Job Description

Standards, Audits and Certifications

• Planning of internal and external audits across Equinix EMEA data centres for ISO9001, ISO27001, ISO22301, PCI-DSS, ISAE3402 SOC1/SOC2 and any other applicable standards, including coordinating with external/internal partners as required on planning of audits
• Conducting and reporting on Quality, Information Security and Business Continuity internal audits, including raising findings and corrective actions
• Identifying potential risks for non-compliance identified through audits, including communication of such risks to relevant partners and formulating appropriate risk response
• Tracking and monitoring of all audit findings, including reporting of findings status and producing relevant metrics as required
• Participating in external audits to provide subject matter expertise as and when required

Management Systems

• Development and maintenance of a global QISBC management system including related policies, processes, templates and procedures (as owned by Compliance) leading to standardisation, consistency and continual improvement
• Participating in Management Review Meetings (MRM) including collating and finalising MRM content
• Conducting regular reviews of the management systems to ensure documents are up to date, current and reviewed as required in line with business requirements

Reporting

• Producing compliance reports including KPI's and metrics as required and disseminating to relevant partners

Training

• Developing & leading relevant compliance training
• Management and tracking of relevant mandatory compliance training across the EMEA region
• Providing training and inductions for new compliance personnel across the EMEA region

Cross-Functional Support

• Providing support and contributing to customer information requests related to compliance providing 2nd level support for customer audits.
• Providing subject matter expert compliance input for dependent departments/functions demands for compliance and certifications
• Providing QISBC compliance subject matter expert support for Field Operations Compliance including coaching/training
• Acting as the primary subject matter expert resource for Field Operations Compliance and other internal partners compliance queries
• Leading and representing compliance as part of any cross-functional projects

Systems & Applications

• Responsible for ensuring the Equinix Audit Management tool is current and up to date with audits schedules and status along with corrective actions status
• Acting as a System Administrator for the Equinix Audit Management tool, including providing support and training to partners using the system
• Participating in development and improvements of the Equinix Audit Management tool
• Managing and updating compliance related content on SharePoint and other business applications

Requirements

• Qualified Lead Auditor/Implementer for ISO27001 and/or ISO22301, or proven experience in internal auditing
• Qualified/experienced in Information Security and Business Continuity Management
• Excellent communication and interpersonal skills and able to work with cultural diversity
• Highly proficient in Microsoft Office applications: Word, Excel, PowerPoint, SharePoint
• Must be able to travel regularly

Desireable

• Conversant in French and/or German
• Experience/knowledge of ISO9001, PCI-DSS, ISAE3402
• Experience of risk assessment methodology and risk management
• Experience in the data centre or related industry

Required Knowledge, Skills, and Abilities

• Qualified Lead Auditor/Implementer for ISO27001 and/or ISO22301, or proven experience in internal auditing • Qualified/experienced in Information Security and Business Continuity Management • Excellent communication and interpersonal skills and able to work with cultural diversity • Highly proficient in Microsoft Office applications: Word, Excel, PowerPoint, SharePoint • Must be able to travel regularly • Conversant in French and/or German • Experience/knowledge of ISO9001, PCI-DSS, ISAE3402 • Experience of risk assessment methodology and risk management • Experience in the data centre or related industry