Chief Privacy Officer

Chief Privacy OfficerThe Chief Privacy Officer leader is a key senior leadership position reporting to the Chief Compliance Officer. This position is responsible for the strategic development, execution, and overall management of Comerica's Privacy Program in alignment with corporate objectives, the Enterprise Risk Management Framework, industry best practices, and regulatory requirements. This position will be an extension of the Chief Compliance Officer and will involve working with leaders and business lines to ensure strategies and solutions are crafted and executed effectively, communications are clear, and issues are timely addressed.Position ResponsibilitiesPrivacy Program Development and ImplementationDevelop, implement, and maintain Comerica's privacy policies and procedures.Ensure Comerica complies with applicable privacy regulations, and other applicable laws and standards.Collaboration with internal departments (e.g., Technology, Legal, Human Resources) to ensure privacy is embedded in business processes and initiatives.Develop privacy training and communication strategy.Partner with other leaders and teams within the Risk Division to ensure integration of privacy risks into the overall Enterprise Risk Management Framework (e.g., Risk and Control Self-Assessments. Compliance Risk Assessment).Identify and assess potential risks to customer data and organizational privacy practices; implement corrective actions to mitigate identified risks.Monitor and assess the impact of new laws, regulatory guidelines, and enforcement actions on Comerica's strategic objectives and operations.Managing Privacy Risks and IncidentsIdentify potential privacy risks and develop strategies to mitigate them.Lead the organization's response to privacy incidents.Investigate privacy incidents and work with internal teams to resolve them.Communicate with regulatory authorities, clients, and affected individuals, if necessary.ReportingPrepare Senior Leadership and Board reporting specific to privacy program status, including potential risks or issues.Position QualificationsBachelor's degree from an accredited university Preferred in Business, Finance, IT or related field from an accredited university; OR in lieu of a bachelor's degree, a HS diploma or GED and 10 years of privacy or data protection program management and other related experience in the financial services industry.10 or more years experience in banking privacy, regulatory compliance, risk management, and/or related legal experience in the financial services industry.8 years experience in understating privacy laws and regulations and applying them across an enterprise.5 years experience managing privacy initiatives enterprise-wideLicenses & CertificationsPreferred: Certified Information Privacy Professional (CIPP) certification or other applicable / relevant certifications or licensesWork Best Category:Category C - Days in the office will either be designated days or will vary week to week from 2-5 daysHours:8:00am - 5:00pm Monday - FridaySalary:To Be Determined Based on Individual Experience

Created: 2024-11-04