CrawlJobs Logo

Manager – Privacy Risk Enablement

americanexpress.com Logo

Amex

Location Icon

Location:
United Kingdom , London

Category Icon
Category:
Finance

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Privacy Program Enablement Manager will play a key role within the Digital Tracking & Privacy Capabilities team, supporting the execution and advancement of the enterprise privacy risk roadmap. This position is responsible for enabling the tools, processes, and governance mechanisms required to identify, assess, manage, and report on global privacy risk. This role requires strong collaboration across business units and regions to drive consistency, strengthen controls, and enhance enterprise-wide privacy risk management practices.

Job Responsibility:

  • Partner with stakeholders across business and risk teams to enhance enterprise-wide privacy risk assessment processes in alignment with the AMEX risk framework
  • Identify and implement best practices to strengthen the monitoring and management of privacy risk across regions and business units
  • Develop and enhance clear, actionable guidance related to privacy risk and controls, including supporting training and enablement materials for business partners
  • Integrate privacy risk activities into existing enterprise processes, governance forums, and technology tools
  • Serve as a subject matter expert (SME) in privacy risk identification, documentation, assessment, and control implementation
  • Support the design and continuous improvement of tools that facilitate privacy risk tracking, control management, and reporting
  • Drive updates to privacy guidance documentation, ensuring alignment with internal policy requirements and external regulatory expectations
  • Promote awareness, engagement, and accountability for privacy risk management across stakeholders in a matrixed environment

Requirements:

  • 5+ years of relevant experience in privacy risk, operational risk, compliance, or related governance functions
  • Experience strengthening and scaling privacy-related processes within a financial services or highly regulated environment
  • Demonstrated ability to think strategically while executing tactically
  • Strong understanding of risk frameworks, controls, and governance processes
  • Proven ability to influence and drive alignment across multiple stakeholders in a matrixed organization
  • Strong organizational skills with the ability to manage multiple priorities effectively
  • Excellent written and verbal communication skills
  • High degree of personal accountability, initiative, and resilience
  • Solutions-oriented mindset with strong analytical and problem-solving capabilities
  • Employment eligibility to work with American Express in the UK is required
What we offer:
  • Competitive base salaries
  • Bonus incentives
  • Support for financial-well-being and retirement
  • Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location)
  • Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need
  • Generous paid parental leave policies (depending on your location)
  • Free access to global on-site wellness centers staffed with nurses and doctors (depending on location)
  • Free and confidential counseling support through our Healthy Minds program
  • Career development and training opportunities

Additional Information:

Job Posted:
March 21, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
Amex - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Manager – Privacy Risk Enablement

Risk and Compliance Senior Manager

From day one at Unobravo, we’ve been on a mission to make mental health support ...
Location
Location
Italy , Milan
Salary
Salary:
Not provided
unobravo.com Logo
Unobravo
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in senior compliance roles, with mandatory experience in a regulated market
  • healthcare sector (digital and/or physical) experience is a plus
  • Strong knowledge of European regulations, including data protection, healthcare, digital marketing, and consumer protection
  • Ability to anticipate and address evolving AI regulations, ensuring training, compliance, and organisational readiness
  • Global or pan-European experience, with ability to balance local compliance needs with a worldwide strategy
  • Excellent communication skills to translate complex compliance topics into practical solutions for diverse stakeholders
  • Proactive and hands-on, able to balance strategic initiatives with operational needs
  • Fluency in Italian and English, with international experience
  • presence in Italy is a strong advantage
Job Responsibility
Job Responsibility
  • Strategic Compliance Leadership: Define and implement a practical compliance framework across products, marketing, and infrastructure, balancing scale-up needs with risk management
  • Clinical Collaboration: Ensure compliance with healthcare regulations relevant to our role as a medical center
  • Compliance Management: Partner with product, marketing, and security to ensure GDPR, healthcare advertising, and NIS2 compliance. Provide strategic advice on privacy and health regulation, enabling Privacy by Design and Compliance by Design
  • Cross-functional Collaboration: Work closely with legal, IT, finance, HR, clinical, operations, and leadership to integrate compliance into all business decisions
  • Risk Management: Identify and mitigate risks across privacy, data, marketing, and communications. Lead DPIAs, LIAs, and other assessments
  • Global & Local Balance: Develop a compliance strategy that ensures our global product meets local regulatory requirements
  • Policies & Training: Create internal policies, deliver training, and build a culture of compliance and privacy awareness
  • Audit & Incident Response: Lead audits, monitor compliance, manage incidents, and oversee whistleblowing and reporting processes
  • Stakeholder Communication: Represent compliance priorities to leadership and advocate for key initiatives
  • Regulatory Monitoring: Track regulatory changes and best practices, updating company policies as needed
What we offer
What we offer
  • Flexibility to work from anywhere within your country of hire
  • Home workstation budget
  • Up to two coworking sessions a month
  • Exclusive discounts on psychotherapy sessions
  • Company retreats, team-building experiences, aperitivo parties
  • Free online language training
  • Birthday day off
  • Additional day off on World Mental Health Day
  • Inclusive parental leave
  • Fulltime
Read More
Arrow Right

