Home › Companies › Gmo › Technology Risk & Continuity Analyst
Technology Risk & Continuity Analyst
Gmo · Boston, MA · Hybrid · Active · $100,000–$125,000 / year · Lever
Job facts
| Field | Value |
|---|---|
| Company | Gmo |
| Title | Technology Risk & Continuity Analyst |
| Normalized title | - |
| Department / team | Technology-Infrastructure |
| Location | Boston, MA, United States |
| Work model | Hybrid / Hybrid |
| Employment type | Full Time |
| Salary | $100,000–$125,000 / year |
| Status | active |
| ATS provider | Lever |
| Posted / first seen | 2026-06-01 / 2026-06-02 |
| Changed / last seen | 2026-06-02 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Gmo. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Lever. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Boston. | Open |
| Work model jobs | Active Hybrid postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Gmo |
| Source | 551fc8fd-2bce-4cb4-a133-4427b5eba179 |
| ATS provider | Lever |
Description
Company Profile
Founded in 1977, GMO is a global investment manager committed to delivering superior long-term investment performance and advice to our clients. We offer investment strategies and solutions where we believe we are positioned to add the greatest value for our investors. These include multi-asset class, equity, fixed income and alternative offerings.
We manage approximately $80bn for a client base that includes many of the world’s most sophisticated institutions, financial intermediaries, and private clients. Industry-wide, we are well known for our focus on valuation-based investing, willingness to take bold positions when conditions warrant, and candid and academically rigorous thought leadership. Jeremy Grantham, GMO’s Co-Founder and Long-Term Investment Strategist, is renowned as an expert in identifying speculative investment bubbles and also as a leading climate investor and advocate.
GMO is privately owned and employs over 430 people worldwide. We are headquartered in Boston, with additional offices in Europe, Asia and Australia. Our company-wide culture emphasizes commitment to clients, intellectual curiosity, and open debate. We celebrate and respect our differences, while embracing and valuing what each of us brings to work, as we know that diverse teams in an inclusive, caring environment achieve higher engagement and better client results.
Please follow the prompts included in this job posting to apply. The application window for this role is anticipated to remain open until the job is filled, or as otherwise determined by GMO.
Overview:
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst supports the firm’s security risk, business continuity, and incident management programs, contributing across prevention, preparedness, and response activities.
This role performs core security risk functions such as risk and control support, audit readiness, access review coordination, and security awareness enablement. It also supports the development, maintenance, and testing of business continuity and incident response plans, including coordinating exercises and tracking remediation activities.
The analyst monitors threats and incidents, supports resilience and training platforms, and contributes to audit and due diligence efforts. Working closely with technology, risk, and business stakeholders, this role provides broad organizational exposure while helping ensure the firm is prepared for operational disruptions and cyber events, and continually improving its security posture.
We value individuals who are reliable, curious, collaborative, proactive, and strong communicators—professionals who enjoy problem-solving and are eager to build hands-on experience across security risk management, continuity planning, and incident management.
Primary Responsibilities:
Business Continuity
Work with all areas of the firm to map critical service dependencies and document recovery strategies through the BIA process, gathering recovery requirements, and identifying single points of failure
Support maintenance of Business Continuity and Incident Response Plans through regular reviews and exercises, with a focus on continuous improvement
Maintain program documentation including incident and exercise reporting, program metrics and reports for a variety of stakeholders
Develop and maintain BCP standards and templates.
Participate in Business Continuity and risk forums
Identify emerging risks (e.g., regulatory changes, natural and man-made risk) and perform risk assessments.
Administer and maintain the Riskonnect Resilience platform including monitoring platform updates, attending vendor training, and managing the vendor relationship
Security & Risk Management
Monitor IT incidents and document significant events
Prepare incident summaries for internal tracking and reporting
Coordinate security awareness programs via Learning Pool, including onboarding, annual training, and phishing simulations
Support internal and external audits by collecting evidence, documenting control activities, and maintaining audit artifacts
Assist with annual program reviews and audit readiness activities
Respond to client due diligence requests and RFPs, leveraging knowledge bases and SMEs as needed
Participate in vendor risk assessments, onboarding reviews, and ongoing monitoring of critical vendors
GMO is committed to the recruitment, employment, and promotion of all candidates equally, regardless of an individual's gender, race, color, national origin, ancestry, age, religion, pregnancy, marital status, sexual orientation, gender identity or expression, military or veteran status, genetic information, physical or mental disability (except where such disability is a bona fide occupational disqualification) or any other classification protected under federal, state or local law.
GMO will not offer visa sponsorship for this opportunity.
