USA Remote Jobs

SVP, Chief Risk Officer

  1. Home
  2. Remote jobs
  3. Business
  • Company 10100 Iron Mountain Information Management, LLC
  • Employment Full-time
  • Location 🇺🇸 United States, Massachusetts
  • Submitted Posted 1 week ago - Updated 6 days ago
Apply for this position

At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.

We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways. 

Are you curious about being part of our growth stor​y while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.

#donotpost

The Chief Risk Officer (CRO) will lead all aspects of Iron Mountain’s comprehensive global risk management program. Reporting to the EVP, General Counsel and Secretary of Iron Mountain, the CRO will be an experienced, strategic leader, responsible for ensuring a holistic approach to risk management across all businesses and functions. The CRO will develop and implement a long-term risk strategy, foster a culture that is both risk-aware and growth-oriented, and ensure the organization's resilience against various threats.

Key Responsibilities

Enterprise Risk Management

  • Identify, assess, prioritize, and mitigate external and internal risks that may impact the organization’s employees, property, information assets, customer trust, and brand.

  • Develop and execute long-term risk strategies that align with our business objectives.

  • Cultivate and lead a company-wide culture of risk awareness, accountability, and commercial growth.

  • Oversee applicable aspects of Third-Party Risk Management (TPRM).

  • Create and manage risk mitigation plans to address identified and anticipated threats.

  • Conduct operational risk assessments and implement tactical mitigation strategies.

  • Lead loss prevention, crisis management, business continuity, and disaster recovery planning.

  • Direct the organization's insurance program and manage all claims processing.

  • Develop and maintain appropriate relationships with public sector organizations responsible for assessing threats that could impact enterprise operations.

  • Serve as key liaison twiththe Company’s Risk & Safety Committee of the Board of Directors.

Physical Security & Safety

  • Develop, implement, and enforce safety policies, procedures, and controls.

  • Champion a strong safety culture throughout the organization.

  • Manage physical security measures to protect company and customer assets.

  • Lead initiatives for workplace violence prevention.

  • Safeguard all physical property, equipment, and on-site data.

  • Provide customer assurance related to physical security.

  • Ensures layered physical security for people, assets, and customer material through the use of facility controls and security technology. 

Information Security

  • Oversee all aspects of information security management.

  • Manage the organization's cyber incident response plan.

  • Direct the Third-Party Risk Management (TPRM) program for all software and technology vendors.

  • Provide information security-related customer assurance.

  • Develop and implement organization-wide cyber awareness and training programs.

  • Serve as key liaison with organizations responsible for oversight of information security compliance, e.g., FFIEC.

Investigations

  • Lead and oversee all incident investigations and analysis.

  • Formulate and recommend corrective actions based on investigation finding.

  • Conduct ongoing monitoring and review of risk areas.

  • Develop and manage the organization's insider threat program.

Qualifications

  • Proven experience in a senior risk management role, preferably as a Chief Risk Officer or a similar executive position.

  • Demonstrated ability to develop and implement comprehensive enterprise risk strategies.

  • Strong leadership skills with the ability to influence and collaborate across all levels of the organization.

  • Deep expertise in enterprise risk management, operational risk, and information security.

  • Excellent communication skills with the ability to present complex risk information to the CEO, board members, and other senior stakeholders.

  • Experience with crisis management and business continuity planning.

  • Relevant professional certifications (e.g., CRISC, CISSP, CISA) are a plus.

  • Prior work experience operating in multiple geographies and cultures.

Reasonably expected salary range: $270,500.00 - $360,700.00Category: Risk Management

Loading similar jobs...

USA Remote Jobs

Discover fully remote job opportunities in the United States at USA Remote Jobs. Apply for roles like Software Developer, Customer Service Specialist, Project Manager, and more!

© 2026 Created by USA Remote Jobs. All rights reserved.