DTCC logo

Data Privacy Director

DTCC
3 hours ago
Full-time
On-site
Jersey City, New Jersey, United States
$125,000 - $220,000 USD yearly
Data Privacy

Are you ready to make an impact at DTCC?

Do you want to work on innovative projects, collaborate with a dynamic and supportive team, and receive investment in your professional development? At DTCC, we are at the forefront of innovation in the financial markets. We are committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.

The General Counsel's Office is a valued, trusted and responsive partner within DTCC. The team promotes and protects the best interests of the DTCC family of companies by creating and facilitating solutions and providing guidance on legal and regulatory matters.


Pay and Benefits:

  • Competitive compensation, including base pay and annual incentive
  • Comprehensive health and life insurance and well-being benefits, based on location
  • Pension / Retirement benefits
  • Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
  • DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays, Wednesdays and a third day unique to each team or employee).

 

The Impact you will have in this role:


We are seeking a highly experience Director, Data Protection and Privacy to support the Chief Privacy Officer in overseeing the firm’s global privacy governance program. In this position, you will serve as an advisor to business stakeholders, offering guidance on privacy risks, regulatory requirements, and effective mitigation strategies. You will collaborate with Legal, Technology, Cybersecurity, Procurement, and other key business leaders to drive compliance with DTCC’s privacy policies, standards, and operating procedures. This role also provides the opportunity to shape the strategic direction of core privacy initiatives, including enterprise data governance, artificial intelligence governance, cloud‑based technologies, and marketing technologies practices, while supporting compliance, risk mitigation, and innovation. Experience in leading data incident response, investigations, and addressing regulatory reporting obligations is essential for success in this position.

 

Your Primary Responsibilities: 

  • Maintain current understanding of applicable global privacy laws and regulatory requirements, including impacts of AI regulations.  Draft and/or maintain privacy policies, standards, procedures, or guidelines as needed and collaborate across the business to support compliance to the firm’s requirements (e.g., GDPR/UK GDPR, US state laws, APAC, etc.).  Provide oversight and escalation support for complex privacy matters and enterprise initiatives. 

  • Increase awareness of and drive accountability for privacy program components operated by first line of defense, collaborating across both first and second lines as needed.

  • Provide guidance on ePrivacy compliance to Marketing and advise on management of cookies, tracking technologies, consent management, and direct marketing requirements across relevant jurisdictions. 

  • Assist with review of vendor agreements, Data Processing Agreements (DPAs), Standard Contractual Clauses (SCCs), or other supplementary measures or documentation escalated from Procurement and Legal to align contract positions to DTCC’s requirements.

  • Champion Privacy by Design by embedding privacy requirements into the systems development process.  Lead and oversee DPIAs and other privacy risk assessments for initiatives involving new technologies, vendor solutions, new or enhancements to products or services, etc.

  • Assist, lead, and oversee operational processes such as Record of Processing Activities, Data Subject Access Requests, etc. refining procedures, service levels, reporting, and controls as needed to ensure consistent execution and regulatory compliance.

  • Lead data breach investigations, impacting data privacy and client confidentiality.  Address regulatory reporting obligations and perform trend analysis of reported matters.

  • Support other daily program elements as needed such as training and awareness, review of DLP policies, management reporting, GRC activities, etc.

 

**NOTE: The Primary Responsibilities of this role are not limited to the details above.**

 

Qualifications:

  • Bachelor’s degree and/or equivalent experience

  • Minimum 10 years in data protection, legal, compliance, risk, or a related function within a regulated environment; financial services experience strongly preferred.

  • Industry certification (e.g., CIPM, CIPP EU/A/C/US, CISSP, etc.)

 

Talents Needed for Success:

  • Relevant experience to include security/IT audit, information security, risk management, etc. (E.g., CISM, CISSP, CISA (as applicable))

  • Experience with data governance, AI governance, or technology risk management strongly preferred.

  • Ability to drive alignment cross-functionally by establishing credibility and influencing peers and leaders at all levels to enable decisions and drive execution, balancing operational realities. 

  • Support a strong culture of accountability and collaboration across privacy, legal, compliance, technology, business teams, risk and lines of defense. 

  • Ability to operate independently with attention to detail to manage multiple priorities and drive decisions in a fast-paced organization.

  • Ability to demonstrate a balanced risk-based mindset that protects the firm and enables the business.

  • