Privacy, Protection and Storage maintains a strong and consistent control environment across the firm. With members covering all Lines of CIB Business, Function and Region, there is a comprehensive coverage and joint accountability model with the business executive that promotes early Privacy Incidents identification and assessment, effective design and evaluation of controls and sustainable solutions to mitigate associated risks.

Incident Management focuses on four areas: 

1) Information classification and reported events triage

2) Privacy incidents identification/assessment

3) Analysis, containment and resolution

4) Control governance & reporting 

Role Responsibilities: 

Independently focus on Privacy Incidents management by evaluating and performing an end-to-end analysis to remediate them and to identify significant gaps and weaknesses to determine root causes and preventive actions. Ensure that notifications are properly designed, and completed to comply with contractual and/or regulatory privacy requirements. Perform ongoing analysis of incidents (e.g., KRI/KPI) and develop ad-hoc reports as requested to support business-related programs and strategies  Assist with development of Risk & Control Self-Assessment mapping and documentations through participation in end-to-end process walkthroughs and deep dives with assigned stakeholders Assist with the governance over data privacy within the CIB, including supporting the strategy and execution of Privacy Regulation and Privacy Policies. Develop a deep understanding of regional Privacy legislation and internal privacy and confidentiality policies and there application to the business. Assist on Privacy Programs (such as Policy implementation and regulatory changes) for your business including: High quality program management practices and governance. Program communications, both internal and external.  Materials and active participation in privacy committees, working groups and forums. Program/project plans, risk, issues and dependencies.

Qualifications

Bachelor’s degree or equivalent experience required 3-5 years of experience in financial services industry with background in controls, audit, quality assurance, operational risk management, or compliance preferred; or equivalent subject matter expertise in a relevant business related function/operation Proficient in Microsoft Office Suite (Word, Excel, PowerPoint, Visio) required and data analytics preferred using Excel, Access

Skills  

Business knowledge - ability to understand the business / knowledge of regulation surrounding business  Communication/presentation - excellent written and verbal communication skills with an ability to influence business leaders in a meaningful and actionable manner  Networking – strong interpersonal skills; strong collaboration and relationship building skills  Work autonomously to affect change - flexible, adaptable to shifting priorities; manages competing priorities to achieve the most effective result and able to work in a fast-paced, results driven environment  Problem solving / Analytical skills - solid critical thinking, attention to detail and analytical skills; able to synthesize large amounts of data and formulate appropriate conclusions  Understanding root cause / identifying control breaks Developing timely and sustainable solutions  Analyze metrics for emerging risk  Implementation skills  Writing Action Plans, Procedures  Change Management