Job Description:
Job Title: Privacy – Enterprise Privacy Compliance and Operational Risk Manager - EMEA
Corporate Title: up to Director
Location: London
Company Overview:
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
The Team:
Enterprise Privacy is a global team of subject-matter experts responsible for Compliance & Operational Risk coverage of Data Privacy across the enterprise operating in a highly technical, fast-changing and dynamic environment.
Role Description:
This job is responsible for the execution of the Global Compliance - Enterprise Policy, the Operational Risk Management - Enterprise Policy and the Compliance and Operational Risk Management (CORM) Program for Data Privacy Risks in Europe, Middle East and Africa (EMEA). Key responsibilities include identifying, escalating, and mitigating risks in a timely manner, engaging with Front Line Units and Control Functions (FLU/CF) leaders globally, coordinating with the FLU/CF Compliance and Operational Risk Officer teams, executing the CORM Program and the Policies, identifying themes and trends, and conducting analysis for new and emerging risks. This role also supports the responsibilities of the Data Protection Officers in region.
Responsibilities:
- Assesses risks, associated controls and their effectiveness, driving compliance with applicable laws, rules, and regulations and adhering to policies
- Engages in activities to provide independent compliance and operational risk oversight of Front Line Unit or Control Function (FLU/CF) performance and any related third party/vendor relationships in alignment with the Global Compliance - Enterprise Policy, the Operational Risk Management - Enterprise Policy (collectively the Policies) and the Compliance and Operational Risk Management Program and Standard Operating Procedures
- Identifies and escalates problems or issues that arise and drives actions to address the root causes that lead to compliance risk issues and/or operational risk losses, including opening new issues based on risk severity in the centralized issues tool
- Manages inventory of processes, risks, controls, and associated metrics for risk appetite and limits, reporting violations of compliance or regulatory activities
- Analyzes and interprets applicable laws, rules, and regulations to provide clear and practical advice to stakeholders, and identify and manage risks including monitoring the regulatory environment to identify regulatory changes applicable to area(s) of coverage and maintaining a comprehensive regulatory inventory, while supporting communication of regulatory changes to the FLU/CF and ensuring that policies, standards, procedures and/or processes are appropriately implemented or amended to address regulatory requirements
- Responds to regulatory inquiries, other audits, and examinations and identifies regulatory training needs supporting the development of the training curriculum
- Reviews and challenges FLU/CF process, risk, Single Process Inventory and FLU/CF Risk and Control Self-Assessment related to themes or trends, while monitoring the regulatory environment to identify regulatory changes applicable to area(s) of coverage
What we are looking for:
- In depth knowledge of or certification in law, rule, regulation and/or Data Privacy; Association of Privacy Professional (IAPP) accredited certification programs
- Interpret Relevant Laws, Rules, and Regulations
- Understanding of Policies, Procedures, and Guidelines Management
Benefits of working at Bank of America:
UK
- Private healthcare for you and your family plus an annual health screen to help you manage your physical wellness with the option to purchase a screen for your partner
- Competitive pension plan, life assurance and group income protection cover if you become unable to work as a result of a disability or health reasons
- 20 days of back-up childcare including access to school holiday clubs and 20 days of back-up adult care per annum
- The ability to change your core benefits as well as the option of selecting a variety of flexible benefits to suit your personal circumstances including access to a wellbeing account, travel insurance, critical illness etc.
- Access to an emotional wellbeing helpline, mental health first aiders and virtual GP services.
- Access to an Employee Assistance Program for confidential support and help for everyday matters
- Ability to donate to charities of your choice directly through payroll and the bank will match your contribution
- Opportunity to access our Arts & Culture corporate membership program and receive discounted entry to some of the UK’s most iconic cultural institutions and exhibitions.
- Opportunity to give back to your community, develop new skills and work with new groups of people by volunteering in your local community.
Bank of America:
Good conduct and sound judgment is crucial to our long term success. It’s important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind-set are the cornerstones of our Code of Conduct and are at the heart of managing risk well.
We are an equal opportunities employer and ensure that no applicant is subject to less favourable treatment on the grounds of sex, gender identity or gender reassignment, marital or civil partner status, race, religion or belief, colour, nationality, ethnic or national origins, age, sexual orientation, pregnancy or maternity, socio-economic background, responsibility for dependants or physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience.
We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements.