Head of ETX Risk Management & Regulatory Compliance

MassMutualBoston, MA
18h
Match Resume

About The Position

As a senior leader within the ETX Governance, Risk & Compliance organization, responsible for architecting and operating an integrated risk and compliance program across Cyber, AI, Data, Technology, and Resilience domains. This role leads a multidisciplinary team to identify, assess, monitor, and report risks while ensuring the technology organization meets all applicable regulatory, legal and industry obligations. The Head of Risk Management & Regulatory Compliance serves as a strategic advisor, translating complex risk and compliance requirements into actionable controls, providing risk quantification to support decision-ready insights. This leader ensures the organization maintains a strong risk posture, regulatory readiness, and a culture of accountability and transparency. The Team The ETX Governance, Risk & Compliance Team is comprised of governance and risk professionals responsible for implementing governance processes and risk management practices for the ETX (Information Technology) organization. We work closely with our business and technology partners and succeed together by designing practical and effective governance and risk management solutions to support innovation and increase operational efficiency. The Impact Integrated Risk & Compliance Leadership Lead the enterprise-aligned Risk & Regulatory Compliance function across Cyber, AI, Data, Technology and Resilience domains Establish a unified risk taxonomy, risk assessment methodology, compliance gap assessment process and reporting structure that integrates with Enterprise Risk Management (ERM) and Compliance Serve as a trusted advisor on emerging risks, regulatory expectations, and strategic implications Governance & Oversight Ensure risk and compliance decisions follow defined governance pathways with clear ownership, escalation and documentation Maintain alignment with internal policies, external regulations, and industry frameworks Regulatory Compliance Management Oversee regulatory compliance obligations related to cybersecurity, data protection, AI governance, operational resilience, cloud and technology operations Maintain a regulatory inventory and ensure traceability from requirements to controls, testing and evidence Partner with Legal, Compliance, ERM and Audit to ensure readiness for examinations, attestations, certifications and regulatory inquiries In partnership with Compliance, monitor regulatory developments and translate them into actionable requirements, controls and implementation plans Risk Identification, Assessment & Quantification Oversee risk assessments across ETX-owned risk domains, including AI, cyber, data quality/privacy, operational technology and resilience risks Implement quantitative and qualitative risk measurement approaches to support prioritization and investment decisions Control Assurance & Continuous Compliance Partner with ETX teams to ensure controls are well-designed, tested and continuously improved Oversee remediation tracking and ensure timely closure of issues Embed risk and compliance expectations into technology and data lifecycle processes Emerging Risks Monitor emerging technologies and evolving threat landscapes to anticipate new risk and compliance requirements Resilience & Continuity Risk Oversight In partnership with Head of Enterprise Resilience, oversee risk and compliance assessments related to business continuity, disaster recovery, incident response, and operational resilience Ensure resilience metrics, testing, and scenario exercises are integrated into the broader risk and compliance program Reporting & Executive Communication Deliver clear, concise and actionable reporting to ETX leadership and other key stakeholders Translate technical risk and compliance insights into business-relevant narratives and recommendations Maintain, KRIs, KPIs, dashboards and heatmaps that reflect real-time risk and compliance posture Team Leadership & Talent Development Lead, mentor and develop a high-performing team of risk professionals across Cyber, AI, Data, Technology, Resilience and Regulatory Compliance domains Foster a culture of accountability, curiosity and continuous improvement Build a strong cross-functional partnership to strengthen risk and compliance awareness and ownership

Requirements

  • Proven leadership experience managing multi-disciplinary risk and compliance teams
  • Deep understanding of technology architectures and operations, cloud environments, data ecosystems and AI/ML systems
  • Strong knowledge of regulatory and industry frameworks (NIST CSF, COBIT, privacy and cybersecurity regulations, AI governance standards, operational resilience requirements)
  • 10+ years of experience in Technology Risk, Cybersecurity, Regulatory Compliance or related fields
  • Exceptional communication skills with the ability to influence senior leaders and simplify complex topics
  • Demonstrated ability to design and operationalize risk and compliance frameworks at scale
  • Bachelor’s or master’s degree in computer science or related field
  • Must be able to work in the US without sponsorship

