Brown Brothers Harriman

Senior Risk Manager

Brown Brothers Harriman$170K — $230K *
Information Technology
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • 15+ years of experience in technology risk management or related discipline in a regulated environment.
  • Bachelor's degree required, advanced degree preferred; CPA and/or CIA certification is a plus.
  • Proven senior-level risk leader with credibility to advise Technology executives.
  • Demonstrated ability to influence enterprise-level strategy with data-informed perspectives.
  • Deep knowledge of risk management concepts, frameworks, and methodologies.
  • Strong technical proficiency in IAM, cloud, and AI technologies.
  • Excellent relationship management and communication skills.

Responsibilities

  • Serve as a senior advisor to Technology leaders on cyber and technology risk.
  • Influence enterprise strategy and provide credible challenges to stakeholders.
  • Anticipate regulatory expectations and shape program roadmaps accordingly.
  • Enhance the cyber and technology risk program and oversee control assessments.
  • Escalate material risks and high-severity issues to leadership and governance forums.
  • Lead risk reviews for new products and changes in collaboration with Compliance and Legal.
  • Design and deliver training to improve risk awareness across Technology.

Benefits

  • Healthcare and income protection benefits.
  • Professional development opportunities.
  • Programs that support overall well-being.
  • Participation in profit-sharing and discretionary bonuses.
Full Job Description
Enterprise Risk Management is hiring a Head of Cyber & Technology Risk to assist in strengthening the technology risk and control environment that protects the firm's systems, data, and operations. In this role, you'll partner closely with Technology Leadership and key second-line stakeholders to identify, assess, and monitor risk; enact pragmatic control improvements; and provide clear, actionable guidance that enables secure delivery. You'll bring strong judgment, executive-ready communication, and the ability to translate complex technical risks into focused priorities and outcomes.

What you'll do

Strategic leadership & executive advisory
  • Serve as a senior advisor to Technology leaders on cyber and technology risk across known issues, evolving threats, and emerging technologies.
  • Influence enterprise strategy and provide credible challenge to senior stakeholders to ensure risk remains within the firm's risk appetite.
  • Anticipate regulatory and industry expectations; translate them into forward-looking guidance that shapes program roadmaps.
  • Represent Cyber & Technology Risk on firm-wide committees, working groups, and-when needed-client and external partner discussions.
  • Own and continuously enhance the cyber and technology risk program, including policies, standards, and independent control assessments.
  • Escalate material risks, high-severity issues, and emerging trends to Technology leadership and relevant governance forums.
  • Oversee corrective action plans and validate closure; analyze themes and root causes across audit and regulatory findings and operational risk events.
  • Lead risk reviews for new products, services, and material changes; partner with Legal, Compliance, and Risk teams to align decisions to risk tolerance.
  • Coordinate external assurance activities (e.g., SOC 2), including evidence management, walkthroughs, and timely responses to requests.
  • Partner with Internal Audit, Compliance, and Legal to continuously strengthen the firm's risk and control infrastructure.


Policies, standards & enablement
  • Maintain and enhance technology risk policies and standards, translating regulatory expectations into practical, implementable requirements.
  • Contribute to AI governance and oversight by supporting control design, risk assessments, and adoption of firmwide guardrails.
  • Design and deliver risk and control training that improves awareness, ownership, and day-to-day execution across Technology.
  • Partner with Information Security to refresh security awareness content and embed coverage of emerging risks (e.g., phishing, third-party, cloud, and AI).


Leadership, talent & engagement
  • Build trust-based relationships across Technology to ensure early engagement on strategy, roadmaps, major initiatives, and ongoing activities.
  • Set priorities and an operating rhythm for the Cyber & Technology Risk team to deliver high-quality outcomes efficiently and consistently.
  • Develop talent with strong business acumen and the ability to engage credibly with senior stakeholders.
  • Hire, coach, and manage performance to build and retain a high-performing team.
  • Foster a culture of intellectual curiosity, constructive challenge, and continuous improvement.


What you bring
  • 15+ years of experience in technology risk management, technology audit, controls, or a related discipline within financial services or another highly regulated environment.
  • Bachelor's degree required; advanced degree preferred. Certifications such as CPA and/or CIA are a plus.
  • A proven, senior-level risk leader with the credibility to advise-and appropriately challenge-Technology executives.
  • Demonstrated ability to influence at the enterprise level and shape strategy through clear, data-informed risk perspectives.
  • A track record of building and leading high-performing teams and developing future leaders.
  • Deep knowledge of risk management concepts, frameworks, and assessment methodologies.
  • Strong technical fluency across IAM, network and endpoint controls, data platforms, legacy environments, cloud, and AI-enabled capabilities.
  • Demonstrated information security experience and a working understanding of the cyber threat landscape.
  • Strong understanding of IT regulatory expectations and compliance requirements.
  • Ability to balance business priorities with risk considerations and communicate tradeoffs clearly to senior management.
  • Excellent relationship management and executive communication skills; able to simplify complex topics without losing rigor.
  • Experience coordinating cross-location initiatives and aligning stakeholders across functions and geographies.


Salary Range

NJ & MA: $170,000 - $230,000 base salary + annual target bonus

BBH and its affiliates' compensation program includes base salary, discretionary bonuses, and profit-sharing. The anticipated base salary range(s) shown above are only for the indicated location(s) and may differ in other locations due to cost of living and labor considerations. Base salaries may vary based on factors such as skill, experience and qualification for the role. BBH's total rewards package recognizes your contributions with more than just a paycheck-providing you with benefits that enhance your experience at BBH from long-term savings, healthcare, and income protection to professional development opportunities and time off, our programs support your overall well-being.

We value diverse experiences. We value diverse experiences and transferrable skillsets. If your career hasn't followed a traditional path, includes alternative experiences, or doesn't meet every qualification or skill listed in the job description, please do go ahead and apply.

About Brown Brothers Harriman

Brown Brothers Harriman & Co. (BBH) is the oldest and largest private bank in the United States. Founded in 1818, BBH has been a leader in the financial industry for over 200 years. The company provides a wide range of financial services to individuals, families, and institutions, including wealth management, investment management, and private banking. BBH has offices in the United States, Europe, and Asia, and manages over $1.6 trillion in assets.
Learn more about Brown Brothers Harriman
Size
7,000 employees
Industry

Similar Jobs

More Jobs at Brown Brothers Harriman

More Information Technology Jobs

Find similar Senior Risk Manager jobs: