Director, Privacy Compliance

Posted:
11/19/2024, 1:43:19 PM

Location(s):
New York, United States ⋅ Connecticut, United States ⋅ New York, New York, United States ⋅ Southington, Connecticut, United States

Experience Level(s):
Senior

Field(s):
Legal & Compliance

If you’re looking for a meaningful career, you’ll find it here at Webster. Founded in 1935, our focus has always been to put people first--doing whatever we can to help individuals, families, businesses and our colleagues achieve their financial goals. As a leading commercial bank, we remain passionate about serving our clients and supporting our communities. Integrity, Collaboration, Accountability, Agility, Respect, Excellence are Webster’s values, these set us apart as a bank and as an employer.  

Come join our team where you can expand your career potential, benefit from our robust development opportunities, and enjoy meaningful work!

Position Summary

The Director, Privacy Compliance is responsible for developing a compliance risk management program for privacy risk and for Webster Financial Services and Webster Bank for consumer lines of business (LOB).  This includes assisting the line in developing oversight of service providers with access to consumer data and developing privacy assessments for new and existing products and services. The Director, Privacy Compliance, is responsible for assessing federal and state regulations and guidance that applies to consumer data, and for coordinating privacy risk with Information Risk, Chief Information Security Officer, Cybersecurity, and Legal for identifying, analyzing, and supporting data breach situations.

Key Responsibilities

  • Responsible for researching federal and key state banking laws and regulations that address consumer data and data breach incident management.  This includes the Health Insurance Portability and Accountability Act of 1996 (HIPAA).

  • Maintaining Webster Privacy Policy and Program and tracking regulatory updates.

  • Reviewing and advising on procedures and disseminating pertinent information to senior management and lines of business.

  • Developing privacy by design approach and conducting privacy impact assessments for products and services.

  • Conducting the Graham Leach-Bliley risk assessment.

  • Developing and advising on training and colleague advisories related to handling of consumer data with a focus on nonpublic personal information.

  • Develop metrics to monitor privacy compliance and assist the first line in establishing risk related metrics.

  • Developing comprehensive procedures for identification, collection, and documentation for unauthorized access to include root cause analyses.

  • Maintain Webster Privacy Notice in compliance with regulatory requirements.

  • Assist in the preparation of internal audit reviews and regulatory examinations.

Requirements

  • Must have at least 7 -10 years of cumulative experience in Compliance, Risk, or Audit in financial services with responsibility for privacy compliance.

  • Candidates with advanced degrees (Associates, Bachelor’s, and/or Master’s) preferred, yet a High School diploma or GED is required. Candidates with some combination of coursework and experience, or extensive related professional experience

  • Candidates with a college degree (Associates, Bachelor’s, and/or Master’s) required

  • Certified Information Privacy Manager, CIPM, or Certified Information Privacy Professional, CIPP, required

  • Experience with banking laws and regulations, with a focus on those related to bank holding companies and national banks

  • Strong written, verbal, and communication skills, particularly for presentations

  • Advanced Microsoft Office skills, including Excel, PowerPoint, and Word

  • Knowledge of banking applications and systems, preferred

  • Knowledge of banking products and services

  • Effective project management and analytical skills

  • Effective decision-maker and collaborator

The estimated salary range for this position is $150,000USD to $160,000USD. Actual salary may vary up or down depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position is eligible for incentive compensation.

 

#LI-BY1

#LI-HYBRID

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.