AI Risk & Compliance Analyst

Whoop
Boston, MA

Job Description

Job Description

At WHOOP, we are on a mission to unlock human performance and extend healthspan. The Governance, Risk, and Compliance (GRC) team helps ensure technology and cybersecurity risks are identified, assessed, and communicated clearly across the organization.


WHOOP is seeking a Governance, Risk, and Compliance Analyst II, to lead the day-to-day operation and support the ongoing risk management program at GRC in a fast-paced, high-growth environment. This role is responsible for operations of GRC initiatives - including but not limited to structured cybersecurity and AI risk assessments, exceptions management,
SDLC reviews and security compliance process ownership. The role will partner closely with Legal, Security, Product, and other teams to advance compliance objectives, reduce enterprise
risk, and strengthen operational resilience.


The ideal candidate combines strong analytical thinking, critical risk mind-set, familiarity with AI governance and has the ability to communicate complex risk scenarios clearly to both technical and non-technical stakeholders.

RESPONSIBILITIES:

● Lead governance, risk assessment, and compliance activities specific to AI/ML systems,
LLM integrations, AI agents, and retrieval-augmented workflows
● Partner with the Senior Security Engineer, AI/ML to integrate risk assessment findings into
GRC frameworks and translate technical risk into governance requirements
● Develop, maintain, and refine AI risk and compliance controls aligned with relevant
frameworks, including ISO/IEC 42001, NIST Cybersecurity Framework, NIST AI Risk
Management Framework, EU AI Act, GDPR, and other applicable standards
● Execute risk assessments for new AI vendors, LLM platforms, AI APIs, and enterprise AI
tools, including third-party risk scoring, control mapping, and remediation tracking
● Manage the vendor risk assessment lifecycle for AI/ML related suppliers, ensuring
documented controls, evidence collection, and follow-up on remediation items
● Support audit activities, capturing evidence and coordinating cross-functional
stakeholders for internal and external compliance reviews involving AI systems
● Develop and maintain AI-specific GRC policies, standards, and procedures that map to AI
risk domains, explainability requirements, and compliance obligations
● Facilitate AI risk and compliance reporting to leadership, including risk dashboards, trend
analysis, control effectiveness measurements, and key metrics
● Monitor emerging AI governance requirements, guidance, and best practices, translating
them into GRC program updates and compliance recommendations
● Support security incident documentation and post-incident analysis for AI system events,
coordinating with Legal and Security teams to ensure appropriate governance response

QUALIFICATIONS:

● 6+ years of experience in Governance, Risk & Compliance, including risk assessment,
policy development, audit coordination, and third-party risk management
● Demonstrated experience performing governance or risk assessments for AI/ML systems,
including LLM integrations, model pipelines, AI agents, or data-driven algorithmic systems
● Experience translating AI-specific risks (i.e., data poisoning, prompt injection, model
misuse, data leakage, explainability gaps) into documented control requirements and
governance standards
● Hands-on experience conducting third-party risk assessments for AI vendors, LLM
platforms, AI APIs, or machine learning service providers
● Experience mapping AI-related risks and controls to frameworks such as ISO/IEC 42001,
NIST CSF, NIST AI RMF, ISO/IEC 42001, GDPR, PCI DSS, or similar standards
● Strong understanding of data governance concepts relevant to AI systems, including
training data lineage, data retention, model output handling, and human oversight
requirements
● Experience supporting regulatory readiness or compliance efforts related to AI systems
● Proven ability to collaborate with engineering and security teams to validate control
implementation and remediation
● Bachelor’s degree in Information Security, Computer Science, Business Risk, Compliance,
or a related field,

This role is based in the WHOOP office located in Boston, MA. The successful candidate must be prepared to relocate if necessary to work out of the Boston, MA office.

Interested in the role, but don’t meet every qualification? We encourage you to still apply! At WHOOP, we believe there is much more to a candidate than what is written on paper, and we value character as much as experience. As we continue to build a diverse and inclusive environment, we encourage anyone who is interested in this role to apply.

