QTS

Technology Compliance Sr. Analyst

US-KS-Overland Park
Job ID
2017-2004
Category
Corporate Audit

OVERVIEW

The IT world is evolving. New technologies. New trends. New opportunities. There’s true excitement surrounding the future. That’s where QTS comes in. We’re fearlessly leading the way by redefining what it means to be a data center. We innovate next-generation cloud and hybrid solutions. We deliver a fully-integrated I.T. platform from top to bottom – one enabled by technology and world-class infrastructure. Simply put, we’re defining the curve.

 

As one of the nation’s largest and fastest growing data center companies, we help manage and protect critical data during a time of unprecedented change. The power of QTS' innovation happens when smart, creative people with a unified vision collaborate to break new ground, solve new problems, and create new solutions to improve lives.

 

We are powered by our people.

 

At QTS, we know where IT is going. And we’d like to invite you to join us.

 

The Technology Compliance Senior Analyst supports the implementation of and adherence to QTS product and customer specific compliance standards.  Performs training, monitoring, and customer compliance support activities in accordance with QTS Compliance Services vision, strategy, and goals.

 

The Technology Compliance Sr. Analyst is based at QTS’s headquarter in Overland Park, KS, travelling domestically up to 15% to QTS data center locations as required. 

 

http://www.qtsdatacenters.com/company/about-qts/core-values

 

RESPONSIBILITIES, other duties may be assigned

  • Maintenance of QTS enterprise control set
  • Perform controls rationalization as new IT and operational compliance standards are on boarded to simplify the enterprise control set
  • Evaluate and interpret IT and operational compliance standards requirements and provide guidance to process and control owners on the objective and intent of the requirement
  • Engage with process and control owners to understand technical process steps, identify mapping to compliance standards, evaluate gaps, and track execution
  • Drive the creation and maintenance of enterprise security documents (policies, standards, baselines, guidelines and procedures)
  • Complete controls obligations necessary to meet company audit and security program requirements
  • Provide compliance support for penetration testing, vulnerability scanning and other security related audits
  • Prepares and presents status reports, risks, recommendations, and lessons learned to all levels of management
  • Negotiate acceptable timeframes to comply with audit findings by interfacing with auditors, IT management and business personnel
  •  Manage internal and external resources in a variety of scenarios including compliance readiness assessments, controls implementations, and control execution monitoring

BASIC QUALIFICATIONS

 

  • Bachelor's Degree is required
  • Minimum of two years performing information technology audits, compliance, and/or risk assessments

  • Minimum two years IT Audit and advisory services experience with a nationally recognized firm.

  • Minimum one year of experience in governance, risk, and compliance tools.

  • Minimum of two years experience in at least two or more of the following compliance standards:

    HIPAA/HITECH
    HITRUST
    FFIEC
    FISMA
    HIPAA/HITECH
    HITRUST
    ISO 2700 Series
    NERC CIP v5
    NIST 800-53 Rev 4
    PCI DSS v3.1
    SARBOX 404 - Information Technology General Controls
    SOC1
    SOC2

 

PREFERRED

 

  • Pursuit or attainment of Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), GIAC Critical Controls Certification (GCCC), GIAC Security Essentials (GSEC) or other industry relevant security certifications is preferred.
  • Four years performing information technology audits, compliance, and/or risk assessments.

  • Six or more years IT Audit and advisory services experience with a nationally recognized firm.

  • Two or more years experience in governance, risk, and compliance tools.

  • Four or more years experience in at least two or more of the following compliance standards:

HIPAA/HITECH
HITRUST
FFIEC
FISMA
HIPAA/HITECH
HITRUST
ISO 2700 Series
NERC CIP v5
NIST 800-53 Rev 4
PCI DSS v3.1
SARBOX 404 - Information Technology General Controls
SOC1
SOC2

 

KNOWLEDGE, SKILL & ABILITIES

 

  • Client Focused - Great listener and articulate communicator with the ability to interact effectively and efficiently with all levels of the organization. Builds sustaining collaborative and productive relationships with clients.
  • Problem Solving - Systematically reviews and documents business and information technology processes and procedures. Utilizes data to identify problems or opportunities and develop solutions.
  • Priority Setting - Takes ownership of assigned areas, follows up on deliverables, and has propensity for action to meet deadlines.
  • Results Oriented - Sets stretch goals for personal accomplishments and works tenaciously on their achievement. Can be counted on during busy or tough stretches.
  • Personal Learning - Takes ownership and accountability for self-development, is open to feedback, and comfortable providing feedback to others.

 

 

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.