Data Privacy Senior Analyst - Assistant Vice President

• Complete the Privacy Impact Assessment (PIA) process and controls required for all initiatives, new products and services
• Assess, evaluate, and validate controls through processes and tools such as the MCA and KRIs as appropriate for data privacy risk
• Support the product heads, function heads, COOs and In Business Risk team on gap analysis and the implementation of global policy requirements and regional standards
• Support periodic reviews of the Business’s data privacy processes and control and validate changes as a result of such reviews
• Track and review deviations and risk acceptances when raised and at the time of renewal
• Follow Escalation Policy and procedures to ensure effective escalation and socialization of material risk events and issues across businesses for any Data Privacy related items
• Escalate material risk events and issues appropriately
• Assist business in creation of Issues/CAPs related to Data Privacy as needed
• Support the Business and Functions on reviews and audits on Data Privacy
• Work with Global In-Business Regulatory head on all reviews and audits to ensure appropriate preparation, pre-review assessments and post-review remediation
• Coordinate and support the Business in the implementation of global, regional and local Data Privacy, regulatory and risk and control projects
• Ensure high quality execution for Data Privacy programs for any Citi initiated programs
• Perform training on risk and control concepts, processes, tools, and on effective issue self-identification and testing

• 5-8 years of relevant experience
• Demonstrates Data Privacy, Data Privacy Operations, Information Security or Cyber related risk management or minimum two years in an Internal Audit, Risk Management, or Control Management related role
• Working knowledge of Data Privacy Compliance laws, rules, regulations, risks, and appropriate controls
• Strong project management skills
• Ability to anticipate and balance the needs of multiple stakeholders
• Ability to communicate effectively
• Risk-based thinking and analytical mindset
• Ability to build rapport and work closely with stakeholders
• Up-to-date understanding of key Data Privacy risk and control concepts, tools and trends
• Proficient in the use of basic Microsoft applications (Word, Excel, PowerPoint)
• Bachelor's/University degree or equivalent experience

Familiarity with privacy related technology considerations such as cookies, mobile devices, biometrics and geolocation data is desired