WHOOP is an Equal Opportunity Employer and participates in E-verify to determine employment eligibility

The WHOOP compensation philosophy is designed to attract, motivate, and retain exceptional talent by offering competitive base salaries, meaningful equity, and consistent pay practices that reflect our mission and core values.

At WHOOP, we view total compensation as the combination of base salary, equity, and benefits, with equity serving as a key differentiator that aligns our employees with the long-term success of the company and allows every member of our corporate team to own part of WHOOP and share in the company’s long-term growth and success.

The U.S. base salary range for this full-time position is $100,000 - $140,000. Salary ranges are determined by role, level, and location. Within each range, individual pay is based on factors such as job-related skills, experience, performance, and relevant education or training.

In addition to the base salary, the successful candidate will also receive benefits and a generous equity package.

These ranges may be modified in the future to reflect evolving market conditions and organizational needs. While most offers will typically fall toward the starting point of the range, total compensation will depend on the candidate’s specific qualifications, expertise, and alignment with the role’s requirements.

Posted 2026-07-17

Recommended Jobs

Security Officer Patrol Driver Role

Allied Universal
Kingston, MA

Job Description Job Description Overview Allied Universal®, North America’s leading security and facility services company, offers rewarding careers that provide you a sense of purpose. While …

View Details
Posted 2026-06-25

RN - Interventional Radiology

Cambridge Health Alliance
Cambridge, MA

Requisition Number: 11952 Pay Range: $42.00 - $94.90 per hour Location: CHA Cambridge Hospital  Category: Registered Nurse Department: Interventional Radiology Job Type: Full time Union Name…

View Details
Posted 2026-06-18

Travel Registered Nurse Oncology Job

Boston, MA

Job Overview TLC Nursing Associates, Inc. is seeking an experienced RN – Oncology for travel assignments . This role focuses on providing specialized care to cancer patients , including ad…

View Details
Posted 2026-02-10

Optical Engineer

SGS Consulting
Massachusetts

Job Responsibilities: Clearance: Candidates must have an active clearance to be considered for this position. Do not submit candidates without a clearance. Work Schedule: This position will req…

View Details
Posted 2026-06-05

Payroll Specialist

Lesley University
Cambridgeport, MA

Payroll Specialist Cambridge, MA Full time JR101664 The Opportunity Lesley University is seeking a Payroll Specialist to join the Human Resources department. Reporting to the Payroll Manager, this rol…

View Details
Posted 2026-07-18

Home Care Office Administrator

COTTAGE CAREGIVERS LLC
Hanover, MA

Job Description Job Description   Office Administrator Home Care  Cottage Caregivers is looking for the best compassionate caregivers to join our exceptional and growing team. We are a locally…

View Details
Posted 2026-05-15

Medical Director/Sr Director, Clinical Research

Scholar Rock
Cambridge, MA

Job Description Job Description Scholar Rock is a late-stage global biopharmaceutical company focused on developing and commercializing apitegromab for children and adults with spinal muscular at…

View Details
Posted 2026-07-04

WAREHOUSE PICKER/LOADER 3pm start Mon-Fr

Dennis K Burke Inc
Taunton, MA

Job Description Job Description We are growing! Join our warehouse team! Mon-Friday 3pm start, Enjoy your days and weekends in the SUN! Summary: This role involves unloading empty or partial…

View Details
Posted 2026-07-16

Preconstruction Manager

DOC
Boston, MA

Job Description Job Description Preconstruction Manager Hybrid | New England Region Reports to: Director of Preconstruction About DOC Our mission is to make a transformative impact on…

View Details
Posted 2026-06-26

Neurology Account Director - Northeast

Regeneron
Massachusetts

Build our future together: The Neurology Account Director (NAD) is a field-based institutional key account role responsible for driving the launch and ongoing commercial performance of Regeneron…

View Details
Posted 2026-06-09