Head of Enterprise Data Protection & Governance

At BBH, Partnership is more than a form of ownership—it’s our approach to business and relationships. We know that supporting your professional and personal goals is the best way to help our clients and advance our business. We take that responsibility seriously. With a 200-year legacy and a shared passion for what’s next, this is the right place to build a fulfilling career. Background: The Enterprise Data Protection and Governance team is a team within the Protect Pillar in Systems. The Protect Pillar is a unique BBH-construct designed for clear, centralized and coordinated accountability: to protect against physical and logical security risks; to safeguard stakeholder assets; and to detect, prepare for, and respond effectively to security events. To that end, the Protect Pillar encompasses the following areas: Cybersecurity; Enterprise Data Protection and Data Governance; Enterprise Incident Management; Global Security; and Information Security Management (“ISM”). Given that technology is an integral component of the Pillar’s control measures and a key asset to safeguard, the Protect Pillar sits within BBH’s Systems organization. Role: Reporting to the Head of the Protect Pillar, this role serves as the head of the Enterprise Data Protection and Data Governance team and is responsible for: Establishing and implementing the strategic direction of BBH’s data protection and governance program Overseeing enterprise-wide efforts to: Protect data from leaving BBH in an unintended manner (the Data Loss Prevention Program); Destroy data no longer required to be retained by law or for business purpose (the Data Destruction Program); Enhance classification of data to further the efficacy of the Firm’s data loss prevention controls and destruction efforts (the Data Classification and Discovery Program); and Establish minimum firmwide standards for data integrity and availability and define key data management-related roles and responsibilities (the Data Governance Program). Reporting regularly on key metrics, risks and program maturity to oversight committees Building and leading a high-performing team of professionals Leading the coordination of, and responses to, internal audit reviews Partnering with key stakeholders across the Protect Pillar, Systems, the business, Risk, OGC and Compliance to implement the Firm’s data protection and governance objectives