Executive Director-Firmwide Privacy Incident Response Lead

Join our dynamic privacy team as Firmwide Privacy Incident Response Lead, where you will play a pivotal role in designing and managing the firm’s privacy incident response program. This is an exciting opportunity to work across a complex global organization, delivering cross-functional initiatives that drive compliance and innovation. Your expertise will be crucial in navigating privacy regulations and fostering a culture of data protection.

As an Executive Director - Firmwide Privacy Incident Response Lead in J.P. Morgan Chase’s Firmwide Privacy Office, you will be supporting the design and development of the firm’s privacy incident response program, working closely with incident response teams across the firm.  our privacy governance framework, ensuring compliance with relevant privacy laws and regulations, developing and maintaining privacy policies, standards and procedures, and driving privacy initiatives across the organization. You will work closely with key stakeholders to implement privacy strategies that align with our firm's goals. Your role will be instrumental in ensuring that our privacy practices meet global standards and support our data-driven initiatives.

Job Responsibilities:

• Lead the development and maintenance of standards, procedures, and controls for the firmwide privacy incident response program to effectively manage risk and ensure compliance with privacy laws.
• Collaborate with partners in lines of business, legal, risk management and compliance to drive improvements to the way the firm identifies, assesses, and responds to potential data breaches
• Act as subject matter expert for LOB-aligned incident response teams on incident response best practices
• Support LOB-aligned incident response teams by coordinating and/or managing the firm’s response to cross-LOB and complex privacy incidents, ensuring timely investigation, documentation, and resolution.
• Develop and deliver training and awareness programs for incident response teams to educate on privacy incident response procedures and best practices.
• Support projects to enhance the firm's reporting and metrics.
• Monitor and analyze trends in privacy incidents to identify areas for improvement and implement proactive measures to enhance the organization's privacy posture.
• Support audits and assessments related to privacy incident response and data protection.
• Stay current with industry trends, emerging threats, and best practices in privacy incident response and data protection and ensure the organization adapts accordingly.
• Prepare and present reports on privacy incidents and response activities to senior management and relevant stakeholders

Required Qualifications, Capabilities, and Skills:

• 10 years of experience with a focus on privacy incident management and privacy governance   
• Proven experience in developing and implementing privacy policies, standards and procedures.
• Experience with developing controls, metrics and reporting for managing an effective privacy program and 
• Knowledge of global privacy laws, including GDPR, GLBA and CCPA.
• Ability to work independently and manage relationships across functions.
• Excellent analytical, problem-solving, and communication skills.

Preferred Qualifications, Capabilities, and Skills:

• Experience in privacy at a financial institution.
• Familiarity with the three lines of defense model.
• Privacy certifications such as CIPM or CIPP.