Learn what makes QTS a unique place to grow your career!
The Senior GRC IRM Platform Administrator will lead, plan, and ensure all Information Security Governance, Risk and Compliance system initiatives are sustained, including GRC, Vulnerability Response, Business Continuity and Integrated Risk Management. This role will serve as the key technical resource contributing to the configuration, development, day-to-day support, and maintenance of the ServiceNow implementation supporting the QTS GRC program, including continued system enhancements, and daily operational health check requirements. This role will also be expected to have a deep understanding of the ServiceNow platform and the configurations/system customizations capabilities. The Senior GRC IRM Platform Administrator is responsible for supporting GRC process activities and providing instructions to ensure the activities are properly documented. This role will also follow recognized ITIL best practices and facilitate cross discipline awareness including cross training and engagement in processes, gather service-related data, create dashboards, and participate in performance improvement initiatives.
RESPONSIBILITIES, other duties may be assigned
- Manage the day-to-day operations of the ServiceNow GRC platform, to includes System Configuration and Maintenance; User Support and Training; Data Management and Integration; System Enhancements and Upgrades; and Security and Compliance
- Perform regular maintenance, updates, and participate in upgrades to the Integrated Risk Management application
- Monitor platform performance and ensure optimal functionality
- Plan and assist with configuring and customizing the ServiceNow GRC modules to meet operational business requirements
- Develop and implement workflows, reports, and dashboards to support the QTS GRC program.
- Assist and own integrating ServiceNow GRC/IRM with other systems and tools
- Provide technical support to users, troubleshoot issues, to ensure resolution is achieved
- Conduct training sessions and create user documentation to enhance user proficiency
- Assist users in understanding and utilizing the platform effectively
- Support the development and implementation of the GRC policies, procedures and frameworks
- Collaborate with stakeholders to identify and assess risk, controls, and compliance requirements
- Ensure the platform aligns with industry standards and regulatory requirements
- Identify opportunities for process improvements and automation within the GRC platform
- Remain updated on the latest trends and best practices in GRC and ServiceNow technologies
- Recommend and implement enhancements to improve the platforms efficiency and effectiveness
- Support regular system maintenance tasks, including software updates, patches, and perform tuning
BASIC QUALIFICATIONS
- Bachelor's degree in computer science, Information Technology, or related field
- Minimum 10 years' experience as a ServiceNow Administrator, with at least 4 years focused on GRC and IRM modules
- Proven experience in configuring and customizing GRC software platforms such as, RSA Archer and MetricStream, with focus on ServiceNow GRC/Integrated Risk Management (IRM)
- Deep understanding of information cybersecurity and risk framework standards
- Strong technical skills, including proficiency in database management, SQL queries, and scripting languages
- Knowledge of risks related to IT application development and infrastructure maintenance, IT security, business continuity and disaster recovery, emerging technology platforms (e.g., AI) and cloud services
- Excellent problem-solving abilities, with the capacity to analyze complex issues and implement effective solutions
- Excellent written and oral communication skills with experience writing policy and procedural documentation
- Strong communication and interpersonal skills, with the ability to collaborate with stakeholders at all levels of the organization
- Attention to detail and commitment to maintain the confidentiality and integrity of sensitive information
- Experience with risk management methodologies, reporting tools, along with Microsoft software applications
- Strong understanding of governance regulations, GDPR, PCI-DSS, as well as security frameworks, NIST, ISO, HITRUST, etc.
- Relevant certifications in ServiceNow are a plus: Governance, Risk, and Compliance (GRC), Certified Implementation Specialist (CIS), Certified System Administrator (CSA), Certified Application Developer (CAD), Certified Application Specialist (CAS) and Certified Master Architect (CMS)
PREFERRED QUALIFICATIONS
- Master’s degree in related field
- Knowledge of Managed Services Provider Industry
- Strong understanding of various information and cybersecurity processes
- Working knowledge of various compliance regulations and IT/security frameworks/standards (e.g. PCIDSS, HIPAA, FedRAMP, FFIEC, FINRA, ISO20000, ISO27000, ITILv3, NIST, SAS70).
KNOWLEDGE, SKILLS, AND ABILITIES
- Experienced ServiceNow GRC/Integrated Risk Management Administrator
- Strong knowledge in ServiceNow Security Operations Vulnerability Response, Security Incident Response (SIR), and Business Continuity Management
- Strong understanding of GRC concepts, frameworks, and best practices
- Proficiency in scripting languages such as JavaScript, HTML, CSS, and XML
- Understanding of database queries using object-oriented API (application programming interfaces)
- Excellent problem-solving and analytical skills
- Ability and awareness to work through conflicts successfully and efficiently
- Strong communication and interpersonal skills
- Ability to work independently and as part of a team
- Certifications in ServiceNow Administration and GRC are highly desirable
SKILLS (FROM SKILLS LIBRARY)
- Information Security
- Risk Management
- Analytical problem solving and planning
- Willingness to continually learn
- Attention to detail, to locate important risk and potential threats
We conform to all the laws, statutes, and regulations concerning equal employment opportunities and affirmative action. We strongly encourage women, minorities, individuals with disabilities and veterans to apply to all of our job openings. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, or national origin, age, disability status, Genetic Information & Testing, Family & Medical Leave, protected veteran status, or any other characteristic protected by law. We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer or the government, or against any individuals who assist or participate in the investigation of any complaint or discrimination claim.
The "Know Your Rights" Poster is included here:
Know Your Rights (English)
Know Your Rights (Spanish)
The pay transparency policy is available here:
Pay Transparency Nondiscrimination Poster-Formatted
QTS is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to talentacquisition@qtsdatacenters.com and let us know the nature of your request and your contact information.