Bring your expertise to JPMorgan. As part of Compliance, Conduct and Operational Risk (CCOR), you are at the center of keeping J.P. Morgan Chase strong and resilient. You help the firm manage its data in a responsible way by anticipating new and emerging risks and using your expert judgment to solve real-world challenges that impact our company and customers. Our culture in CCOR is all about thinking outside of the box, challenging the status quo, and striving to be best in class. The Data & Artificial Intelligence (AI) CCOR team provides on-going independent second line of defense (2LOD) oversight and credible challenge to first line of defense (1LOD) business and functional activities. 

As a Privacy Vice President in the Data & AI CCOR team, you will be part of an innovative and talented team providing second line oversight and challenge of the Firmwide Privacy Office. This position requires expertise and experience in privacy governance, compliance, and operational risk. Familiarity with key privacy laws, rules, regulations, and principles as a privacy Subject Matter Expert (SME) also is required to provide horizontal support on the most material, complex and novel privacy and data use risk matters to the LOB, Corporate Function and Regionally-aligned CCOR groups to assure comprehensive independent 2LOD oversight and challenge of 1LOD business and functional activities.  

This role will report to the CCOR Privacy & Data Use Lead and will be part of a team of SMEs providing global second line privacy and data use risk coverage of the firm, driving independent privacy and data use compliance and operational risk management strategy and priorities at scale.

Job Responsibilities

Maintain, oversee and deliver the firm’s independent compliance and operational risk oversight and challenge program related to key 1LOD privacy processes, including privacy incident management, Privacy Impact Assessments, risk controls, governing documents, risk and control issue identification and remediation, etc. Create and maintain global privacy training and awareness courses and privacy compliance bulletins. Develop, review, and maintain relevant policies, standards, and guidance establishing minimum requirements for complying with key privacy laws, rules, regulations, and industry standards. Maintain awareness of new and changed  applicable laws, rules, and regulations, and independently assess their impact on the firm's  processes to oversee and challenge 1LOD to make adjustments to meet such requirements. Escalate and/or report to senior management the results of CCOR activities, such as assessment challenges, results of coverage activities, analysis of relevant external events, and challenge of issues and required corrective actions. Providing high value and practical advice to, and challenge of, the Firmwide Privacy Office and CCOR senior management with respect to managing a privacy risks. Assisting Firmwide Privacy Office to address emerging risks, including among others:  external geopolitical, market, client, vendor, or counterparty events giving rise to compliance or operational risk, and internal process or other errors also giving rise to such risks.  Support privacy-related regulatory supervision engagements, including responding to queries, regular meetings, and exams, focus reviews, or on-site inspections, through drafting responses or creating presentation materials. Sustained delivery of impact in the above duties will result in development of important skills and create opportunities for career progression and promotion.

 

Required qualifications, capabilities, and skills

5 + years of experience in Privacy compliance or risk  Experience drafting privacy compliance policies, training, or compliance reports Knowledge of key privacy laws, including GDPR, GLBA, and CCPA Ability to work independently and manage relationships across businesses, functions, and regions Excellent analytical, problem-solving, and communication skills Highly motivated, energetic self-starter who takes ownership and manages deliverables with a strong attention to detail and completes deliverables in a timely manner Demonstrated intellectual curiosity, capability to learn quickly and ability to prioritize and manage multiple competing demands across a global business Experience with, or demonstrated capability to learn, risk management principles and techniques, including providing oversight and credible challenge to assessments of risk and control environments and second line of defense coverage activities

Preferred qualifications, capabilities, and skills

Experience in privacy at a financial institution Relevant certification from the International Association of Privacy Professionals Understanding of, and interest in, artificial intelligence and other innovation