Comerica

Chief Privacy Officer

About the Employer

Job Description

Chief Privacy Officer The Chief Privacy Officer leader is a key senior leadership position reporting to the Chief Compliance Officer. This position is responsible for the strategic development, execution, and overall management of Comerica's Privacy Program in alignment with corporate objectives, the Enterprise Risk Management Framework, industry best practices, and regulatory requirements. This position will be an extension of the Chief Compliance Officer and will involve working with leaders and business lines to ensure strategies and solutions are crafted and executed effectively, communications are clear, and issues are timely addressed. Position Responsibilities Privacy Program Development and Implementation Develop, implement, and maintain Comerica's privacy policies and procedures. Ensure Comerica complies with applicable privacy regulations, and other applicable laws and standards. Collaboration with internal departments (e.g., Technology, Legal, Human Resources) to ensure privacy is embedded in business processes and initiatives. Develop privacy training and communication strategy. Partner with other leaders and teams within the Risk Division to ensure integration of privacy risks into the overall Enterprise Risk Management Framework (e.g., Risk and Control Self-Assessments. Compliance Risk Assessment). Identify and assess potential risks to customer data and organizational privacy practices; implement corrective actions to mitigate identified risks. Monitor and assess the impact of new laws, regulatory guidelines, and enforcement actions on Comerica's strategic objectives and operations. Managing Privacy Risks and Incidents Identify potential privacy risks and develop strategies to mitigate them. Lead the organization's response to privacy incidents. Investigate privacy incidents and work with internal teams to resolve them. Communicate with regulatory authorities, clients, and affected individuals, if necessary. Reporting Prepare Senior Leadership and Board reporting specific to privacy program status, including potential risks or issues. Position Qualifications Bachelor's degree from an accredited university Preferred in Business, Finance, IT or related field from an accredited university; OR in lieu of a bachelor's degree, a HS diploma or GED and 10 years of privacy or data protection program management and other related experience in the financial services industry. 10 or more years Experience in banking privacy, regulatory compliance, risk management, and/or related legal experience in the financial services industry. 8 years Experience in understating privacy laws and regulations and applying them across an enterprise. 5 years Experience managing privacy initiatives enterprise-wide Licenses&Certifications Preferred: Certified Information Privacy Professional (CIPP) certification or other applicable / relevant certifications or licenses Work Best Category: Category C - Days in the office will either be designated days or will vary week to week from 2-5 days Hours: 8:00am - 5:00pm Monday - Friday Salary: To Be Determined Based on Individual Experience