Job Requirements:
Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Continuity, or a related field (or equivalent experience)
2–5 years of experience in cybersecurity, business continuity, disaster recovery, operational risk, or IT risk management
Core Skills & Knowledge:
Interest in business continuity and operational resilience practices (BIAs, recovery strategies, dependency mapping, exercises, and issue remediation)
Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools)
Ability to master learning management systems and security awareness training programs (e.g., Learning Pool)
Understanding of incident management frameworks and IT service management tools (e.g., ServiceNow)
Knowledge of client and third-party due diligence processes
Familiarity with threat intelligence sources and relevant frameworks/standards (e.g., NIST, ISO 22301, ITIL) is a plus
Professional Skills:
Strong written and verbal communication skills, with the ability to clearly document plans, exercises, and incidents
Excellent organizational skills and attention to detail, with the ability to manage multiple concurrent workstreams
Ability to collaborate across technology, risk, compliance, and business teams
Comfort facilitating discussions (e.g., tabletop exercises, walkthroughs), capturing outcomes, and driving follow-through
Continuous improvement mindset with the ability to learn, document, measure, and iterate
Certifications (Preferred):
ABCP, CBCP, Security+, or similar certifications are a plus
Full job record
| Job ID | 138f4fe7624f3eaaeb7faadc17c6d201791f9c26 |
| Org ID | 39418f83-84b1-4d4c-900f-4a24ec066ff1 |
| Source ID | 551fc8fd-2bce-4cb4-a133-4427b5eba179 |
| Board ID | 551fc8fd-2bce-4cb4-a133-4427b5eba179 |
| Provider | lever |
| Provider Job Key | c66c1b12-97db-4a8a-9f56-be0f862c9b37 |
| Title | Technology Risk & Continuity Analyst |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Boston, MA |
| Department | — |
| Team | Technology-Infrastructure |
| Employment Type | Full-time |
| Workplace Type | hybrid |
| Remote Policy | hybrid |
| Country | United States |
| Region | MA |
| City | Boston |
| Salary Raw | USD 100000-125000 per-year-salary |
| Salary Min | 100,000 |
| Salary Max | 125,000 |
| Salary Currency | USD |
| Salary Period | year |
| Source URL | https://jobs.lever.co/gmo/c66c1b12-97db-4a8a-9f56-be0f862c9b37 |
| Apply URL | https://jobs.lever.co/gmo/c66c1b12-97db-4a8a-9f56-be0f862c9b37/apply |
| First Seen At | 2026-06-02 10:41:16Z |
| Last Seen At | 2026-06-06 20:22:59Z |
| Last Checked At | 2026-06-06 20:22:59Z |
| Last Changed At | 2026-06-02 10:41:16Z |
| Inactive At | — |
| Source Posted At | 2026-06-01 15:50:35Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=lever/board=gmo/date=2026-06-06/2026-06-06T20-22-58-838Z-c391ab02955e7d5c505468255111933fb5c466f5f4ca8dba14d00a87bea3215d.json |
Event Fields
{
"content_hash": "55b15471fcb2e60137173c75b32c499b4492a1764e102ac78378445501097a30",
"source_hash": "d66992cd11a105a5786bedab82e0a993ae79e735f0ffea6de76437b4923372eb",
"last_changed_at": "2026-06-02T10:41:16.054Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Boston, MA",
"city": "Boston",
"region": "MA",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"salary_max": 125000,
"salary_min": 100000,
"inferred_at": "2026-06-06T20:22:59.801Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Boston, MA",
"city": "Boston",
"region": "MA",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"countries": [
"United States"
]
},
"remote_policy": "hybrid",
"salary_period": "year",
"workplace_type": "hybrid",
"salary_currency": "USD"
}Extensions
{}Native Structured
{
"lists": [
{
"text": "Job Requirements:",
"content": "<div>\n<ul type=\"disc\" style=\"margin-bottom: 0in; margin-top: 0px;\">\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, Business Continuity, or a related field (or equivalent experience)</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">2–5 years of experience in cybersecurity, business continuity, disaster recovery, operational risk, or IT risk management</span></li>\n\n</ul></div>"
},
{
"text": "Core Skills & Knowledge:",
"content": "<div>\n<ul type=\"disc\" style=\"margin-bottom: 0in; margin-top: 0px;\">\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Interest in business continuity and operational resilience practices (BIAs, recovery strategies, dependency mapping, exercises, and issue remediation)</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools)</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Ability to master learning management systems and security awareness training programs (e.g., Learning Pool)</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Understanding of incident management frameworks and IT service management tools (e.g., ServiceNow)</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Knowledge of client and third-party due diligence processes</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Familiarity with threat intelligence sources and relevant frameworks/standards (e.g., NIST, ISO 22301, ITIL) is a plus</span></li>\n\n</ul></div>"
},
{
"text": "Professional Skills:",
"content": "<div>\n<ul type=\"disc\" style=\"margin-bottom: 0in; margin-top: 0px;\">\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Strong written and verbal communication skills, with the ability to clearly document plans, exercises, and incidents</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Excellent organizational skills and attention to detail, with the ability to manage multiple concurrent workstreams</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Ability to collaborate across technology, risk, compliance, and business teams</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Comfort facilitating discussions (e.g., tabletop exercises, walkthroughs), capturing outcomes, and driving follow-through</span></li>\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">Continuous improvement mindset with the ability to learn, document, measure, and iterate</span></li>\n\n</ul></div>"
},
{
"text": "Certifications (Preferred):",
"content": "<div>\n<ul type=\"disc\" style=\"margin-bottom: 0in; margin-top: 0px;\">\n<li style=\"line-height: normal; margin-top: 0in; margin-right: 0in; margin-bottom: 10pt; font-size: 11pt; font-family: Calibri, sans-serif;\"><span style=\"font-size: 12.0pt; font-family: Lato, sans-serif;\">ABCP, CBCP, Security+, or similar certifications are a plus</span></li>\n\n</ul></div>"
}
],
"country": "US",
"createdAt": 1780329035340,
"updatedAt": null,
"categories": {
"team": "Technology-Infrastructure",
"location": "Boston, MA",
"commitment": "Full-time",
"allLocations": [
"Boston, MA"
]
},
"salaryRange": {
"max": 125000,
"min": 100000,
"currency": "USD",
"interval": "per-year-salary"
},
"workplaceType": "hybrid"
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/138f4fe7624f3eaaeb7faadc17c6d201791f9c26?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/39418f83-84b1-4d4c-900f-4a24ec066ff1JSONGET https://api.bluedoor.sh/job-postings/v1/sources/551fc8fd-2bce-4cb4-a133-4427b5eba179JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/138f4fe7624f3eaaeb7faadc17c6d201791f9c26/eventsJSON