Senior Risk & Compliance Analyst
$130K - $170K/yr
RESPONSIBILITIES: * Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control ...
$130K - $170K/yr
RESPONSIBILITIES: * Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control ...
$130K - $170K/yr
RESPONSIBILITIES: * Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control ...
Boston, MA · On-site
$130K - $170K/yr
RESPONSIBILITIES: * Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control ...
Quick apply
Boston, MA · On-site
$130K - $170K/yr
RESPONSIBILITIES: * Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control ...
Your secondary responsibility within the Technology Risk Group, will be to assist the Vendor Risk Manager in supporting the Third Party Risk Assessment process. In this role, you will review the ...
Your secondary responsibility within the Technology Risk Group, will be to assist the Vendor Risk Manager in supporting the Third Party Risk Assessment process. In this role, you will review the ...
$135K - $195K/yr
This role sits within Cybersecurity / Technology Risk and serves as a key leader in shaping the firm's IAM control environment, ensuring alignment with regulatory expectations, industry frameworks ...
$135K - $195K/yr
This role sits within Cybersecurity / Technology Risk and serves as a key leader in shaping the firm's IAM control environment, ensuring alignment with regulatory expectations, industry frameworks ...
This position requires presenting RSM's full suite of cyber, risk, compliance, privacy, resilience, and technology risk solutions to senior leadership, coordinating specialized expertise across ...
This position requires presenting RSM's full suite of cyber, risk, compliance, privacy, resilience, and technology risk solutions to senior leadership, coordinating specialized expertise across ...
Boston, MA · Hybrid
$102K - $134K/yr
This position is ideal for someone coming from IT audit, technology risk, risk advisory, or internal audit who enjoys working at the intersection of systems, controls, cybersecurity, and business ...
Quick apply
Boston, MA · Hybrid
$102K - $134K/yr
This position is ideal for someone coming from IT audit, technology risk, risk advisory, or internal audit who enjoys working at the intersection of systems, controls, cybersecurity, and business ...
This role involves overseeing technology risk management, third-party risk, and developing risk intelligence capabilities. Responsibilities : • Lead the transition of risk management from a cyber ...
This role involves overseeing technology risk management, third-party risk, and developing risk intelligence capabilities. Responsibilities : • Lead the transition of risk management from a cyber ...
Tewksbury, MA · On-site
$97K - $133K/yr
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Senior Consultant ! Our Risk Advisory practice provides a full spectrum of services to help our clients assess their ...
Tewksbury, MA · On-site
$97K - $133K/yr
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Senior Consultant ! Our Risk Advisory practice provides a full spectrum of services to help our clients assess their ...
Springfield, MA · On-site
$86K - $113K/yr
As a key member of the ETX Third-Party Technology Assurance team, you will help drive change and enhance operational efficiency throughout the organization. The Team The ETX Governance, Risk ...
Springfield, MA · On-site
$86K - $113K/yr
As a key member of the ETX Third-Party Technology Assurance team, you will help drive change and enhance operational efficiency throughout the organization. The Team The ETX Governance, Risk ...
As a key member of the ETX Third-Party Technology Assurance team, you will help drive change and enhance operational efficiency throughout the organization. The Team The ETX Governance, Risk ...
New
As a key member of the ETX Third-Party Technology Assurance team, you will help drive change and enhance operational efficiency throughout the organization. The Team The ETX Governance, Risk ...
New
As a key member of the ETX Third-Party Technology Assurance team, you will help drive change and enhance operational efficiency throughout the organization. The Team The ETX Governance, Risk ...
New
As a key member of the ETX Third-Party Technology Assurance team, you will help drive change and enhance operational efficiency throughout the organization. The Team The ETX Governance, Risk ...
New
$130K - $175K/yr
This role will strengthen the company's control environment, reduce compliance and operational risk, and ensure timely execution of remediation efforts while enabling strategic technology investments ...
$130K - $175K/yr
This role will strengthen the company's control environment, reduce compliance and operational risk, and ensure timely execution of remediation efforts while enabling strategic technology investments ...
Waltham, MA · On-site
$130K - $175K/yr
This role will strengthen the company's control environment, reduce compliance and operational risk, and ensure timely execution of remediation efforts while enabling strategic technology investments ...
Waltham, MA · On-site
$130K - $175K/yr
This role will strengthen the company's control environment, reduce compliance and operational risk, and ensure timely execution of remediation efforts while enabling strategic technology investments ...
Boston, MA · On-site
The ideal candidate will have a strong understanding of technology risk, cybersecurity, compliance, and operational risk, along with experience in fraud mitigation strategies, and will partner ...
Boston, MA · On-site
The ideal candidate will have a strong understanding of technology risk, cybersecurity, compliance, and operational risk, along with experience in fraud mitigation strategies, and will partner ...
The ideal candidate will have a strong understanding of technology risk, cybersecurity, compliance, and operational risk, along with experience in fraud mitigation strategies, and will partner ...
The ideal candidate will have a strong understanding of technology risk, cybersecurity, compliance, and operational risk, along with experience in fraud mitigation strategies, and will partner ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
Tewksbury, MA · On-site
$201K - $382K/yr
The firm operates as a network of independent CPA and advisory practices, delivering services in risk, compliance, internal audit, and technology. Responsibilities * Provide leadership and strategic ...
