1

Operational Risk Manager Jobs in Massachusetts (NOW HIRING)

You will help manage risk reviews, operational requests, and cross-functional security compliance workflows. Success in this role requires strong attention to detail, responsiveness and ...

Trading Risk and Operations Manager Reports to: Trading and Contract Management Director Location: Nottingham or Leicester - Fully Office Based Role Working hours: Monday to Friday, 37.5 hours a week ...

... operational risk, or IT risk management Core Skills & Knowledge: * Interest in business continuity and operational resilience practices (BIAs, recovery strategies, dependency mapping, exercises, and ...

... operational risk, or IT risk management Core Skills & Knowledge: * Interest in business continuity and operational resilience practices (BIAs, recovery strategies, dependency mapping, exercises, and ...

... operational risk, or IT risk management Core Skills & Knowledge: * Interest in business continuity and operational resilience practices (BIAs, recovery strategies, dependency mapping, exercises, and ...

next page

Showing results 1-20

Operational Risk Manager information

See Massachusetts salary details

$51.3K

$131.8K

$258.8K

How much do operational risk manager jobs pay per year?

As of Jul 10, 2026, the average yearly pay for operational risk manager in Massachusetts is $131,825.00, according to ZipRecruiter salary data. Most workers in this role earn between $80,300.00 and $173,600.00 per year, depending on experience, location, and employer.

What Does an Operational Risk Manager Do?

An operational risk manager works to identify and limit the risk associated with a company’s operations. As an operational risk manager, your responsibilities involve assessing business operations, identifying issues, and creating reports on your findings. You then help develop policies and implement changes to lessen operational risks. Other duties include continually monitoring the business to find potential new threats and ensuring company compliance with laws and regulations.

What are the 4 pillars of operational risk management?

The four pillars of operational risk management are risk identification, risk assessment, risk mitigation, and risk monitoring. An Operational Risk Manager uses these pillars to develop strategies that minimize potential losses from internal processes, people, systems, or external events, often utilizing tools like risk dashboards and frameworks such as Basel II. Mastery of these pillars is essential for effective risk oversight and compliance.

What does an operational risk manager do?

An operational risk manager identifies, assesses, and monitors risks that could disrupt a company's operations, such as process failures, fraud, or system outages. They develop strategies to mitigate these risks, ensure compliance with regulations, and often use risk management tools and data analysis to support decision-making.

Do risk managers make good money?

Operational Risk Managers typically earn competitive salaries that vary by industry, experience, and location. According to industry data, the median annual salary ranges from $80,000 to over $130,000, with additional compensation such as bonuses and certifications like FRM or ORM enhancing earning potential.

What are some common challenges faced by Operational Risk Managers in maintaining effective risk controls across different departments?

Operational Risk Managers often encounter challenges in ensuring consistent risk controls due to varying processes, priorities, and risk appetites across departments. Communication gaps and resistance to change can make it difficult to implement standardized procedures. Successfully overcoming these challenges involves building strong cross-functional relationships, conducting regular training, and fostering a risk-aware culture to ensure alignment on risk management practices throughout the organization.

What are the three C's of operational risk management?

The three C's of operational risk management are Culture, Controls, and Communication. These elements help organizations identify, assess, and mitigate risks effectively, which is essential for an Operational Risk Manager to ensure operational resilience and compliance. Developing strong controls and fostering a risk-aware culture are key skills in this role.

What are the key skills and qualifications needed to thrive as an Operational Risk Manager, and why are they important?

To thrive as an Operational Risk Manager, you need a solid understanding of risk assessment, regulatory compliance, and internal controls, typically supported by a degree in finance, business, or a related field. Familiarity with risk management frameworks, GRC (governance, risk, and compliance) systems, and certifications such as FRM or ORM are highly valued. Strong analytical thinking, attention to detail, and effective communication skills set top performers apart in this role. These competencies are crucial for identifying, mitigating, and communicating operational risks, ensuring organizational stability and regulatory adherence.

What is the difference between Operational Risk Manager vs Risk Analyst?

