Intern Technology Risk Management Jobs in Massachusetts

At BBH, Partnership is more than a form of ownership-it's our approach to business and relationships. We know that supporting your professional and personal goals is the best way to help our clients and advance our business. We take that responsibility seriously. With a 200-year legacy and a shared passion for what's next, this is the right place to build a fulfilling career.
Enterprise Risk Management is hiring a Head of Cyber & Technology Risk to assist in strengthening the technology risk and control environment that protects the firm's systems, data, and operations. In this role, you'll partner closely with Technology Leadership and key second-line stakeholders to identify, assess, and monitor risk; enact pragmatic control improvements; and provide clear, actionable guidance that enables secure delivery. You'll bring strong judgment, executive-ready communication, and the ability to translate complex technical risks into focused priorities and outcomes.
What you'll do
Strategic leadership & executive advisory

• Serve as a senior advisor to Technology leaders on cyber and technology risk across known issues, evolving threats, and emerging technologies.
• Influence enterprise strategy and provide credible challenge to senior stakeholders to ensure risk remains within the firm's risk appetite.
• Anticipate regulatory and industry expectations; translate them into forward-looking guidance that shapes program roadmaps.
• Represent Cyber & Technology Risk on firm-wide committees, working groups, and-when needed-client and external partner discussions.
• Own and continuously enhance the cyber and technology risk program, including policies, standards, and independent control assessments.
• Escalate material risks, high-severity issues, and emerging trends to Technology leadership and relevant governance forums.
• Oversee corrective action plans and validate closure; analyze themes and root causes across audit and regulatory findings and operational risk events.
• Lead risk reviews for new products, services, and material changes; partner with Legal, Compliance, and Risk teams to align decisions to risk tolerance.
• Coordinate external assurance activities (e.g., SOC 2), including evidence management, walkthroughs, and timely responses to requests.
• Partner with Internal Audit, Compliance, and Legal to continuously strengthen the firm's risk and control infrastructure.

Policies, standards & enablement

• Maintain and enhance technology risk policies and standards, translating regulatory expectations into practical, implementable requirements.
• Contribute to AI governance and oversight by supporting control design, risk assessments, and adoption of firmwide guardrails.
• Design and deliver risk and control training that improves awareness, ownership, and day-to-day execution across Technology.
• Partner with Information Security to refresh security awareness content and embed coverage of emerging risks (e.g., phishing, third-party, cloud, and AI).

Leadership, talent & engagement

• Build trust-based relationships across Technology to ensure early engagement on strategy, roadmaps, major initiatives, and ongoing activities.
• Set priorities and an operating rhythm for the Cyber & Technology Risk team to deliver high-quality outcomes efficiently and consistently.
• Develop talent with strong business acumen and the ability to engage credibly with senior stakeholders.
• Hire, coach, and manage performance to build and retain a high-performing team.
• Foster a culture of intellectual curiosity, constructive challenge, and continuous improvement.

What you bring

• 15+ years of experience in technology risk management, technology audit, controls, or a related discipline within financial services or another highly regulated environment.
• Bachelor's degree required; advanced degree preferred. Certifications such as CISSP, CISM and/or CRISC are a plus.
• A proven, senior-level risk leader with the credibility to advise-and appropriately challenge-Technology executives.
• Demonstrated ability to influence at the enterprise level and shape strategy through clear, data-informed risk perspectives.
• A track record of building and leading high-performing teams and developing future leaders.
• Deep knowledge of risk management concepts, frameworks, and assessment methodologies.
• Strong technical fluency across IAM, network and endpoint controls, data platforms, legacy environments, cloud, and AI-enabled capabilities.
• Demonstrated information security experience and a working understanding of the cyber threat landscape.
• Strong understanding of IT regulatory expectations and compliance requirements.
• Ability to balance business priorities with risk considerations and communicate tradeoffs clearly to senior management.
• Excellent relationship management and executive communication skills; able to simplify complex topics without losing rigor.
• Experience coordinating cross-location initiatives and aligning stakeholders across functions and geographies.

Salary Range
NJ & MA: $170,000 - $230,000 base salary + annual target bonus
BBH and its affiliates' compensation program includes base salary, discretionary bonuses, and profit-sharing. The anticipated base salary range(s) shown above are only for the indicated location(s) and may differ in other locations due to cost of living and labor considerations. Base salaries may vary based on factors such as skill, experience and qualification for the role. BBH's total rewards package recognizes your contributions with more than just a paycheck-providing you with benefits that enhance your experience at BBH from long-term savings, healthcare, and income protection to professional development opportunities and time off, our programs support your overall well-being.
We value diverse experiences. We value diverse experiences and transferrable skillsets. If your career hasn't followed a traditional path, includes alternative experiences, or doesn't meet every qualification or skill listed in the job description, please do go ahead and apply.
About BBH:
Brown Brothers Harriman (BBH) is a premier global financial services firm, known for premium service, specialist expertise, technology solutions and partnership approach to client management. Across Investor Services and Capital Partners, we work with an enviable roster of sophisticated clients who make BBH their first call when they are tackling their hardest challenges. Delivering for our clients and each other energizes us.
We believe that how we do our work is just as important as what we do. We are relentless problem solvers who know our best ideas come from collective debate and development-so we are never possessive about our ideas. Every day we come together as a diverse community of smart and caring people to deliver exceptional service and expert advice-creating success that lasts. No matter where you sit in the organization, everyone is empowered to contribute their ideas. BBHers can pick up the phone and call any colleague, and they are happy to help. Expanding your impact beyond your daily role is part of how we operate as trusted partners to one another.
We believe stability is a competitive advantage, but being stable means having the knowledge, skill, and discipline to evolve, often-pushing the boundaries of innovation. As a private partnership, every investment we make is in the relationships, technologies, products and development we believe are in the long-term interests of our clients and our people. Our long-tenured leaders are experts in their areas and are actively involved in the day-to day business, taking the time to provide guidance and mentoring to build the next generation of BBHers. Because we know, our success begins with yours.
Go to BBH.com to learn more about our rewards and benefits, philanthropy, approach to sustainability or how we support you to thrive personally, physically and financially.
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, genetic information, creed, marital status, sexual orientation, gender identity, disability status, protected veteran status, or any other protected status under federal, state or local law.