Compliance Manager - Privacy

Description

Are you passionate about data privacy and eager to launch a career in risk management? We are seeking a Privacy Risk Professional to support our enterprise privacy and compliance efforts. In this role, you’ll help identify, assess, and manage privacy risks across business units, gaining valuable exposure to financial regulations, cybersecurity, and data protection practices. As the Privacy Manager, you will execute the Privacy Office strategy for compliance with existing and new laws and regulation. The Privacy Manager will have the opportunity to implement Privacy by Design (PbD) practices, privacy compliance, data protection, and/or risk requirements across the organization. Executing strategy for compliance, providing oversight of the Privacy Program, and providing guidance and expertise to all Citizens Business Lines/Divisions. Evaluate and manage privacy related risks, supporting privacy related standards, policies, procedures, and providing privacy guidance on all privacy related concerns across the bank.

Primary Responsibilities Include

• Partner with Business Lines/Divisions to ensure timely identification, mitigation, resolution and escalation of existing and emerging privacy risks and issues
• Will work independently and collaboratively with business stakeholders and third-party vendor management team to perform a variety of privacy management activities related to privacy vendor assessments.
• Implement Privacy by Design (PbD) practices, privacy compliance, data protection, and/or risk requirements across the organization as it relates to information technology systems. 
• Execute the cross functional, bank wide strategy for compliance with all applicable existing and emerging regulations and laws, and future Federal and State laws as they are enacted.
• Provide guidance, oversight, and challenge to Business Lines/Divisions on privacy related risks, issues, and concerns
• Collaborate with Business Lines/Divisions to assess privacy related controls to ensure compliance with applicable laws, rules, and regulations, including credible review and challenge of privacy risks as identified and/or classified by First Line of Defense
• Perform independent privacy risk assessments of regulations and laws (e.g. GLBA, GDPR, CCPA and other frameworks and guidance) to evaluate risks and propose mitigation controls/strategies
• Complete Privacy Impact Assessments on new business initiatives and products to identify potential privacy risks
• Assist in investigating and remediating privacy incidents
• Monitor and analyze key risk metrics to identify emerging and potential privacy risks, trends, and issues, and escalate, appropriate.
• Partner with Second Line of Defense functions to influence improvement in risk culture, privacy risk profile and control effectiveness.
• Support Privacy Office in development, maintenance and enhancement of the Privacy Program, as appropriate.

Qualifications

• 2+ years Privacy experience
• Working knowledge of privacy related risks associated with a banking institution as well as experience working in and/or building effective privacy programs.
• Experience with reviewing privacy risks associated with Marketing/Ad Tech preferred.
• Incident Response experience preferred including experience leading investigations, analysis, and other notification/response activities.
• Familiarity with reading and interpreting and applying privacy regulations, laws, and statutes.  Strong research skills preferred.
• Detail-Oriented: Careful and thorough in handling privacy-related data and documentation.
• Excellent Communicator: Able to translate complex regulations into clear, actionable tasks.
• Collaborative Team Player: Works well with diverse teams and open to feedback.
• Analytical Thinker: Enjoys solving problems and assessing risk logically.
• Experience working with Microsoft Office suite products required. 

Education, Certifications and/or Other Professional Credentials

• Bachelor’s degree required
• IAPP certification preferred 

Hours and Work Schedule

Hours per Week: 40

Work Schedule: Monday – Friday; 3 days in the office, 2 work from home

Pay Transparency

The salary range for this position is $84,000 - $120,000 per year plus an opportunity to earn an annual discretionary bonus. Actual pay is based on various factors including but not limited to the work location, and relevant skills and experience.

We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more. Note, Citizens’ paid time off policy exceeds the mandatory, paid sick or paid time-away policy of very local and state jurisdiction in the United States. For an overview of our benefits, visit https://jobs.citizensbank.com/benefits.

Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.

Equal Employment Opportunity

Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression, genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family status/parenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague’s or a dependent’s reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws. At Citizens, we are committed to fostering an inclusive culture that enables all colleagues to bring their best selves to work every day and everyone is expected to be treated with respect and professionalism. Employment decisions are based solely on merit, qualifications, performance and capability.