Head of Human Risk & Critical Asset Protection

The Opportunity
We are advancing a Human Risk & Critical Asset Protection (HRCAP) capability to strengthen how the enterprise understands and safeguards its most important information assets. This role will define the strategy, operating model, and execution roadmap for HRCAP, establishing a durable framework that identifies, maps, and prioritizes critical assets and translates that understanding into risk-informed protection across the enterprise.
The Head of Human Risk & Critical Asset Protection will partner with business units, enterprise architecture, analytics, and technology teams to create a shared understanding of critical assets that inform protection priorities, monitoring strategy, and executive decision-making. This role will shape how the organization aligns cybersecurity investments with the assets that drive enterprise value.
The Team
The HRCAP organization is a multidisciplinary function focused on critical asset visibility and risk prioritization. The team operates at the intersection of cybersecurity, business operations, and enterprise data ecosystems.
Key team capabilities include:

• Identification and classification of critical business assets.
• Enterprise data location mapping across on-prem, cloud, SaaS, and endpoints.
• Access mapping and human interaction analysis.
• Business process data flow modeling.
• Risk prioritization and protection requirement definition.
• Executive reporting on critical data exposure and risk posture.

The Head of HRCAP will recruit and lead senior practitioners capable of working across technical and business domains, establishing a culture of analytical rigor, enterprise partnership, and accountability.
The Impact
The HRCAP function elevates how the enterprise protects its most valuable assets by anchoring cybersecurity decisions to trusted asset intelligence.
The Head of HRCAP will:

• Establish a strategy and enterprise framework for critical asset visibility.
• Create authoritative insight into critical asset exposure.
• Enable precision tuning of monitoring and detection capabilities.
• Strengthen insider threat and workforce risk initiatives.
• Inform architecture, analytics, and investment priorities.
• Improve executive understanding of cyber risk impact.
• Accelerate incident impact assessment and response clarity.
• Align cybersecurity strategy with business value.

The impact extends beyond cybersecurity. HRCAP provides foundational insight that benefits enterprise architecture, data analytics, infrastructure planning, and business operations, creating outsized return on investment.
The Minimum Qualifications

• 12+ years of experience in cybersecurity, data security, enterprise architecture, or risk leadership.
• Demonstrated experience designing and executing large-scale strategic programs.
• Experience leading multidisciplinary teams.
• Deep understanding of enterprise data ecosystems and risk modeling.
• Ability to translate complex technical environments into business impact.
• Proven cross-functional leadership with business and technology stakeholders.
• Strong executive communication and influence skills.
• Experience developing long-term strategy and operational execution plans.
• High professional judgment and organizational leadership capability.
• Authorized to work in the U.S. without current or future sponsorship.

Preferred Qualifications

• Experience establishing enterprise data protection or crown-jewel programs.
• Background in data security architecture or information protection.
• Familiarity with asset discovery, classification, or protection technologies.
• Experience in highly regulated industries.
• Knowledge of privacy and data handling frameworks.
• Advanced degree in cybersecurity, information systems, or business.
• Relevant certifications (CISSP, CISM, CDLP, or equivalent).
• Experience briefing senior leadership or boards on cyber risk.

#LI-MC1
MassMutual is an equal employment opportunity employer. We welcome all persons to apply.
If you need an accommodation to complete the application process, please contact us and share the specifics of the assistance you need.
California residents: For detailed information about your rights under the California Consumer Privacy Act (CCPA), please visit our California Consumer Privacy Act Disclosures page.
Salary Range: $189,900-$249,200