AspectOperational Risk ManagerRisk Analyst
CertificationsCFA, FRM, or similarCFA, FRM, or similar
Work EnvironmentFinancial institutions, banks, insurance companiesFinancial firms, consulting, corporate risk teams
ResponsibilitiesIdentify, assess, and mitigate operational risks; develop risk frameworksAnalyze risk data, support risk assessments, prepare reports

The Operational Risk Manager focuses on managing and mitigating operational risks within organizations, often holding certifications like CFA or FRM. In contrast, Risk Analysts primarily analyze risk data and support risk management processes. Both roles are vital in financial sectors and share similar credentials, but the Operational Risk Manager has a broader responsibility for risk mitigation strategies.

What are the most commonly searched types of Operational Risk jobs in Massachusetts? The most popular types of Operational Risk jobs in Massachusetts are:
What are popular job titles related to Operational Risk Manager jobs in Massachusetts? For Operational Risk Manager jobs in Massachusetts, the most frequently searched job titles are:
What job categories do people searching Operational Risk Manager jobs in Massachusetts look for? The top searched job categories for Operational Risk Manager jobs in Massachusetts are:
What cities in Massachusetts are hiring for Operational Risk Manager jobs? Cities in Massachusetts with the most Operational Risk Manager job openings:
GRC Analyst, Operations & Risk

GRC Analyst, Operations & Risk

Whoop

Boston, MA • On-site

Other

This job post has expired today. Applications are no longer accepted.


Job description

As a GRC Analyst, you will support the WHOOP Governance, Risk, and Compliance program. You will help manage risk reviews, operational requests, and cross-functional security compliance workflows. Success in this role requires strong attention to detail, responsiveness and accountability through completion in a fast-paced environment.

A key focus of this role will be helping ensure GRC work is reviewed, prioritized, routed, tracked, and completed effectively. You will use intake and ticketing data to identify workflow trends, recurring questions, handoff gaps, and opportunities to improve guidance, templates, reporting, automation, and stakeholder experience. You will also support broader GRC initiatives, including compliance calendar activities, control monitoring, process documentation, security awareness coordination, and continuous improvement across the GRC program.

RESPONSIBILITIES:
  • Support day-to-day GRC program operations - manage and triage GRC intakes and accurate tracking through resolution

  • Perform and support third-party risk management activities, including vendor reviews, reassessments, partner coordination, remediation tracking, and cross-functional follow-up with Security, Legal, Privacy, Procurement, IT, Finance, and business owners

  • Assist with risk program management activities

  • Support security compliance monitoring and audit readiness activities, managing audit request lists and taking ownership of gathering security audit evidence to verify compliance with internal policies / regulations and industry best practices

  • Coordinate security awareness and training program management activities

QUALIFICATIONS:
  • 2+ years of experience in GRC, third-party risk management, security compliance, internal audit, risk management, or a related function

  • Deep understanding of Cybersecurity compliance frameworks and cybersecurity compliance controls - ISO 27001, NIST CSF, COSO, SOC 2, PDI-DSS

  • Possess a strong risk mindset, exceptional attention to detail, and the ability to apply critical thinking when assessing complex issues and control gaps

  • Highly organized and strong operational discipline ensuring clear and expedient escalations with informed recommendations to management

  • Superior interpersonal and communication skills - verbal and written

  • Being a team player and working to achieve common goal in a dynamic setting

  • Strong commitment to embracing and leveraging AI tools in day-to-day tasks, ensuring AI-assisted work aligns with the same high-quality standards as personal contributions.

  • A minimum bachelor's degree in any discipline. Computer science, cyber security and risk or technology degrees preferred. CISA or CRISC certification preferred

apply for this job

Whoop logo

About Whoop

Sourced by ZipRecruiter

At WHOOP, we're on a mission to unlock human performance. WHOOP empowers users (Olympians, Professional Athletes, Fitness Enthusiasts, etc) to perform at a higher level through a deeper understanding of their bodies and daily lives.

Industry

Fitness and sports centers

Company size

501 - 1,000 Employees

Headquarters location

Boston, MA, US

Year founded

2012