Iron Mountain Logo

Iron Mountain

Senior IT Program Manager

Reposted Yesterday
Be an Early Applicant
Remote
2 Locations
Senior level
Remote
2 Locations
Senior level
Lead IT GRC programs to maintain compliance and certification readiness, coordinate ITGC audit requests and remediation, design and implement risk-mitigating controls (including IAM), define KPIs, and report compliance status while partnering with InfoSec and IT Operations.
The summary above was generated by AI

At Iron Mountain we know that work, when done well, makes a positive impact for our customers, our employees, and our planet. That’s why we need smart, committed people to join us. Whether you’re looking to start your career or make a change, talk to us and see how you can elevate the power of your work at Iron Mountain.

We provide expert, sustainable solutions in records and information management, digital transformation services, data centers, asset lifecycle management, and fine art storage, handling, and logistics. We proudly partner every day with our 225,000 customers around the world to preserve their invaluable artifacts, extract more from their inventory, and protect their data privacy in innovative and socially responsible ways. 

Are you curious about being part of our growth stor​y while evolving your skills in a culture that will welcome your unique contributions? If so, let's start the conversation.

Job Summary:

Iron Mountain is seeking an experienced and motivated Senior IT Project/Program Manager to join our Enterprise IT (EIT) Governance, Risk, and Compliance (GRC) team.

In this remote UK role, you will be responsible for ensuring enterprise-wide adherence and compliance with internal policies, external regulations, and industry-leading frameworks.

You will proactively manage risks, coordinate incoming audit requests for IT General Controls (ITGC), and build critical bridges between IT Operations, Information Security, and our broader business partners.

What You'll Do (Responsibilities):

In this role, you will:

  • Lead GRC Programs & Certifications: Create and manage structured programs designed to maintain EIT environments in constant preparation for successful re-certification and complex compliance inspections.
  • Coordinate Audit Support & Remediation: Collaborate directly with internal and external audit teams to provide proper evidence of control for ITGC (e.g., SOX, SOC 2, FFIEC, Country Regulatory Audits). Coordinate engagement teams to manage the quality and implementation of remediation actions for IT-related findings.
  • Drive Risk Mitigation & Control Implementation: Proactively identify potential risks within the EIT environment using a risk-based approach. Design and implement controls to mitigate risks, such as managing Identity Access Management (IAM) or overseeing the lifecycle management and retirement of non-strategic hardware and software.
  • Optimize Processes & Define Metrics: Create, optimize, and maintain sustainable and repeatable IT governance procedures. Partner across EIT to define Metrics & KPIs that support regular monitoring of IT systems (e.g., vulnerability management and advancing toward CMMI maturity goals).
  • Report & Foster Awareness: Prepare and distribute regular status reports summarizing risk assessments and compliance status for management and stakeholders. Partner with Information Security to deliver educational content that fosters a culture of compliance awareness and accountability.

What You'll Bring (Skills & Qualifications):

The ideal candidate will have:

  • Security Clearance: Must have a current UK Government clearance or the eligibility to successfully pass UK Government Clearance.
  • Education & Certifications: A Bachelor's degree from a four-year college or university. A Project Management Professional (PMP) certification is preferred (but not required). Desired additions include CSM, ACP, 6-SIGMA, PgMP, or ITIL.
  • Methodology Expertise: Strong knowledge and proven execution of project/program management methodologies including PMBOK, PRINCE2, SCRUM, Agile, Hybrid, Waterfall, LEAN, or Kanban.
  • Framework & Standard Expertise: Strong understanding of IT infrastructure, security controls, and management frameworks (e.g., Sarbanes-Oxley (SOX), PCI-DSS, ISO-2700X, NIST, NIST-CSF, COBIT, SANS, ITAF, IIA, CMMI, and SDLC methodologies).
  • Audit & Translation Capability: Exceptional ability to translate ambiguous or complex evidence-of-control requests from external auditors into clear, actionable data and presentation formats that EIT teams can provide.
  • Stakeholder & Communication Skills: Excellent communication, analytical, and interpersonal skills to seamlessly bridge the gap between technical IT operations and non-technical stakeholders, driving consensus in cross-functional environments.

What We Offer (Benefits):

  • Flexible work options: This is a 100% remote position based in the UK
  • Competitive compensation and benefits aligned with experience
  • Comprehensive health, wellness, and retirement plans
  • Robust opportunities for continuous learning, training certifications, and professional growth

#LI-REMOTE

Category: Project/Program Management Group

Similar Jobs

20 Minutes Ago
Easy Apply
Remote or Hybrid
Easy Apply
Mid level
Mid level
Cloud • Information Technology • Security • Software • Cybersecurity
Manage a UK commercial territory to acquire net-new logos and upsell within accounts (750–5,000 employees). Build business cases, generate pipeline, partner with sales engineering, solution architecture, value consulting and channel partners, execute a disciplined sales process, and drive territory revenue growth.
Top Skills: Ai/MlCloud-NativeConversational AiPredictive Pipeline AnalyticsSaaSZero Trust
10 Hours Ago
Remote or Hybrid
United Kingdom
Senior level
Senior level
HR Tech • Information Technology • Professional Services • Sales • Software
Lead UK&I regional marketing programs to drive pipeline and revenue using Account-Based Marketing, field and event marketing, partnership activations, and customer advocacy. Partner with Sales and cross-functional teams to design, execute, measure, and optimize integrated campaigns, manage vendors/partners, and report impact against business objectives.
19 Hours Ago
In-Office or Remote
Bute, Argyll and Bute, Scotland, GBR
Mid level
Mid level
Cloud • Information Technology • Internet of Things • Machine Learning • Software • Cybersecurity • Infrastructure as a Service (IaaS)
Own and maintain assigned Emergency Service Network (ESN) sites, perform corrective and proactive maintenance, lead problem management and service recovery, participate in a 24/7 on-call rota, travel to remote islands for repairs, and collaborate with FSO and Ericsson teams to meet SLAs and improve network resilience.
Top Skills: Ac PowerAntenna SystemsCell PlanningCellular NetworkCore NetworkDc PowerEmergency Service NetworkEsnFeeder SystemsGeneratorsGsmLteMast Head AmplifiersMobility ManagementPower DistributionRadio Access NetworkRectificationRf ReceiverRf TransmissionSatellite BackhaulThree Phase PowerUmtsUps

What you need to know about the Bristol Tech Scene

Along with Gloucester, Swindon and Bath, Bristol is part of the "Silicon Gorge" tech hub, a region in the U.K. renowned for its high-tech and research-driven industries, with a particular emphasis on sustainability and reducing environmental impact. As the European Green Capital, Bristol is home to 25,000 cleantech companies, including Baker Hughes and unicorn Ovo Energy. The city has committed to achieving net-zero emissions within the next decade.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account