Senior Analyst, Information Security & IT Vendor Risk Management jobs in United States
info-icon
This job has closed.
company-logo

QTS Data Centers · 1 month ago

Senior Analyst, Information Security & IT Vendor Risk Management

positionOverland Park, KS
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

QTS Data Centers is a global digital infrastructure leader committed to connecting the world for good. The Senior Analyst in Information Security & IT Vendor Risk Management will provide expertise in third-party security risk oversight and ensure compliance across the vendor ecosystem.

Cloud ComputingCloud InfrastructureData CenterWeb Hosting

Responsibilities

Own and administer the TPRM/Vendor Risk Management (VRM) platform used for vendor onboarding, due diligence, periodic assessments, issue management, ongoing monitoring, and off-boarding
Lead security-focused risk assessments of IT and cloud vendors, analyzing controls for infrastructure, applications, privacy, and business continuity
Support third-party incidents and breach remediation by coordinating with vendors and internal stakeholders to identify & validate impact, document response, and track corrective actions
Monitor vendor performance and control effectiveness against recognized security frameworks (NIST, ISO 27001, SOC 2, HITRUST, CMMC, PCI DSS) and regulatory requirements (GDPR, HIPAA, etc.)
Create and maintain the risk register, maintain the vendor inventory and issue tracking with accurate, up-to-date information within the VRM platform
Provide executive reporting on vendor risk posture, program metrics, incident & remediation status
Partner with stakeholders to update standards, procedures, and controls, maturing the TPRM program to meet evolving cyber and regulatory requirements
Liaise with internal and external auditors to manage IT security and compliance reviews tied to vendor controls
Deliver training and awareness to stakeholders to strengthen risk management culture across business functions
Stay updated on the latest security trends and threat intelligence

Qualification

IT security risk managementVendor risk managementSecurity frameworksIncident responseVendor management experienceRisk assessmentsAnalytical skillsRelationship managementMicrosoft OfficeCommunication skillsOrganizational skills

Required

Bachelor's degree required
Minimum of 5 years of experience in IT security risk management, third-party/vendor risk management, or related fields
Previous vendor management experience required
Understanding of security risks across IT operations, including application development, cloud infrastructure, and disaster recovery
Proficient in applying security and compliance frameworks such as NIST, ISO 27001, SOC 2, PCI DSS, HITRUST, GDPR, CMMC, and HIPAA
Experience managing or administering vendor risk management (VRM/TPRM) or governance, risk, and compliance (GRC) platforms
Skilled in evaluating SOC 2 reports, penetration test results, security questionnaires, and vendor security documentation
Proven ability to assess risk and identify vulnerabilities through detailed risk reviews
Demonstrated experience supporting third-party cyber incidents and breach response efforts
Strong analytical and problem-solving skills with a focus on identifying security gaps and remediating vendor risks
Highly organized, detail-oriented, and capable of managing multiple vendor reviews simultaneously
Excellent written and verbal communication skills with ability to present technical risks in business terms
Strong relationship management skills and ability to influence stakeholders across procurement, IT, security, and business functions
Adaptable and agile, with the ability to respond quickly to new security threats, incidents, and regulatory changes
High degree of confidentiality, integrity, and accountability
Proficient in Microsoft Office tools

Preferred

Experience with vendor risk management platforms/GRC systems preferred

Benefits

Employer Paid Benefits
401K with Employer Match
QRest Sabbatical
Employee Stock Purchase
QTS scholarship for dependents
Eagle Club award trip eligibility
Paid volunteer days
Tuition assistance, parental leave and military leave assistance
Medical, dental, vision, life, and disability insurance
401(k) retirement plan
Flexible spending and HSA accounts
Paid holidays
Paid time off
Paid volunteer days
Employee assistance program
Tuition assistance
Parental leave
Military leave assistance
QTS scholarship for dependents
Wellness program
Other company benefits

Company

QTS Data Centers

twittertwittertwitter
Glassdoor4.1
company-logo
QTS is the digital infrastructure leader – Powered by People, driven by purpose and fueled by a spirit of innovation.
dateFounded in 2005
location
Overland Park, Kansas, USA
people-size1001-5000 employees
web-link
http://www.qtsdatacenters.com

Funding

Current Stage
Public Company
Total Funding
$2.74B
Key Investors
General Atlantic
2025-08-13Debt Financing· $1.65B
2021-06-07Acquired
2020-09-23Post Ipo Debt· $500M

Leadership Team

leader-logo
Brent Bensten
CTO
linkedin
J
Jon Greaves
Executive Vice President - Quality Special Operations
linkedin

Recent News

EIN Presswire
The Top Colocation Services According to the FeaturedCustomers Winter 2026 Customer Success Report Rankings
2026-01-14
GlobeNewswire
Data Diode Solution Market Size Worth USD 1,846.90 Million by 2034
2025-12-15
Business Wire
Alliant Energy Announces Third Quarter 2025 Results and 2026 Guidance
2025-11-08
Company data provided by crunchbase