Apply on Employer Site

QTS Data Centers · 1 month ago

Manager, Compliance Audit

Overland Park, KS

Full-time

Onsite

Mid, Senior Level

5+ years exp

QTS Data Centers is a global digital infrastructure leader specializing in advanced data center solutions. The Manager, Compliance Audits plays a critical role in overseeing the compliance audit program, collaborating with various stakeholders to ensure adherence to standards and effective risk management.

Cloud ComputingCloud InfrastructureData CenterWeb Hosting

Responsibilities

Manage and complete the scoping, planning, testing and reporting phases of the annual compliance audit program under the direction of Audit Services department leadership, while liaising with external audit firm(s) to deliver quality results on time and within budget

Review the work of team members, offer suggestions for improvement, and provide them on-the-job coaching

Monitor the status of new data center builds, lead compliance readiness sessions for new sites, and collaborate with external audit firm(s) to include new data centers into the audit scope

Develop and sustain strong relationships with stakeholders at all levels throughout the company to identify, understand and maintain awareness of key business risks, process changes, and related mitigating controls

Prepare and participate in interviews of process owners and stakeholders

Review and/or perform testing to evaluate the effectiveness of key controls, summarize test results, and develop practical recommendations for any audit findings

Monitor the completion of corrective action plans and verify whether they adequately address the related audit finding

Foster continuous improvement by challenging existing processes, strengthening controls, and identifying efficiencies in the compliance audit program

Participate in the IT Risk Assessment activities and development of the annual IT audit plan

Assist other Audit Services team members with other audits or related activities as needed

Qualification

Compliance AuditsCompliance FrameworksProfessional CertificationsGovernanceRiskComplianceAnalytical SkillsOralProject ManagementInterpersonal SkillsWritten CommunicationOrganizational Skills

Required

Bachelor's degree, preferably in Management Information Systems, Cybersecurity, Business, Finance or Accounting

Five or more years of performing or overseeing compliance audits, preferably within a capital-intensive and/or technology industry

Two or more years of relevant experience specific to Compliance Frameworks, including one or more of the following: SOC1 and SOC2, ISO27001, ISO22301, HITRUST, PCI DSS, NIST (800 series, CSF), and SOX ITGCs

One or more professional certifications such as Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), or similar certifications

Knowledge of common industry Governance, Risk, and Compliance (GRC) platforms and tools

Exposure to implementing new compliance standards and/or performing gap assessments for new versions of compliance standards

Experience with identifying the differences and similarities between various compliance frameworks/standards, and leveraging a unified control set to meet those compliance obligations efficiently and effectively

Understanding of general internal audit standards and IT audit practices

Experience managing audit or compliance teams with direct reports

Adept at managing multiple large, multifaceted, simultaneous engagements with staggered deliverables and diverse stakeholder groups

Ability to adapt and react effectively to ambiguous, changing and/or difficult situations

Initiative to take ownership of assigned areas and work with limited supervision

Ability to manage workloads, prioritize tasks and demonstrate a propensity for action to meet the requirements and deadlines of the position

Computer skills (including word processing, spreadsheets, flowcharting and presentation tools) to perform and monitor assigned projects

Analytical skills (qualitative and quantitative), and familiarity with data mining and analysis tools/procedures, to analyze complex data/information and process it into meaningful conclusions

Active listening skills to accurately receive, interpret, confirm and respond to information received from others

Oral and written communication skills, and an ability to articulate information in a clear and concise manner

Interpersonal skills to build sustaining collaborative and productive relationships with internal and external clients

Influencing skills to effectively resolve conflict by building well-reasoned arguments that persuade others to support potential improvement opportunities

Organizational skills, problem solving capabilities and an acute attention to detail when performing assigned projects and documenting work papers