Sr. Manager, Business Operations (Risk Management)

The Sr. Manager of Business Operations plays a critical role in safeguarding the firm’s operational resilience by managing and enhancing risk oversight across third‑party relationships, cybersecurity processes, incident response, business continuity planning and operational reporting. This role ensures that the firm has robust, well‑documented, and actionable control frameworks that enable swift, coordinated response to operational risks and emerging threats.

In close partnership with Technology, Compliance, Internal Audit and key functional leaders, this individual will drive workflow improvements, develop high‑quality reporting for senior leadership, and strengthen firmwide operational disciplines. The Sr. Business Operations Manager blends analytical rigor with strong judgment, attention to detail, and a deep understanding of risk and control environments to maintain accurate data, mature processes, and consistently excellent execution.

RESPONSIBILITIES:

Third‑Party Risk Management

• Manage end‑to‑end third‑party risk lifecycle, including onboarding assessments, due diligence reviews, monitoring, and offboarding processes.
• Maintain vendor risk documentation and ensure timely updates to risk ratings, reports, and follow‑ups.

Incident Response

• Participate in preparation, documentation, and execution of the Incident Response process, including coordination with technical, legal, and compliance stakeholders.
• Maintain and enhance playbooks, procedures, communication templates, and post‑incident reporting.
• Conduct analytics and root cause analysis to reduce the probability of future incidents. Assist in tracking and driving follow‑up actions post-incident.

Business Continuity & Resilience

• Support the Business Continuity Program, including annual BCP testing, maintenance of business impact analyses, and stakeholder updates.
• Consolidate and validate application, system, and business‑unit inputs to ensure accuracy of continuity planning.
• Support company-wide BCP training by creating training materials and ongoing educational aids.
• Support the execution of BCP plan in the event of a disaster. May need to be available after hours to ensure the timely restoration of business operations in accordance with established plans.

Cybersecurity

• Support Cybersecurity program activities, including control monitoring, education, phishing campaign reporting, and cross‑functional coordination on remediation activities.

Process Optimization and Reporting

• Continuously review and refine our workflows to enhance consistency, accuracy and efficiency. Proactively identify improvement opportunities and execute those opportunities.
• Deliver high-quality, accurate, and insightful reporting—including dashboards, KPI tracking, incident summaries, and vendor risk metrics.
• Maintain client-ready documentation of our operational risk controls, collaborate with the RFP team to respond to due diligence questionnaires and other inquiries.
• Support internal/external audit and regulatory exams.

EDUCATION/EXPERIENCE REQUIREMENTS: (including certification, licenses, etc.)

• Bachelor’s degree required (Business, Information Systems, Risk Management, or related field preferred).  
• 8+ years of relevant experience in operational risk, cybersecurity, IT risk, compliance, or business operations.
• Experience in real estate, asset management, financial services, or similar industries strongly preferred.
• Experience managing risk in SEC and FINRA-regulated settings.
• Advanced proficiency in Excel (index/match, pivot tables, advanced formulas, analytics).
• Familiarity with risk frameworks (e.g., SOC 2, NIST, ITGC, SOX) is preferred.
• Experience with Prevalent or similar platforms.

ABOUT YOU:

• You are detail‑obsessed and produce accurate, polished deliverables—especially in data-heavy reporting.
• You thrive in improving workflows, building structure, and reducing ambiguity.
• You are an analytical thinker who uses data to drive decisions and highlight risks.
• You communicate clearly, proactively, and professionally across all levels of the organization.
• You enjoy working cross‑functionally and can manage multiple stakeholders and priorities.
• You take ownership, anticipate risks, and consistently follow through.