Business Impact Analysis & Bcdr Compliance Program Manager

This is a short term position, with a planned end date of June 30th, 2026

The BIA & BCDR Compliance candidate will support a major Fortune 50 technology of Control Risks' by developing and maintaining their Data Center program's Business Impact Analysis program to ensure the client's organization meets regulatory audit requirements (FBA, DORA) and enterprise business continuity standards. This role bridges operational resilience, compliance evidence generation, and BCDR testing validation across the client's global datacenter footprint. The client operates critical cloud infrastructure services requiring documented business continuity capabilities and validated disaster recovery testing. The team requires a Subject Matter Expert (SME) to mature the BIA program, validate BCDR testing compliance data, and prepare defensible audit evidence for regulatory examinations. The Manager will work closely with process owners, BC/DR Champions, engineering teams, and platform administrators (Resilinc, BCDR Manager), assessing internal resilience posture and closing gaps in testing currency and documentation quality.

• Develop and mature CO+I's enterprise BIA methodology, ensuring alignment to FBA/DORA regulatory expectations and Enterprise Business Resilience Standards
• Partner with process owners and BC/DR Champions to validate business process criticality, RTO/RPO requirements, technology dependencies, and recovery assumptions
• Monitor BCDR testing compliance across CO+I services, identifying gaps between states compliance status and actual test currency
• Coordinate with BCDR Manager platform teams to validate testing data accuracy and drive remediation for non-compliant services
• Establish testing validation protocols to prevent future compliance drift
• Generate defensible audit evidence packages for FBA/DORA examinations, including BIA documentation, testing records, and capability maturity assessments
• Prepare executive briefings, audit response materials, and deficiency remediation plans
• Facilitate engagement with datacenter operations, engineering teams, program management, and supplier management to embed continuity requirements in operational workflows
• Integrate BIA outputs with Third-Party Resilience supplier assessments, ensuring vendor dependencies are mapped to business process criticality
• Maintain BIA framework documentation aligned to ISO 22301 and enterprise risk management standards
• Document process improvements, lessons learned, and best practices for BIA program maturity
• Establish and track key performance indicators (KPIs) to measure BIA coverage, testing compliance rates, and audit finding closure

Requirements

• Bachelor’s degree required in Business, Risk Management, Information Systems, Engineering, or a related field.
• 7+ years of experience in Business Impact Analysis (BIA), Business Continuity (BC), Disaster Recovery (DR), or Operational Resilience within a large-scale, regulated enterprise environment.
• Demonstrated expertise aligning BIA and BCDR programs to regulatory frameworks such as DORA and FBA, as well as ISO 22301 and enterprise risk management standards.
• Proven ability to develop and mature enterprise BIA methodologies, including validation of RTO/RPO requirements, technology dependencies, and recovery assumptions across complex global infrastructure environments.
• Experience monitoring and validating BCDR testing compliance, assessing testing currency, and remediating documentation or control gaps across multiple services or platforms.
• Strong background in audit readiness and regulatory examination support, including preparation of defensible evidence packages, executive briefings, and remediation plans.
• Exceptional cross-functional collaboration and stakeholder management skills, with experience partnering with engineering, datacenter operations, program management, platform administrators, and third-party suppliers to embed continuity and resilience requirements into operational workflows.Business Impact Analysis (BIA) methodology and execution
• Business Continuity and Disaster Recovery (BCDR) compliance validation
• FBA and DORA regulatory audit preparation
• ISO 22301 and enterprise resilience standards
• BCDR testing verification and gap remediation
• Cross-functional stakeholder facilitation
• Resilience platform administration (Resilinc, BCDR Manager)
• Executive reporting and audit evidence packaging

Benefits

• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
• We operate a discretionary bonus scheme that incentivizes, and rewards individuals based on company and individual performance.
• Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.
• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
• Medical Benefits, Prescription Benefits, FSA, Dental Benefits, Vision Benefits, Life and AD&D, Voluntary Life and AD&D, Disability Benefits, Voluntary Benefits, 401 (K) Retirement, Nationwide Pet Insurance, Employee Assistance Program.
• As an equal opportunities employer, we encourage suitably qualified applicants from a wide range of backgrounds to apply and join us and are fully committed to equal treatment, free from discrimination, of all candidates throughout our recruitment process.

The base salary range for this position is $150,000-165,000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience.

Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs.

Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov.