×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Business Continuity Information Security IT Business Analyst

Technology Risk & Continuity Analyst

Job in Boston, Suffolk County, Massachusetts, 02298, USA
Listing for: GMO
Full Time position
Listed on 2026-06-12
Job specializations:
  • IT/Tech
    Cybersecurity, Business Continuity, Information Security, IT Business Analyst
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

Overview

As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst supports the firm’s security risk, business continuity, and incident management programs, contributing across prevention, preparedness, and response activities. The role performs core security risk functions such as risk and control support, audit readiness, access review coordination, and security awareness enablement. It also supports the development, maintenance, and testing of business continuity and incident response plans, including coordinating exercises and tracking remediation activities.

The analyst monitors threats and incidents, supports resilience and training platforms, and contributes to audit and due diligence efforts. Working closely with technology, risk, and business stakeholders, this role provides broad organizational exposure while helping ensure the firm is prepared for operational disruptions and cyber events, and continually improving its security posture.

Responsibilities Business Continuity
  • Work with all areas of the firm to map critical service dependencies and document recovery strategies through the BIA process, gathering recovery requirements, and identifying single points of failure.
  • Support maintenance of Business Continuity and Incident Response Plans through regular reviews and exercises, with a focus on continuous improvement.
  • Maintain program documentation, including incident and exercise reporting, program metrics and reports for a variety of stakeholders.
  • Develop and maintain BCP standards and templates.
  • Participate in Business Continuity and risk forums.
  • Identify emerging risks (e.g., regulatory changes, natural and man‑made risk) and perform risk assessments.
  • Administer and maintain the Riskonnect Resilience platform, including monitoring platform updates, attending vendor training, and managing the vendor relationship.
Security & Risk Management
  • Monitor IT incidents and document significant events.
  • Prepare incident summaries for internal tracking and reporting.
  • Coordinate security awareness programs via Learning Pool, including onboarding, annual training, and phishing simulations.
  • Support internal and external audits by collecting evidence, documenting control activities, and maintaining audit artifacts.
  • Assist with annual program reviews and audit readiness activities.
  • Respond to client due diligence requests and RFPs, leveraging knowledge bases and SMEs as needed.
  • Participate in vendor risk assessments, onboarding reviews, and ongoing monitoring of critical vendors.
Job Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Continuity, or a related field (or equivalent experience).
  • 2–5 years of experience in cybersecurity, business continuity, disaster recovery, operational risk, or IT risk management.
Core Skills & Knowledge
  • Interest in business continuity and operational resilience practices (BIAs, recovery strategies, dependency mapping, exercises, and issue remediation).
  • Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools).
  • Ability to master learning management systems and security awareness training programs (e.g., Learning Pool).
  • Understanding of incident management frameworks and IT service management tools (e.g., Service Now).
  • Knowledge of client and third‑party due diligence processes.
  • Familiarity with threat intelligence sources and relevant frameworks/standards (e.g., NIST, ISO 22301, ITIL) is a plus.
Professional Skills
  • Strong written and verbal communication skills, with the ability to clearly document plans, exercises, and incidents.
  • Excellent organizational skills and attention to detail, with the ability to manage multiple concurrent work streams.
  • Ability to collaborate across technology, risk, compliance, and business teams.
  • Comfort facilitating discussions (e.g., tabletop exercises, walkthroughs), capturing outcomes, and driving follow‑through.
  • Continuous improvement mindset with the ability to learn, document, measure, and iterate.
Preferred Certifications
  • ABCP, CBCP, Security+, or similar certifications are a plus.
Compensation and Benefits

$100,000 - $125,000 a year. This is a reasonable,…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search