Global Data Privacy Counsel

We are looking for a senior attorney with extensive experience in global data pr...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
arrive.com Logo
Arrive
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Juris Doctor degree from a reputable, accredited U.S. law school
  • Active license in good standing with one or more U.S. state bars (Georgia preferred)
  • 10+ years of progressive experience in data privacy and cybersecurity legal matters, with significant in-house experience at a high-growth, technology-driven company
  • Deep expertise and knowledge of and hands-on experience with U.S. and international data privacy, cybersecurity, and compliance laws and frameworks (including GDPR, CCPA/CPRA, PCI-DSS, ISO certifications, and other relevant global standards) and leading-edge AI regulations and frameworks
  • Demonstrated success in providing strategic legal counsel that balances risk management with enabling innovation and business growth, particularly in payments and data-driven initiatives
  • Proven experience leading global privacy and data protection programs, including managing privacy and data protection risk frameworks and governance
  • Experience managing external counsel, auditors, and regulators
  • Proven ability to lead, develop, and inspire diverse, global teams, including direct leadership experience with Data Protection Officers and other privacy professionals
  • Strong business acumen with the ability to translate complex legal concepts into clear, actionable advice that aligns with business objectives and supports deal-making and sales acceleration
  • Excellent communication and interpersonal skills, with the ability to influence stakeholders at all levels, including senior executives and cross-functional teams globally
Job Responsibility
Job Responsibility
  • Serve as a trusted strategic legal advisor to executive leadership, business unit and function heads, and the governance committees on global privacy, data protection, and cybersecurity risks, as well as opportunities aligned with rapid business growth and innovation
  • Design, lead, and continuously evolve the global privacy and data protection program, ensuring it not only meets regulatory requirements but also supports scalable growth and competitive advantage in a fast-paced, high-growth environment
  • Partner closely with product, technology, payments, data, software and hardware sales, marketing, and strategy teams to embed privacy-by-design and data governance principles into all data-driven and payment-related initiatives
  • Advise on privacy, data protection, cross-border data processing, and emerging technologies (AI and machine learning), in connection with parking, public transport and other urban mobility technologies and data services (B2B, B2C), to help the company navigate these complex regulatory environments while accelerating innovation
  • Balance risk management with enabling agility—help business units achieve their ambitious growth objectives without compromising compliance or customer trust
  • Lead and manage a global, unified privacy and data protection team, including the EU Data Protection Officer and EU Privacy Program Manager, and serve as the global privacy and data protection leader responsible for harmonizing privacy and data protection practices across all regions
  • Act as the company’s U.S. and Canada Privacy Officer, overseeing all U.S.-specific and Canada-specific aspects of the global privacy and data protection program
  • Own enterprise-wide development, implementation, and continuous improvement of privacy and data protection policies, standards, and frameworks aligned with relevant global privacy and data protection-related regulations
  • Develop and maintain a privacy and data protection risk management framework and a dashboard of key privacy metrics to inform leadership decision making and monitor program effectiveness in a high-growth environment
  • Lead privacy and data protection audits and program assessments to ensure compliance and identify areas for improvement aligned with rapid company growth
Read More
Arrow Right

Assistant Vice President – Third Party Risk Oversight specialist - TPRO - Consumer Credit Risk

