should be skilled in the following areas:

• Management & Leadership – Lead, develop, grow, and work with a cohesive team through establishment of clear direction, identification of employee strengths and opportunities, and alignment of company goals with departmental and employee goals.

• Quality Team Decision Making - Develop engagement plans and approaches for success of department projects. Identify company control solutions and develop conclusions through analysis of multiple data sources and input of cross-functional team members.

• Consulting Style Communication Skills – Effective at recommending solutions across the organization at all levels for risk and compliance and challenges. Skilled at cross organizational communications and influence, sometimes working to influence in the absence of direct authority.

• Security Risk & Compliance – Strong knowledge of security risk and compliance programs from both the standards and practical implementations, as well as demonstrated success in effectively managing risk and compliance programs.

We conform to all the laws, statutes, and regulations concerning equal employment opportunities and affirmative action. We strongly encourage women, minorities, individuals with disabilities and veterans to apply to all of our job openings. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, or national origin, age, disability status, Genetic Information & Testing, Family & Medical Leave, protected veteran status, or any other characteristic protected by law. We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer or the government, or against any individuals who assist or participate in the investigation of any complaint or discrimination claim.

The "Know Your Rights" Poster is included here:

Know Your Rights (English) (http://www.eeoc.gov/sites/default/files/2022-10/22-088\_EEOC\_KnowYourRights\_10\_20.pdf)

Know Your Rights (Spanish)

The pay transparency policy is available here:

Pay Transparency Nondiscrimination Poster-Formatted (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp\_%20English\_formattedESQA508c.pdf)

QTS is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to [email protected] and let us know the nature of your request and your contact information.

It’s exhilarating to find yourself at a pivotal moment in history— and even more so to be leading the way. At QTS Data Centers, we are proud to stand at the forefront of today’s dynamic digital transformation. Our world-class data centers empower our customers’ most strategic growth initiatives, positioning us as a global leader in digital infrastructure.

As AI and cloud technologies fuel the demand for increased speed, capacity, and innovation, QTS has emerged as the global digital infrastructure leader. We are committed to connecting the globe for good. Driven by purpose and a spirit of innovation, we design, build, and operate some of the most advanced data centers worldwide. In addition to our cutting-edge technology, we are dedicated to sustainability, incorporating renewable energy solutions to minimize our environmental footprint and drive meaningful impact. As a proud portfolio company of Blackstone, QTS is uniquely positioned to achieve ambitious growth and innovation goals.

At QTS, we are _Powered by People_ . Our team members are the cornerstone of our culture, innovation, and growth. They are mission-driven, resourceful, and committed to making a positive impact in the communities where we live and work. Together, we’re achieving remarkable things and shaping the future of digital infrastructure.

And we’d like to invite you to join us.

In addition to a variety of benefit packages, QTS goes above and beyond for our employees:

+ Roth and Traditional 401(k) matching contributions with immediate vesting

+ Every employee is bonus or commission eligible

+ Generous PTO, Paid Volunteer Days Plus Floating Holidays

+ Stock Purchase Plan (SPP)

+ 11 paid Holidays Annually/Holiday compensation when worked

+ Pet and Legal Insurance

+ Q-Rest Sabbatical Program

+ Q-Anniversary Service Award Program

+ Parental Leave for primary and secondary caregivers

+ Military Benefits Package

+ QTS Charitable Matching Gift Program

+ QTS Scholarship for Employee Dependents

+ QTS Crisis Fund

+ Wellness Program

+ Tuition Reimbursement Program