Tewksbury, MA · On-site
$201K - $382K/yr
The firm operates as a network of independent CPA and advisory practices, delivering services in risk, compliance, internal audit, and technology. Responsibilities * Provide leadership and strategic ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
Quick apply
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
We solve problems using technology, embrace automation and AI, and support Klaviyo's continued ... The Senior Manager, Security Risk Engineering is a senior information security and risk leader ...
$21.07 is the 25th percentile. Wages below this are outliers.
$15.75 - $21.67
28% of jobs
The median wage is $25.21 / hr.
$21.67 - $27.59
37% of jobs
$27.59 - $33.51
6% of jobs
$37.21 is the 75th percentile. Wages above this are outliers.
$33.51 - $39.43
6% of jobs
$39.43 - $45.35
12% of jobs
$45.35 - $51.27
0% of jobs
$51.27 - $57.18
0% of jobs
$57.18 - $63.10
8% of jobs
$63.10 - $69.02
0% of jobs
$69.02 - $74.94
0% of jobs
$74.94 - $80.86
2% of jobs
$15
$33
$80
| Aspect | Technology Risk | Cybersecurity Analyst |
|---|---|---|
| Primary Focus | Identifying and managing technology-related risks to business operations | Protecting systems and data from cyber threats and attacks |
| Certifications | CRISC, CISSP, CISA | CISSP, CEH, Security+ |
| Work Environment | Risk management teams, compliance departments | Security operations centers, IT security teams |
| Industry Usage | Finance, healthcare, technology firms | Any industry with digital assets, especially finance and government |
Technology Risk professionals focus on assessing and mitigating risks associated with technology systems and processes, ensuring compliance and reducing potential disruptions. Cybersecurity Analysts primarily work to defend systems from cyber threats, focusing on security measures and incident response. While both roles involve technology and security, their core objectives and daily tasks differ significantly.

Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control effectiveness, and residual risk.
Maintain and operate the enterprise cyber risk register, including drafting risk statements, tracking mitigation plans, and supporting governance and reporting processes.
Translate technical findings, architectural concerns, and control gaps into clear business risk scenarios that support prioritization and decision-making.
Support and help mature quantitative cyber risk analysis approaches such as FAIR to improve how risk is measured and communicated.
Prepare materials and analysis to support the Cyber Risk Committee and executive risk reporting.
Partner with Security Architecture to assess risk in system designs, cloud architecture, identity models, data flows, and platform changes.
Collaborate with Security Engineering, Product Security, Legal, IT, and business teams to evaluate new initiatives, technology changes, artificial intelligence use cases, and third-party integrations through a risk lens.
Conduct risk assessments for emerging technologies including artificial intelligence and machine learning systems, evaluating data usage, model behavior, external dependencies, and security implications.
Evaluate risks associated with the use of artificial intelligence technologies, including model behavior, data exposure, prompt or input manipulation, and external model dependencies.
Develop dashboards and reporting that provide leadership with visibility into key cybersecurity risks and trends.
Track mitigation progress and risk treatment activities to ensure accountability and clear documentation of outcomes.
Contribute to the continued development of cyber risk management processes, methodologies, and governance practices across the GRC program.
6+ years of experience in cybersecurity risk management, information security, technology risk, or a related field.
Demonstrated experience conducting structured cybersecurity or IT risk assessments.
Experience maintaining risk registers and tracking risk mitigation or treatment activities.
Strong understanding of security frameworks such as NIST CSF, ISO 27001, or PCI DSS, and familiarity with regulatory environments such as GDPR, HIPAA or other privacy and data protection requirements.
Ability to translate technical findings into clear business risk for non-technical stakeholders.
Strong written and verbal communication skills with experience presenting findings to cross-functional teams.
Experience working with engineering, architecture, legal, compliance, and business stakeholders.
Experience assessing risks related to artificial intelligence, machine learning systems, or emerging technologies, including familiarity with emerging AI governance frameworks such as NIST AI RMF, ISO/IEC 42001, or similar standards.
Professional certifications such as CRISC, CISSP, CISM, CISA, or CGRC are a plus.
This role is based in the WHOOP office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office.
Interested in the role, but don't meet every qualification? We encourage you to still apply! At WHOOP, we believe there is much more to a candidate than what is written on paper, and we value character as much as experience. As we continue to build a diverse and inclusive environment, we encourage anyone who is interested in this role to apply.
WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility
The WHOOP compensation philosophy is designed to attract, motivate, and retain exceptional talent by offering competitive base salaries, meaningful equity, and consistent pay practices that reflect our mission and core values.
At WHOOP, we view total compensation as the combination of base salary, equity, and benefits, with equity serving as a key differentiator that aligns our employees with the long-term success of the company and allows every member of our corporate team to own part of WHOOP and share in the company's long-term growth and success.
The U.S. base salary range for this full-time position is $130,000 - $170,000. Salary ranges are determined by role, level, and location. Within each range, individual pay is based on factors such as job-related skills, experience, performance, and relevant education or training.Â
In addition to the base salary, the successful candidate will also receive benefits and a generous equity package.
 These ranges may be modified in the future to reflect evolving market conditions and organizational needs. While most offers will typically fall toward the starting point of the range, total compensation will depend on the candidate's specific qualifications, expertise, and alignment with the role's requirements.
Sourced by ZipRecruiter
At WHOOP, we're on a mission to unlock human performance. WHOOP empowers users (Olympians, Professional Athletes, Fitness Enthusiasts, etc) to perform at a higher level through a deeper understanding of their bodies and daily lives.
Fitness and sports centers
501 - 1,000 Employees
Boston, MA, US
2012