The AVP – Third party risk oversight role is responsible for owning and enhancin...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in Risk management, third-party risk, vendor risk/management or credit risk with a large financial institution
  • US banking regulatory expectations
  • Prior experience operating with consumer credit risk or closely related risk domains
  • Extensive background in managing critical suppliers and regulated third-party relationships
  • Experience active as a risk/process oversight owner or leading risk platforms, frameworks, or governance models
  • Bachelor’s degree in related fields
  • Working knowledge of Vendor relationship management / Vendor risk management/ TPRO
  • Growth mindset with ability to balance risk, compliance and business enablement
  • Excellent stakeholder management and executive communication skills
  • Ability to challenge vendors and internal partners constructively
Job Responsibility
Job Responsibility
  • Product ownership and strategy: Own the end-to-end product vision for third-party risk oversight tools, processes, and controls within consumer credit risk
  • Own the TPRO vision, roadmap, and backlog, ensuring alignment with Citi risk policies and enterprise standards
  • Translate regulatory guidance, Citi policies, and risk requirements into User stories, controls, and functional requirements into scalable risk oversight solutions
  • Prioritize initiatives based on risk severity, regulatory commitments and business impact
  • Third-party Risk oversight: Oversee risk assessment lifecycle for third-party vendors, including: Inherent risk assessments, Due diligence (financial, operations, cyber, data privacy, model risk), Ongoing monitoring and periodic reviews
  • Ensure critical and high- risk vendors undergo enhanced oversight and governance
  • Maintain a risk-tiered vendor inventory aligned with consumer credit risk exposure
  • Supplier and contract management: Ensure supplier contracts meet regulatory, risk and control standard, including: SLAs, KPI, audit and access rights, data protection, information security, confidentiality, BCP/DR (business continuity planning/ Disaster recover), subcontractor and fourth-party controls
  • Track contract milestones, renewals, terminations and renegotiations
  • Proactively identify contracts nearing expirations and drive timely renewals or exit strategies
  • Fulltime
Read More
Arrow Right

Sr. Analyst, Digital Risk

This position plays a critical role in Hershey's enterprise risk management and ...
Location
Location
United States
Salary
Salary:
Not provided
thehersheycompany.com Logo
The Hershey Company
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in related field
  • At least 3+ years in privacy and/or risk management required
  • Privacy certifications (i.e. CIPP, CIPM, or CIPT) and/or risk management certifications strongly preferred
  • OneTrust application or equivalent tool certifications strongly preferred
  • Experience in CPG preferred
  • Effectively communicate and collaborate with all departments and job levels across the enterprise
  • Ability to facilitate timely collaboration with risk domain owners and proper escalation on high-risk use cases
  • Lead staff augmentation resources effectively and efficiently
  • Experience managing risk assessment processes (i.e. Privacy Impact Assessments [PIA], AI Assessments)
  • Working knowledge of privacy and AI regulations including technology trends to enable the business on risk mitigation
Job Responsibility
Job Responsibility
  • Manage digital risk assessment process including Privacy and AI, working collaboratively with internal and external stakeholders to ensure accurate risk identification and assessment
  • Primary advisor to the business on Privacy risk and compliance for specific use cases, helping to develop proposed solutions to achieve desired business outcomes while upholding compliance
  • Support digital risk tracking and remediation planning processes, including proper controls and accountability
  • Maintain accurate documentation to meet regulatory requirements (i.e. Record of Processing Activities [ROPAs], Data Protection Impact Assessment [DPIAs], Transfer Impact Assessment [TIAs], High risk AI use cases)
  • Partner with data governance and InfoSec teams to establish enterprise data mapping to enable accurate risk management
  • Review systems and processes for proper adherence to Hershey data retention, usage, and privacy/AI policies
  • Support the development of Privacy awareness & training materials for the enterprise
  • Develop privacy related reports for leadership and operational use
  • Other duties as assigned
Read More
Arrow Right