Nice To Haves

  • Experience in financial services or other highly regulated industries
  • Certifications such as CRISC, CISM, CISSP, CISA, CIPM or similar credentials
  • Background in risk quantification, regulatory examinations, or model risk management

Responsibilities

  • Integrated Risk & Compliance Leadership Lead the enterprise-aligned Risk & Regulatory Compliance function across Cyber, AI, Data, Technology and Resilience domains
  • Establish a unified risk taxonomy, risk assessment methodology, compliance gap assessment process and reporting structure that integrates with Enterprise Risk Management (ERM) and Compliance
  • Serve as a trusted advisor on emerging risks, regulatory expectations, and strategic implications
  • Ensure risk and compliance decisions follow defined governance pathways with clear ownership, escalation and documentation
  • Maintain alignment with internal policies, external regulations, and industry frameworks
  • Oversee regulatory compliance obligations related to cybersecurity, data protection, AI governance, operational resilience, cloud and technology operations
  • Maintain a regulatory inventory and ensure traceability from requirements to controls, testing and evidence
  • Partner with Legal, Compliance, ERM and Audit to ensure readiness for examinations, attestations, certifications and regulatory inquiries
  • In partnership with Compliance, monitor regulatory developments and translate them into actionable requirements, controls and implementation plans
  • Oversee risk assessments across ETX-owned risk domains, including AI, cyber, data quality/privacy, operational technology and resilience risks
  • Implement quantitative and qualitative risk measurement approaches to support prioritization and investment decisions
  • Partner with ETX teams to ensure controls are well-designed, tested and continuously improved
  • Oversee remediation tracking and ensure timely closure of issues
  • Embed risk and compliance expectations into technology and data lifecycle processes
  • Monitor emerging technologies and evolving threat landscapes to anticipate new risk and compliance requirements
  • In partnership with Head of Enterprise Resilience, oversee risk and compliance assessments related to business continuity, disaster recovery, incident response, and operational resilience
  • Ensure resilience metrics, testing, and scenario exercises are integrated into the broader risk and compliance program
  • Deliver clear, concise and actionable reporting to ETX leadership and other key stakeholders
  • Translate technical risk and compliance insights into business-relevant narratives and recommendations
  • Maintain, KRIs, KPIs, dashboards and heatmaps that reflect real-time risk and compliance posture
  • Lead, mentor and develop a high-performing team of risk professionals across Cyber, AI, Data, Technology, Resilience and Regulatory Compliance domains
  • Foster a culture of accountability, curiosity and continuous improvement
  • Build a strong cross-functional partnership to strengthen risk and compliance awareness and ownership

Benefits

  • Access to learning content on Degreed and other informational platforms
  • Networking opportunities including access to Asian, Hispanic/Latinx, African American, women, LGBTQIA+, veteran and disability-focused Business Resource Groups
  • industry leading pay and benefits

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Executive

Number of Employees

5,001-10,000 employees

Job Search Resources

Similar Head of ETX Risk Management & Regulatory Compliance job opportunities

🔥 New JobManager, Regulatory Compliance and Risk Management
Scotiabank
Scotiabank • Dallas, TX1d
Global Head of AML & Regulatory Compliance
Kraken
Kraken4d • Remote
Head of Enterprise Risk Management
Leidos
Leidos • Reston, VA1d • Hybrid
Global Head of Risk Management
Geneva Trading
Geneva Trading • Chicago, IL10d • $225,000 - $300,000
Global Head of Risk Management
Geneva Trading
Geneva Trading • Chicago, IL10d • $225,000 - $300,000
Head of Enterprise Risk Management
Westfield
Westfield • Westfield Center, OH2d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service