Job Description

Our client's purpose is to provide flexible, efficient and resilient data center solutions to businesses of all sizes. Their small, yet impactful, organization was founded by the pioneer of data center REITs. They have state of the art data center sites under control in two Northern Virginia locations and London, Frankfurt and Paris and anticipate exponential growth over the next several years in the US and abroad. This position is based in their DC headquarters, just a short walk from the Metro Center station. The Audit and Compliance Manager (ACM) is part of the Operations team. The ACM serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of information in compliance with information security policies. The ACM is responsible for maintaining the information security management program, ISO 27001:2013 certification, SSAE 18 attestation, PCI compliance and all related audits. The candidate shall have experience and a thorough understanding of the requirements and structure of ISO 27001:2013, SSAE 18 and PCI as they apply to data center facilities. The ACM manager shall provide leadership and management of audit and compliance requirements at each data center site. This position will also create and administer training for all site personnel. The ACM will be responsible for obtaining the required certifications and attestation as required and working to ensure compliance with such programs. The ideal candidate for this role will have at least five (5) years of experience in an information security role and at least two (2) years in a supervisory capacity. This position will report to the Vice President of Property Operations.

OTHER RESPONSIBILITIES INCLUDE:

• Serve as the Information Security Manager and regularly report to the ISO Steering Committee
• Create and maintain information security policies and procedures
• Assist in selecting and implementing new information security technologies
• Create and provide information security awareness training to organization personnel
• Oversee information security audits, whether performed by organization or third-party personnel
• Communicate information security goals and new programs effectively
• Assess current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvement
• Assist resource owners and staff in understanding and responding to security audit failures reported by auditors or otherwise identified
• Manage policies and procedures to meet ISO, SSAE18 and PCI standards
• Perform reviews of internal and external audits and work with process owners to remediate any non-conformities
• Work with process owners to obtain documentation, understand processes, discuss potential issues/deficiencies/findings

SKILLS AND CERTIFICATIONS REQUIRED:

• Minimum of five (5) years’ experience in an information security role and at least two years in a supervisory capacity
• Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) or other similar Information Security credential related to the audit and/or management of Information Systems Security
• Expertise in popular Microsoft office suite applications (e.g. Excel, Word, Outlook)
• Very strong organizational skills and attention to detail
• Outstanding written and verbal communication skills and command of the English language
• Ability to maintain excellent client and vendor relationships
• Ability and willingness to respond to emails and phone calls after hours in the event of an emergency
• A proven record of providing exceptional internal and external customer service
• Ability to work independently
• Strong understanding and experience working with Business Process Improvement or Continuous improvement models and processes related to the International Standards Organization (ISO)
• Knowledge and understanding of relevant legal and regulatory requirements, including GDPR and other data protection regulations

UNIQUE REQUIREMENTS:

• Travel
• Must carry a cell phone at all times