Senior Corporate Compliance Officer

The Senior Corporate Compliance officer is primarily responsible for overseeing ...
Location
Location
United Kingdom , London
Salary
Salary:
550.00 - 650.00 GBP / Hour
jamesonlegal.com Logo
Jameson Legal
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Comprehensive expertise & knowledge of Compliance domain/specialism
  • Comprehensive expertise & knowledge of Group Compliance functions good practice, policies & procedures
  • Comprehensive understanding of relevant laws and regulations, and the ability to interpret and apply them to complex business situations
  • Experience in a compliance related role focused around leading on governance and regulatory compliance
  • Excellent communication skills to effectively convey compliance requirements and policies
  • Ability to utilise compliance related platforms and tools to best manage compliance risk
  • Financial accounting and reporting knowledge
  • An understanding of Risk management
  • International governance and compliance experience
  • Working understanding of global built environment consultancy and broader construction industry
Job Responsibility
Job Responsibility
  • Providing a primary escalation point for all corporate compliance matters
  • Supporting the firm in its operational objectives, and to meet its obligations and standards globally
  • Ensuring and maintaining alignment of the firm’s policies & processes with local and global regulatory and legal frameworks
  • Maintaining the existing global compliance framework, and where required provide structured processes for supporting ethical and compliant behaviour throughout the organisation
  • Overseeing and managing global corporate compliance operations
  • Collaborating with relevant stakeholders to maintain regulatory and risk frameworks, controls, policies and procedures to enable effective and transparent decision-making and risk management
  • Providing direction, advice, and guidance to Senior Management, keeping abreast of regulatory changes and best practice
  • If required, assisting in resolving any contentious matters arising, including any disputes, complaints or investigations
  • Providing support to internal governance structures as they relate to Audit and Assurance in the testing for the effectiveness of compliance controls and procedures
  • Managing whistleblowing matters in line with the relevant local whistleblowing regulations
  • Fulltime
Read More
Arrow Right

Digital Risk & Compliance Leader

We are looking for an enthusiastic Digital Risk & Compliance leader to work in o...
Location
Location
Netherlands , Delft
Salary
Salary:
Not provided
https://www.ikea.com Logo
IKEA
Expiration Date
March 23, 2026
Flip Icon
Requirements
Requirements
  • Very good knowledge about concepts, methodologies and frameworks to manage information security, data privacy risks and other risks in Digital
  • Hold relevant Digital risk management certifications (CRISC or similar)
  • At least 5 years of experience in defining and implementing Digital risk management strategies in international matrix environment
  • Hands-on experience in implementing technical and organizational capabilities to manage Digital risks and strengthen organizational resilience
  • Very good knowledge about business processes, information technologies with a specific focus on IT business continuity concepts, methodologies, frameworks and ways-of-working
  • Practical experience in establishing and running third party risk management programs complex organizational structures
  • Be a natural facilitator who is capable to enable risk-based decisions and nurture risk-aware culture
  • Have practical experience dealing with (IT) auditing activities
  • Be consistent, attentive to details, fact-based and data-driven
  • Be comfortable with agile methodologies and have an experience in a product-oriented organisation
Job Responsibility
Job Responsibility
  • Contribute to defining and rolling-out Digital risk management approach, roadmaps and ways-of-working across IKEA
  • Drive Digital risk management processes including facilitation of the risk assessment workshops and conducting reporting activities
  • Identify good examples to ensure commonalities and uniformities on how to manage Digital risks
  • Drive continuous verification activities to make sure that agreed controls stay effective and efficient
  • Enable continuous improvement of the Digital environment
  • Support the implementation of technical and organisational measures and driving programs to manage Digital risks and to ensure compliance with internal information policies, as well as with applicable data protection laws and regulations
  • Maintain an always available outlook on the Digital risk landscape and state of compliance of our Digital environment
  • At any time, act as an ambassador of IKEA values and role model for fact-based business leadership
  • Contribute to professional and long-term relationship with franchisees and other IKEA companies through IKEA way of doing business, based on co-operation, trust and transparency
  • Fulltime
!
Read More
Arrow Right

