Iron Mountain Senior Information Security Analyst in Richmond, Virginia
At Iron Mountain we protect what our customers value most, from the everyday to the extraordinary, while helping them bridge the physical and digital world. Our people have the opportunity to bring their creativity to a workplace that thrives on change. Here, you will be part of a team that doesn’t just embrace what’s exceptional. It creates exceptional.
As a trusted partner to our clients there is a requirement that our Mountaineers must be vaccinated.
The Senior Information Security Analyst is responsible for improving the overall security posture of the organization. S/he will lead governance specific assessments to determine business unit’s adherence to the company’s global InfoSec policies. They will determine if the business unit has appropriate controls in place to address the company’s global policies and work with the business unit representative to develop and track remediation plans as needed. At the conclusion of each assessment, a written report will be produced and presented to senior leadership. In addition to the assessments, s/he will evaluate, test and document security solutions and controls, and work closely with other security/IT team members to remediate risk while ensuring the business agility.
Led InfoSec assessments to determine adherence to global policies and develop remediation plans as needed.
Assist in conducting InfoSec risk assessments on various applications, systems, business units or regions
Led or participate in the evaluation, development and implementation of security standards, procedures and guidelines for multiple platforms and diverse systems environment
Assist in the development, collecting and maintenance of information security related metrics to support the company’s continuous monitoring program
Analyze findings, and document, recommend and report program gaps to security leadership.
Interface with internal and external auditors for risk assessments.
Recommend new security solutions as well as effective improvements to existing security controls that do not negatively impact business innovation.
Executes system vulnerability scanning, remediation process oversight including reporting and governance oversight
Acts as a liaison to the product groups and assists them in the implementation of security technologies and applications security.
5-10 years of experience in information security aspects relating to enterprise IT systems, operating systems, software, communications and network protocols
Bachelor’s degree in Computer Science, Business Information or equivalent is preferred
Current CISSP, CISM or CCSP certification is preferred
Ability to script in python or Perl is a plus
Working knowledge of SQL query language is preferred
Strong working knowledge of Microsoft Excel skills that include writing formula, conditional formatting, charting, pivot tables
Cloud security and/or development background is a plus
Category: Security Group
Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law.
To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement, CLICK HERE