Senior Information Security Engineer
Iron Mountain
At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.
We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways.
Are you curious about being part of our growth story while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.
Senior Information Security Engineer
The Opportunity: We are seeking a skilled and experienced System Administrator to manage our instance of Archer GRC. This critical role will be responsible for the day-to-day operation, strategic development, and continuous improvement of our Archer platform. The successful candidate will not only possess deep technical expertise in Archer but also demonstrate leadership capabilities, overseeing a small team of infrastructure engineers. This is an exciting opportunity to play a pivotal role in strengthening our organization's governance, risk, and compliance posture.
Key Responsibilities:
Archer Platform Management: Administer, maintain, and ensure the optimal performance and availability of the Archer GRC platform, including system upgrades, patches, backups, and disaster recovery planning.
Capability Development & Deployment: Partner with business stakeholders to understand GRC requirements and translate them into effective Archer solutions. Design, develop, test, and deploy new applications, modules, workflows, and dashboards within the Archer platform.
Functionality Adjustment: Proactively identify opportunities to optimize Archer functionality. Adjust existing configurations, rules, and reports to align with evolving business needs and regulatory changes.
API Integration: Leverage Archer's API to integrate with other business systems, facilitating data exchange and automation of GRC processes. Develop and maintain API integrations to support data synchronization and reporting.
Security Standards Adherence: Ensure the Archer platform adheres to established security standards and best practices. Implement and enforce access controls, data encryption, and other security measures to protect sensitive GRC data.
Compliance Assessment Support: Provide support during compliance assessments (e.g., SOX, GDPR, HIPAA, NIST). Configure Archer to facilitate evidence collection, control testing, and reporting for audit readiness.
Team Leadership & Mentorship: Lead and mentor a small team of infrastructure engineers, providing guidance on best practices, project execution, and professional development related to GRC systems and infrastructure.
Troubleshooting & Support: Provide expert-level troubleshooting and support for Archer-related issues, working closely with users to resolve problems efficiently.
Documentation: Maintain comprehensive documentation for Archer configurations, integrations, processes, and user guides.
Vendor Management: Liaise with RSA Archer support and other vendors as needed for technical issues, licensing, and strategic platform enhancements.
Required Qualifications:
Bachelor's degree in Information Technology, Computer Science, or a related field; equivalent practical experience will be considered.
5+ years of experience in system administration, with a minimum of 3 years dedicated to managing and developing within the Archer GRC platform.
Proven experience in designing, configuring, and deploying Archer applications, questionnaires, workflows, calculations, and reporting.
Strong understanding and practical experience with Archer's API for data integration.
In-depth knowledge of security standards (e.g., ISO 27001, NIST, CIS Controls) and their application within an enterprise environment.
Demonstrated experience participating in and supporting compliance assessments and audits.
Proven ability to lead and mentor a small technical team.
Excellent problem-solving, analytical, and communication skills.
Ability to work independently and collaboratively in a fast-paced environment.
Preferred Qualifications:
Archer Expert or Specialist Administrator certification.
Experience with scripting languages (e.g., PowerShell, Python) for automation.
Familiarity with database management.
Experience with cloud platforms.