Compliance Audit Program Manager

Who We Are:

It's pretty exciting, to find yourself standing in a pivotal moment in time. It’s even more exciting to be out front leading it. At QTS, our world-class data centers are supporting our customers most strategic growth initiatives, positioning us at the forefront of today’s dynamic digital transformation.

As AI and cloud drive the demand for increased speed, capacity and capability, QTS has emerged as the global digital infrastructure leader, committed to connecting the world for good. Driven by purpose and fueled by a spirit of innovation, QTS designs, builds and operates some of the world’s most advanced, forward-thinking data centers. QTS is a portfolio company of Blackstone. 

QTS is Powered by People. People who play a vital role in our company’s culture, innovation and growth. People who are committed to contributing to the communities where we operate and work. People who are knowledgeable, resourceful and mission driven. Together, we do great things!!

Who You Are:

The Manager, Compliance Audits reports directly to the Director, Technology and Compliance Audits and plays an integral role on the QTS Audit Services team by overseeing the annual cycle of compliance audits. The position is based in Overland Park, KS and travels to QTS data center locations as required to deliver and continually improve an existing compliance audit program which covers standards such as SSAE 18 (SOC1 and SOC2 reports), ISO27001, ISO22301, HITRUST, PCI DSS, SOX IT General Controls (ITGCs), and others. Responsibilities include third-party contracting (reviewing statements of work, managing purchase requisitions, etc.), oversight and coordination of external audit firm(s), project management, documentation request administration, controls testing and review, communication and status reporting, issue vetting, report/deliverable review, and others as needed. In this role, you will have high visibility to business leaders across the company as you partner with them to understand current and changing processes/controls, advise on compliance audit program updates (new standards, scope changes, improvement opportunities, etc.), and ensure compliance audit reports are delivered on time to our customers.

What You Will Do:

• Manage and complete the scoping, planning, testing and reporting phases of the annual compliance audit program under the direction of Audit Services department leadership, while liaising with external audit firm(s) to deliver quality results on time and within budget.
• Review the work of team members, offer suggestions for improvement, and provide them on-the-job coaching.
• Monitor the status of new data center builds, lead compliance readiness sessions for new sites, and collaborate with external audit firm(s) to include new data centers into the audit scope.
• Develop and sustain strong relationships with stakeholders at all levels throughout the company to identify, understand and maintain awareness of key business risks, process changes, and related mitigating controls.
• Prepare and participate in interviews of process owners and stakeholders.
• Review and/or perform testing to evaluate the effectiveness of key controls, summarize test results, and develop practical recommendations for any audit findings.
• Monitor the completion of corrective action plans and verify whether they adequately address the related audit finding.
• Foster continuous improvement by challenging existing processes, strengthening controls, and identifying efficiencies in the compliance audit program.
• Participate in the IT Risk Assessment activities and development of the annual IT audit plan.
• Assist other Audit Services team members with other audits or related activities as needed.

What You Will Need to Be Successful:

• Bachelor’s degree, preferably in Management Information Systems, Cybersecurity, Business, Finance or Accounting
• Five or more years of performing or overseeing compliance audits, preferably within a capital-intensive and/or technology industry
• Two or more years of relevant experience specific to Compliance Frameworks, including one or more of the following: SOC1 and SOC2, ISO27001, ISO22301, HITRUST, PCI DSS, NIST (800 series, CSF), and SOX ITGCs
• One or more professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), or similar certifications

Knowledge, Skills & Abilities:

• Knowledge of common industry Governance, Risk, and Compliance (GRC) platforms and tools
• Exposure to implementing new compliance standards and/or performing gap assessments for new versions of compliance standards
• Experience with identifying the differences and similarities between various compliance frameworks/standards, and leveraging a unified control set to meet those compliance obligations efficiently and effectively
• Understanding of general internal audit standards and IT audit practices
• Experience managing audit or compliance teams with direct reports
• Adept at managing multiple large, multifaceted, simultaneous engagements with staggered deliverables and diverse stakeholder groups
• Ability to adapt and react effectively to ambiguous, changing and/or difficult situations
• Initiative to take ownership of assigned areas and work with limited supervision
• Ability to manage workloads, prioritize tasks and demonstrate a propensity for action to meet the requirements and deadlines of the position
• Computer skills (including word processing, spreadsheets, flowcharting and presentation tools) to perform and monitor assigned projects
• Analytical skills (qualitative and quantitative), and familiarity with data mining and analysis tools/procedures, to analyze complex data/information and process it into meaningful conclusions
• Active listening skills to accurately receive, interpret, confirm and respond to information received from others
• Oral and written communication skills, and an ability to articulate information in a clear and concise manner
• Interpersonal skills to build sustaining collaborative and productive relationships with internal and external clients
• Influencing skills to effectively resolve conflict by building well-reasoned arguments that persuade others to support potential improvement opportunities
• Organizational skills, problem solving capabilities and an acute attention to detail when performing assigned projects and documenting work papers

TOTAL REWARDS

• This role is also eligible for a competitive benefits package that includes: medical, dental, vision, life, and disability insurance; 401(k) retirement plan; flexible spending and HSA accounts; paid holidays; paid time off; paid volunteer days; employee assistance program; tuition assistance; parental leave; military leave assistance; QTS scholarship for dependents; wellness program, and other company benefits.

• This position is Bonus eligible.

#DI-TS1

We conform to all the laws, statutes, and regulations concerning equal employment opportunities and affirmative action.  We strongly encourage women, minorities, individuals with disabilities and veterans to apply to all of our job openings.  We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, or national origin, age, disability status, Genetic Information & Testing, Family & Medical Leave, protected veteran status, or any other characteristic protected by law.  We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer or the government, or against any individuals who assist or participate in the investigation of any complaint or discrimination claim.

The "Know Your Rights" Poster is included here:

Know Your Rights (English)

Know Your Rights (Spanish)

The pay transparency policy is available here:

Pay Transparency Nondiscrimination Poster-Formatted

QTS is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to talentacquisition@qtsdatacenters.com and let us know the nature of your request and your contact information.