Head of Privacy

**JOB DESCRIPTION**:

- We know that people want great value combined with an excellent experience from a bank they can trust, so we launched our digital bank, Chase UK, to revolutionise mobile banking with seamless journeys that our customers love. We're already trusted by millions in the US and we're quickly catching up in the UK - but how we do things here is a little different. We're building the bank of the future from scratch, channelling our start-up mentality every step of the way - meaning you'll have the opportunity to make a real impact. _
- As a Privacy Champion at JPMorgan Chase within the International Consumer Bank, you will be a part of a flat-structure organization. _Your_ responsibilities are to interact and collaborate with the firms Privacy Office and Chief Data Office (CDO) to support different pillars of privacy and data protection including DPIA, Privacy by Design Default, Article 30 and Privacy Incidents. _
- Our Privacy team is at the heart of this venture, we're looking for people who have a curious mindset, thrive in collaborative squads, and are passionate about privacy. By their nature, our people are also solution-oriented, commercially savvy and have a head for fintech.. _
- While we’re looking for professional skills, culture is just as important to us. We understand that everyone's unique - and that diversity of thought, experience and background is what makes a good team, great. By bringing people with different points of view together, we can represent everyone and truly reflect the communities we serve. This way, there's scope for you to make a huge difference - on us as a company, and on our clients and business partners around the world._

**Job responsibilities**:

- Have the appropriate stature, authority, and accountability to implement and execute the 1st LOD Privacy operating model that adheres to firmwide requirements and drive required results.
- Work with Privacy Champions as well as Privacy teams in other lines of business.
- Influence management decisions around usage and access to resources in the business that are commensurate with the level of privacy risks to drive the control requirements and/or enhancements.
- Ensure effective execution of privacy and data protection requirements, maintenance of privacy related procedures and adherence to such procedures.
- Be an active member in the appropriate Privacy, Business and Control Committees and Forums to provide transparency through reporting on business privacy risks and issues, controls, project updates or other privacy matters requiring escalation.
- Be available to support the respective Privacy Compliance and Privacy Legal contacts and participate in privacy workgroups, strategic projects or targeted reviews that require business engagement.
- Assist the business with the design and execution of controls to address privacy business requirements and mitigate privacy risks.
- Identify and assess the impact of privacy regulatory changes on the business & technology operations, processes, or procedures, including modifications needed. Provide transparency to Privacy Compliance and Privacy Legal into the business preparedness for complying with regulatory change.
- Assist the business with preparing for privacy related exams, compliance tests and internal audits and notify and engage Privacy Compliance during such reviews.
- Work within the business to ensure that privacy incidents are reported timely and accurately to the Incident Response Team, in accordance with policy; assist in determining necessary client notifications as appropriate.
- Provide transparency to business and compliance management through accurate reporting and metrics based on identified business risks, results of self-assessments, control environment, tests, audits, and external events with potential impact to the business.
- Evaluate new projects, suppliers, technologies through the appropriate firmwide control processes e.g., TPO, NBIA, IAS
- Assist Privacy Compliance with cascading privacy communications throughout the business to improve awareness of privacy requirements.
- Manage the proper delivery and completion of Privacy awareness sessions or additional training working with Privacy Compliance to develop LOB/Product specific training and awareness campaigns to address emerging risks or control deficiencies.

**Required qualifications, capabilities and skills**:

- CIPPE and/or CIPM privacy accreditation.
- Significant experience working in a control, compliance, investigation, or data function.
- Understanding of processes and information flows for business and operational units that manage customer, employee data and other confidential information.
- Proven experience delivering timely, high-quality presentations and/or reporting for various projects and stakeholders.
- Demonstrated ability in dealing with different stakeholder groups including Business, Marketing, Technology and Operations.
- Experience in driving the agenda