Principal, Privacy Compliance & Control BNY Mellon seeks a Principal, Privacy Compliance & Control with extensive experience in Privacy Risk Management, preferably with a financial services background. This is an opportunity to help enhance the organization’s existing privacy control framework at a time of ongoing regulatory change with global impact. The successful candidate will be expected to build relationships at a senior level, help to embed the Privacy Compliance framework and engagement model in the Americas, and be hands-on in providing oversight and challenge to the organization. With experience of leading and influencing, the successful candidate will be an advocate for Privacy Risk Management across the organization. BNY Mellon’s Risk and Compliance functions are situated in the second line of defense and are responsible for providing independent oversight and challenge of the business and supporting corporate functions in relation to key operational, financial, regulatory or reputational risk. Reporting into the Chief Risk Officer and Chief Compliance and Ethics Officer, the Compliance function is ideally positioned to ensure that BNY Mellon establishes and maintains appropriate policies, procedures and processes to comply with applicable laws and regulations. Compliance also plays a crucial role in assisting the business to understand regulatory requirements, apply best practices and build strong and transparent regulatory relationships. The Privacy Compliance team sits within the Compliance Function in the second line of defense and reports directly to the Global Head of Enterprise Wide Functions Compliance. The team provides leadership and guidance with respect to relevant data privacy regulatory requirements and objectives, to enable regulated activity to be conducted in a manner consistent with legal and regulatory requirements and to highlight any material process or control gaps. Privacy Compliance is responsible for overseeing and challenging the identification, assessment and mitigation of data privacy risks and providing advice and support to the Business and its Corporate Functions to effectively manage these risks. Position Overview This position leads the Americas Privacy Compliance team in the provision of advice, challenge and oversight of Privacy compliance activities in the region, to facilitate effective management of risks and associated regulatory obligations. Advises on and challenges Privacy strategy changes to further improve region's ability to remain, or become, compliant with applicable Privacy laws, policies and regulations. Maintains strong knowledge of Privacy laws, policies and regulations, including regional differences, as applicable. Uses strong influencing and negotiation skills and experience of Privacy risk management to increase the likelihood that strategy changes driven by relevant regulation are appropriately implemented in a timely manner. Responsibilities Contribute to the establishment of the organization’s Privacy compliance strategy; responsible for oversight of the implementation of the strategy within the Americas. Apply extensive knowledge and experience of relevant Privacy risk concepts to provide advice and guidance to internal stakeholders and to carry out regular evaluation and assessment of Privacy compliance risks facing the organization. Manage the analysis of complex, existing and proposed legislation, regulatory announcements and industry practices impacting the organization’s Privacy control framework and timely distribution of associated stakeholder communications. Provide accurate, timely independent regulatory guidance and credible challenge in relation to the management of Privacy risks; participate in Privacy governance forums and key advisory and strategic working group meetings; escalate high risk and/or significant issues to senior management. Oversight of, and participation in, Privacy regulatory exam management; partnering with key internal stakeholders, including first line of defense Privacy teams and Privacy Stewards to address remediation of Audit, Compliance and Regulatory Exam findings. Provide Privacy Compliance support and challenge during incidents including privacy impact analysis, decisions regarding regulatory reporting, participation in root cause analysis and lessons learned reviews. Establish and maintain strong working relationships with key stakeholders across the organization including senior Privacy, Technology, Business, Legal and Risk partners as well as relevant regulators, as appropriate. Produce regular Privacy risk assessment documents and compliance dashboards representing health of BNY Mellon’s Privacy control framework; preparation of complex, time sensitive reporting and presentation to governance committees where required. Oversee the development of strategic plans for independent monitoring of Privacy processes to ensure compliance with minimum regulatory and company requirements. Participate in significant business process change initiatives including new technology products and services and changes to existing products and services to identify opportunities to manage Privacy compliance risk effectively and efficiently. Direct the work of more junior team members across multiple locations, where required. Qualifications Bachelor's degree or equivalent work experience required; Business or Finance degree preferred 10-12 years of total work experience preferred. Experience in Privacy/Data Protection required. Financial Services, Audit or Compliance background and/or experience with financial services compliance and/or relevant privacy experience with the pertaining laws, regulations and rules of relevant regulators preferred Relevant Certification or industry accreditation e.g., Certified Information Privacy Professional/US (CIPP/US), Certified Information Privacy Technologist (CIPT), Certified Information Privacy Manager (CIPM) preferred. BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer. Minorities/Females/Individuals With Disabilities/Protected Veterans. Our ambition is to build the best global team – one that is representative and inclusive of the diverse talent, clients and communities we work with and serve – and to empower our team to do their best work. We support wellbeing and a balanced life, and offer a range of family-friendly, inclusive employment policies and employee forums. Primary Location: United States-Pennsylvania-Pittsburgh Internal Jobcode: 85162 Job: Risk Organization: Compliance-HR06015 Requisition Number: 2117214