Job Information
Iron Mountain Cloud Security & Governance Lead in Boston, Massachusetts
At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.
We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways.
Are you curious about being part of our growth story while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.
Cloud Security & Governance Lead About the Role
We are seeking an experienced Cloud Security & Governance Lead to drive security, compliance, and automation initiatives across multi-cloud environments (AWS, Azure). The ideal candidate will be responsible for implementing cloud security policies, automating security controls, integrating cloud security APIs, and optimizing governance frameworks. This role will also focus on cost optimization, security monitoring, and compliance reporting while leveraging tools like Terraform, Boto SDK (Python), and Power BI.
Key Responsibilities Cloud Security & Compliance
Design and implement cloud security policies using Terraform for AWS and Azure.
Automate security compliance enforcement (e.g., IAM policies, network security controls).
Establish multi-cloud governance frameworks to meet industry regulations (ISO 27001, NIST, CIS Benchmarks).
Configure cloud-native security tools (AWS Security Hub, Azure Security Center) to monitor risks.
Security Automation & Operations
Develop and maintain cloud security automation scripts using Boto SDK (Python).
Integrate cloud security APIs to streamline security workflows and reporting.
Automate incident detection and response by integrating SIEM and SOAR platforms.
Implement data pipeline automation for security event correlation and threat intelligence.
Threat Monitoring & Risk Management
Set up real-time security alerts based on defined security policies.
Monitor cloud security posture and implement proactive remediation strategies.
Work closely with DevOps, IT, and compliance teams to enforce least privilege access controls.
Governance & Cost Optimization
Ensure security configurations align with cost-efficient cloud usage.
Track and optimize cloud security spend to prevent unnecessary costs.
Build Power BI dashboards to visualize security compliance, cloud threats, and risk metrics.
Required Skills & Qualifications:
12+ years of experience in Cloud Security, Governance, and Compliance.
Strong knowledge of Terraform for policy-based security automation.
Expertise in AWS and Azure security best practices (IAM, encryption, logging, compliance frameworks).
Experience with Boto SDK (Python) for security automation.
Proficiency in cloud security APIs and data pipeline automation.
Familiarity with Power BI for security reporting and dashboards.
Hands-on experience with cloud security tools like AWS Security Hub, GuardDuty, Azure Security Center, or Sentinel.
Strong analytical skills and experience working in cross-functional security teams.
Preferred Qualifications
Security certifications (e.g., CISSP, CISM, AWS Security Specialty, Microsoft Certified: Security Operations Analyst).
Experience with cloud-native SIEM tools (Splunk, Azure Sentinel, or AWS Security Hub).
Knowledge of DevSecOps methodologies and CI/CD security automation.
Category: Information Technology
Iron Mountain is a global leader in storage and information management services trusted by more than 225,000 organizations in 60 countries. We safeguard billions of our customers’ assets, including critical business information, highly sensitive data, and invaluable cultural and historic artifacts. Take a look at our history here.
Iron Mountain helps lower cost and risk, comply with regulations, recover from disaster, and enable digital and sustainable solutions, whether in information management, digital transformation, secure storage and destruction, data center operations, cloud services, or art storage and logistics. Please see our Values and Code of Ethics for a look at our principles and aspirations in elevating the power of our work together.
If you have a physical or mental disability that requires special accommodations, please let us know by sending an email to accommodationrequest@ironmountain.com. See the Supplement to learn more about Equal Employment Opportunity.
Iron Mountain is committed to a policy of equal employment opportunity. We recruit and hire applicants without regard to race, color, religion, sex (including pregnancy), national origin, disability, age, sexual orientation, veteran status, genetic information, gender identity, gender expression, or any other factor prohibited by law.
To view the Equal Employment Opportunity is the Law posters and the supplement, as well as the Pay Transparency Policy Statement, CLICK HERE
Requisition: J0087343