Manager, Information Security Compliance and Risk

Quality Technology Services, LLC
Overland Park, United States of America
6 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Overland Park, United States of America

Tech stack

Data Centers
PCI Data Security Standards

Job description

The Manager, Security Risk & Compliance, leads the QTS Security Risk & Compliance Team and reports to the QTS Director, Compliance & Integrated Risk. QTS has adopted a risk-based approach to security risk and compliance, and this role is responsible for building, operating, and continuously improving QTS's security risk and compliance programs through the enterprise GRC program., · Lead and manage the QTS Security Risk & Compliance team, including planning, execution, and reporting on the overall health of QTS security risk and compliance programs.

· Provide executive-level visibility into program maturity, risks, and control effectiveness.

· Support and oversee QTS compliance programs, including but not limited to SOC1 & SOC2, ISO 27001 & ISO 22301, PCI DSS, FISMA / NIST 800-53, CMMC, and HITRUST.

· Key Activities include:

· Compliance Program Monitoring - Monitor, assess, and report on compliance posture and control operating effectiveness.

· Compliance Implementations - Lead implementation of new compliance programs and expansion of existing programs to new sites.

· Audit Support - Coordinate and support internal and external audits, including auditor management and evidence collection.

· Customer Compliance Support - Serve as an escalation point for customer security and compliance inquiries, questionnaires, and audits.

· Security Risk Program - Manage the enterprise security risk management program, including identification, assessment, tracking, and reporting of risks. Ensure alignment with enterprise risk management activities.

· GRC Platform Management - Lead the team managing the QTS GRC platform technology, ensuring the platform supports the needs of the QTS GRC program, and adapting the platform to the needs of QTS businesses that use the GRC platform.

Requirements

This role may be based in Overland Park, KS; Suwanee, GA; or Ashburn, VA and requires up to 15% travel to QTS data center locations. The ideal candidate brings deep hands-on experience in security risk and compliance along with demonstrated people leadership., In addition to QTS Core Values, the successful candidate will demonstrate:

· Leadership & People Development - Ability to lead, mentor, and grow a high-performing team through clear direction, accountability, and alignment with business goals.

· Quality Decision Making - Strong analytical skills to evaluate risks, assess control solutions, and synthesize diverse inputs f

Apply for this position