Information Security Officer

The Information Security Officer is a senior leadership role responsible for ove...
Location
Location
Portugal , Lisbon; Oporto; Madrid; Barcelona
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experienced authentic leader with a good understanding of technology and managing Information Security risks in the enterprise
  • Passionate about Information Security, delivering business value and driving continuous improvement
  • Strong people leadership skills and experience in building a positive enabling security culture based on trust, quality and pragmatic risk management
  • Great communicator and influencer comfortable working across hierarchical, organisational, cultural and market boundaries
  • Experience of managing teams, mentoring and developing security talent from different cultural backgrounds
  • Professionally qualified holding a recognised security accreditation (CISSP/CISM/CISA etc.,) or equivalent experience with demonstrable Continuous Professional Development
  • Maintain a good understanding of latest security threats and the mitigating strategies
  • Ability to provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
  • Experience of the implementation, operation and maintenance of an Information Security Management framework such as ISO27001 or NIST CSF
  • Good understanding of integrating security into software or product development lifecycle and cloud security
Job Responsibility
Job Responsibility
  • Promote and inspire a security first culture at TUI
  • Direct the development, implementation, delivery and support of an enterprise Information Security strategy aligned to the strategic requirements of the business
  • Lead the provision of Information Security resources expertise, guidance and systems necessary to execute strategic and operational plans across all of the organisation’s information systems
  • Ensure that each Domain is motivated and empowered to deliver the prioritised roadmap
  • Protect the TUI brand and its customers, detect and respond to incidents, strengthen defences, reduce the attack surface and secure behaviours
  • Drive adoption of and adherence to security policies, standards and controls through the provision of expert advice and guidance
  • Protect our most critical assets and ensure appropriate assurance and rigorous testing is in place
  • Ensure security incidents are managed effectively through engagement with the security operations team, and that lessons learned and audit findings are remediated
  • Ensure effective security operations (e.g. vulnerability scanning, patching)
  • Protect the integrity, availability, authenticity, non-repudiation and confidentiality of information and data in storage and in transit
What we offer
What we offer
  • Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support
  • Flexible working: hybrid or remote working models
  • Opportunities to upskill, reskill and grow your career
  • Access the TUI Tech Learning Hub to level-up and reach your ambitions
  • Participate in our tech communities and collaborate on global projects and teams
  • Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community
  • Fulltime
Read More
Arrow Right

Information Security Officer

TUI Group is the world’s number one integrated tourism business. The Security Do...
Location
Location
Portugal , Lisbon; Oporto
Salary
Salary:
Not provided
https://www.tui.com Logo
TUI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • An experienced authentic leader with a good understanding of technology and managing Information Security risks in the enterprise
  • Passionate about Information Security, delivering business value and driving continuous improvement
  • Strong people leadership skills and experience in building a positive enabling security culture based on trust, quality and pragmatic risk management
  • Great communicator and influencer comfortable working across hierarchical, organisational, cultural and market boundaries
  • Experience of managing teams, mentoring and developing security talent from different cultural backgrounds
  • Professionally qualified holding a recognised security accreditation (CISSP/CISM/CISA etc.,) or equivalent experience with demonstrable Continuous Professional Development
  • Maintain a good understanding of latest security threats and the mitigating strategies
  • Ability to provide advice and guidance on security strategies to manage identified risks and ensure adoption and adherence to standards
  • Experience of the implementation, operation and maintenance of an Information Security Management framework such as ISO27001 or NIST CSF
  • Good understanding of integrating security into software or product development lifecycle and cloud security
Job Responsibility
Job Responsibility
  • Promote and inspire a security first culture at TUI
  • Direct the development, implementation, delivery and support of an enterprise Information Security strategy aligned to the strategic requirements of the business
  • Lead the provision of Information Security resources expertise, guidance and systems necessary to execute strategic and operational plans across all of the organisation’s information systems
  • Ensure that each Domain is motivated and empowered to deliver the prioritised roadmap
  • Protect the TUI brand and its customers
  • Detect and respond to incidents, strengthen our defences, reduce the attack surface and secure our behaviours
  • Drive adoption of and adherence to security policies, standards and controls through the provision of expert advice and guidance
  • Protect our most critical assets and ensure appropriate assurance and rigorous testing is in place
  • Ensure security incidents are managed effectively through engagement with the security operations team, and that lessons learned and audit findings are remediated
  • Ensure effective security operations (e.g. vulnerability scanning, patching)
What we offer
What we offer
  • Attractive remuneration
  • Bonus opportunity
  • Exclusive travel perks & discounts
  • Extensive health & wellbeing support
  • Flexible working
  • Opportunities to upskill, reskill and grow your career
  • Access the TUI Tech Learning Hub
  • Participate in tech communities and collaborate on global projects and teams
  • Get involved with local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy