×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security Information Security

Head of ETX Risk Management & Regulatory Compliance

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: MassMutual
Full Time position
Listed on 2026-05-30
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security, Information Security
Salary/Wage Range or Industry Benchmark: 130000 - 180000 USD Yearly USD 130000.00 180000.00 YEAR
Job Description & How to Apply Below

The Opportunity

As a senior leader within the ETX Governance, Risk & Compliance organization, responsible for architecting and operating an integrated risk and compliance program across Cyber, AI, Data, Technology, and Resilience domains. This role leads a multidisciplinary team to identify, assess, monitor, and report risks while ensuring the technology organization meets all applicable regulatory, legal and industry obligations.

The Head of Risk Management & Regulatory Compliance serves as a strategic advisor, translating complex risk and compliance requirements into actionable controls, providing risk quantification to support decision‑ready insights. This leader ensures the organization maintains a strong risk posture, regulatory readiness, and a culture of accountability and transparency.

The Team

The ETX Governance, Risk & Compliance Team is comprised of governance and risk professionals responsible for implementing governance processes and risk management practices for the ETX (Information Technology) organization. We work closely with our business and technology partners and succeed together by designing practical and effective governance and risk management solutions to support innovation and increase operational efficiency.

The Impact
  • Integrated Risk & Compliance Leadership
    • Lead the enterprise‑aligned Risk & Regulatory Compliance function across Cyber, AI, Data, Technology and Resilience domains
    • Establish a unified risk taxonomy, risk assessment methodology, compliance gap assessment process and reporting structure that integrates with Enterprise Risk Management (ERM) and Compliance
    • Serve as a trusted advisor on emerging risks, regulatory expectations, and strategic implications
  • Governance & Oversight
    • Ensure risk and compliance decisions follow defined governance pathways with clear ownership, escalation and documentation
    • Maintain alignment with internal policies, external regulations, and industry frameworks
  • Regulatory Compliance Management
    • Oversee regulatory compliance obligations related to cybersecurity, data protection, AI governance, operational resilience, cloud and technology operations
    • Maintain a regulatory inventory and ensure traceability from requirements to controls, testing and evidence
    • Partner with Legal, Compliance, ERM and Audit to ensure readiness for examinations, attestations, certifications and regulatory inquiries
    • In partnership with Compliance, monitor regulatory developments and translate them into actionable requirements, controls and implementation plans
  • Risk Identification, Assessment & Quantification
    • Oversee risk assessments across ETX‑owned risk domains, including AI, cyber, data quality/privacy, operational technology and resilience risks
    • Implement quantitative and qualitative risk measurement approaches to support prioritization and investment decisions
  • Control Assurance & Continuous Compliance
    • Partner with ETX teams to ensure controls are well‑designed, tested and continuously improved
    • Oversee remediation tracking and ensure timely closure of issues
    • Embed risk and compliance expectations into technology and data lifecycle processes
  • Emerging Risks
    • Monitor emerging technologies and evolving threat landscapes to anticipate new risk and compliance requirements
  • Resilience & Continuity Risk Oversight
    • In partnership with Head of Enterprise Resilience, oversee risk and compliance assessments related to business continuity, disaster recovery, incident response, and operational resilience
    • Ensure resilience metrics, testing, and scenario exercises are integrated into the broader risk and compliance program
  • Reporting & Executive Communication
    • Deliver clear, concise and actionable reporting to ETX leadership and other key stakeholders
    • Translate technical risk and compliance insights into business‑relevant narratives and recommendations
    • Maintain KRIs, KPIs, dashboards and heatmaps that reflect real‑time risk and compliance posture
  • Team Leadership & Talent Development
    • Lead, mentor and develop a high‑performing team of risk professionals across Cyber, AI, Data, Technology, Resilience and Regulatory Compliance domains
    • Foster a culture of accountability, curiosity and continuous improvement
    • Build a…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search