Senior GRC Analyst
Job Description
Job Description
At WHOOP, we are on a mission to unlock human performance and extend healthspan. The Governance, Risk, and Compliance (GRC) team helps ensure technology and cybersecurity risks are identified, assessed, and communicated clearly across the organization.
WHOOP is seeking an execution-oriented Senior Governance, Risk, and Compliance Analyst to lead the day-to-day execution and support the ongoing operation of the GRC program in a fast-paced, high-growth environment. This role is responsible for operations of GRC initiatives - including but not limited to structured cybersecurity and AI risk assessments, exceptions management, SDLC reviews and security compliance process ownership. The role will partner closely with Legal, Security, Product, and other teams to advance compliance objectives, reduce enterprise risk, and strengthen operational resilience.
The ideal candidate combines strong analytical thinking, critical risk mind-set with the ability to communicate complex risk scenarios clearly to both technical and non-technical stakeholders.
● Lead cyber, AI, and technology risk assessments across systems, cloud environments,
business processes, and major initiatives, evaluating threats, vulnerabilities, control
effectiveness, and residual risk
● Maintain and operate the enterprise cyber risk register, including drafting risk statements,
tracking mitigation plans, and supporting governance and reporting processes
● Translate technical findings, architectural concerns, and control gaps into clear business
risk scenarios that support prioritization and decision-making
● Support and help mature quantitative cyber risk analysis approaches such as FAIR to
improve how risk is measured and communicated
● Prepare materials and analysis to support the Cyber Risk Committee and executive risk
reporting
● Partner with Security Architecture to assess risk in system designs, cloud architecture,
identity models, data flows, and platform changes
● Collaborate with Security Engineering, Product Security, Legal, IT, and business teams
to evaluate new initiatives, technology changes, artificial intelligence use cases, and
third-party integrations through a risk lens
● Conduct risk assessments for emerging technologies including artificial intelligence and
machine learning systems, evaluating data usage, model behavior, external
dependencies, and security implications
● Develop dashboards and reporting that provide leadership with visibility into key
cybersecurity risks and trends.
● Contribute to the continued development of cyber risk management processes
● 6+ years of experience in cybersecurity or enterprise risk management, information
security, or a related field
● Demonstrated experience conducting structured cybersecurity or IT risk assessments
● Experience maintaining risk registers and tracking risk mitigation or treatment activities
● Deep understanding of security frameworks such as NIST CSF, ISO 27001, or PCI DSS,
and familiarity with regulatory environments such as GDPR, HIPAA or other privacy and
data protection requirements
● Ability to translate technical findings into clear business risk for non-technical
stakeholders
● Strong written and verbal communication skills with experience presenting findings to
cross-functional teams
● Experience assessing risks related to artificial intelligence, machine learning systems, or
emerging technologies, including familiarity with emerging AI governance frameworks
such as NIST AI RMF, ISO/IEC 42001, or similar standards
● Professional certifications such as CRISC, CISSP, CISA, or CGRC are a plus
This role is based in the WHOOP office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office.
Interested in the role, but don’t meet every qualification? We encourage you to still apply! At WHOOP, we believe there is much more to a candidate than what is written on paper, and we value character as much as experience. As we continue to build a diverse and inclusive environment, we encourage anyone who is interested in this role to apply.
WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility
The WHOOP compensation philosophy is designed to attract, motivate, and retain exceptional talent by offering competitive base salaries, meaningful equity, and consistent pay practices that reflect our mission and core values.
At WHOOP, we view total compensation as the combination of base salary, equity, and benefits, with equity serving as a key differentiator that aligns our employees with the long-term success of the company and allows every member of our corporate team to own part of WHOOP and share in the company’s long-term growth and success.
The U.S. base salary range for this full-time position is $130,000 - $170,000. Salary ranges are determined by role, level, and location. Within each range, individual pay is based on factors such as job-related skills, experience, performance, and relevant education or training.
In addition to the base salary, the successful candidate will also receive benefits and a generous equity package.
These ranges may be modified in the future to reflect evolving market conditions and organizational needs. While most offers will typically fall toward the starting point of the range, total compensation will depend on the candidate’s specific qualifications, expertise, and alignment with the role’s requirements.
Recommended Jobs
Speech-Language Pathologist | Where Clinician Wellbeing Comes First
Job Description Job Description About Chatterboxes At Chatterboxes, our mission is to create a more sustainable long-term career path for Speech-Language Pathologists.
Speech Language Pathologist (Early Intervention)
Job Description Job Description Description: Looking for a rewarding career that makes a difference in children’s lives? Look no further and join the team at Meeting Street! Meeting Street is a …
Project Engineer @ Ajinomoto Cambrooke
On behalf of Ajinomoto Cambrooke , we are searching for their next Project Engineer . Job Summary Are you ready to apply your engineering expertise to optimize manufacturing processes and d…
LPN Care Coordinator | 39 PTO Days | No Weekends
Job Description Job Description Description: LPN Care Coordinator | 39 PTO Days | No Weekends Full Time | PACE Program | Senior Care Coordination Elizabeth Banzhaf, LPN Co-Founder & COO…
Laboratory Assistant / Phlebotomist - Everett - Evenings/Nights
Requisition Number: 11332 Pay Range: $20.40 - $33.97 per hour Location : CHA Everett Hospital Category: Allied HealthDepartment: Lab at CHA EverettJob Type: Full timeUnion Name: SEIU 1199 Length …
Travel Nurse RN - Operating Room - $2,385 per week in Gardner, MA
Registered Nurse (RN) | Operating Room Location: Gardner, MA Agency: Cynet Health Pay: $2,385 per week Shift Information: Days - 4 days x 10 hours Contract Duration: 13 Weeks …
Travel Nurse RN - Obstetrics/Gynecology in Boston, MA
Registered Nurse (RN) | Obstetrics/Gynecology Location: Boston, MA Agency: SkyBridge Healthcare Pay: Competitive weekly pay (inquire for details) Contract Duration: 13 Weeks St…
Enterprise AI Solutions Consultant
Elevate the Future of Global Content with TransPerfect AI TransPerfect is the leading solution provider of AI, Technology, and Data solutions; we are the engine behind the global AI revolution. As w…
Women's Spa Attendant
Job Description Job Description Overview Canyon Ranch® has been a trailblazer and an industry-leading proponent of the wellness lifestyle since its founding in 1979. Canyon Ranch has imparted …
Public Safety Officer - Per Diem
Overview This is a Per Diem position is fully onsite and requires the ability to cover any shift. The primary post will be at our main campus (Longwood) but will need to have the flexibility to …