Iron Mountain

SVP, Chief Risk Officer

Iron Mountain

full-time

Posted on:

Location Type: Remote

Location: MassachusettsUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $270,500 - $360,700 per year

Job Level

Lead

About the role

  • Identify, assess, prioritize, and mitigate external and internal risks that may impact the organization’s employees, property, information assets, customer trust, and brand.
  • Develop and execute long-term risk strategies that align with our business objectives.
  • Cultivate and lead a company-wide culture of risk awareness, accountability, and commercial growth.
  • Oversee applicable aspects of Third-Party Risk Management (TPRM).
  • Create and manage risk mitigation plans to address identified and anticipated threats.
  • Conduct operational risk assessments and implement tactical mitigation strategies.
  • Lead loss prevention, crisis management, business continuity, and disaster recovery planning.
  • Direct the organization's insurance program and manage all claims processing.
  • Develop and maintain appropriate relationships with public sector organizations responsible for assessing threats that could impact enterprise operations.
  • Serve as key liaison with the Company’s Risk & Safety Committee of the Board of Directors.
  • Develop, implement, and enforce safety policies, procedures, and controls.
  • Champion a strong safety culture throughout the organization.
  • Manage physical security measures to protect company and customer assets.
  • Lead initiatives for workplace violence prevention.
  • Safeguard all physical property, equipment, and on-site data.
  • Provide customer assurance related to physical security.
  • Ensure layered physical security for people, assets, and customer material through the use of facility controls and security technology.
  • Oversee all aspects of information security management.
  • Manage the organization's cyber incident response plan.
  • Direct the Third-Party Risk Management (TPRM) program for all software and technology vendors.
  • Provide information security-related customer assurance.
  • Develop and implement organization-wide cyber awareness and training programs.
  • Serve as key liaison with organizations responsible for oversight of information security compliance.
  • Lead and oversee all incident investigations and analysis.
  • Formulate and recommend corrective actions based on investigation findings.
  • Conduct ongoing monitoring and review of risk areas.
  • Develop and manage the organization's insider threat program.

Requirements

  • Proven experience in a senior risk management role, preferably as a Chief Risk Officer or a similar executive position.
  • Demonstrated ability to develop and implement comprehensive enterprise risk strategies.
  • Strong leadership skills with the ability to influence and collaborate across all levels of the organization.
  • Deep expertise in enterprise risk management, operational risk, and information security.
  • Excellent communication skills with the ability to present complex risk information to the CEO, board members, and other senior stakeholders.
  • Experience with crisis management and business continuity planning.
  • Relevant professional certifications (e.g., CRISC, CISSP, CISA) are a plus.
  • Prior work experience operating in multiple geographies and cultures.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
risk managemententerprise risk strategiesoperational riskinformation securitycrisis managementbusiness continuity planningrisk mitigation planscyber incident responseinsider threat programloss prevention
Soft Skills
leadershipcommunicationcollaborationinfluenceaccountabilityrisk awarenessrelationship managementpresentation skillscultural adaptabilityproblem-solving
Certifications
CRISCCISSPCISA