Director, Privacy Operations

About The Position

Requirements

• Bachelor’s Degree with a minimum ten (10) years of experience.
• Minimum five (5) years of experience working directly in data privacy roles, preferably in a regulated industry, required.
• Experience supervising and implementing large-scale processes or projects
• Demonstrated ability to lead, mentor, and develop staff.
• Demonstrated experience in conducting privacy compliance activities such as assessments, audits, and investigations to identify and mitigate risks.
• Experience managing and remediating privacy-related loss reports and incidents.
• Excellent collaboration and communication skills, with the ability to present complex topics to diverse stakeholders.
• Confident public speaker able to defend privacy-related recommendations.
• Exceptional analytical and problem-solving skills to assess privacy risks and develop mitigation strategies.
• Experience with privacy regulations, standards, and best practices.

Nice To Haves

• Certified Information Privacy Professional (CIPP/US) or Certified Information Privacy Manager (CIPM) preferred.
• Proficiency in creating and maintaining comprehensive risk registers a plus.

Responsibilities

• Serves as the escalation contact for privacy-related inquiries, requests, and audits from internal stakeholders and communicates complex privacy topics clearly and confidently to stakeholders at all levels.
• Leads the privacy assessment process, working across departments to identify, mitigate, and remediate privacy risks.
• Leads and manages privacy incident response operations, including investigations, incident management, and remediation of data loss events.
• Manages the department's internal and external relationships relating to privacy technology solutions used to document and record privacy activities.
• Leads the collaboration with stakeholders across the enterprise to ensure data management policies and technical controls supporting privacy objectives are properly tuned, serving as a strategic advisor to FINRA’s technology and data governance initiatives, translating complex privacy objectives into operational frameworks that enable innovation.
• Directs the establishment of and reporting on metrics to the Board and FINRA executive management team covering the performance of the privacy program.
• Responsible for identifying staffing, technology, and training investments to support enterprise privacy objectives, in alignment with the Privacy Operations budget and resource allocation.
• Demonstrates FINRA’s values.
• Collaborates, both in-person and virtually, in furtherance of FINRA’s mission of investor protection and market integrity.

Benefits

• comprehensive health, dental and vision insurance
• basic life, accidental death and dismemberment, supplemental life, spouse/domestic partner and dependent life, and spouse/domestic partner and dependent accidental death and dismemberment, short- and long-term disability, long-term care, business travel accident, disability and legal.
• immediate participation and vesting in a 401(k) plan with company match
• eligibility for participation in an additional FINRA-funded retirement contribution
• tuition reimbursement
• commuter benefits
• adoption assistance
• backup family care
• surrogacy benefits
• employee assistance
• wellness programs
• 15 days of paid time off
• 5 personal days
• 9 sick days
• two volunteer service days
• military leave
• jury duty leave
• bereavement leave
• voting and election official leave for federal, state or local primary and general elections
• care of a family member leave (available after 90 days of employment)
• childbirth and parental leave (available after 90 days of employment)
• nine paid holidays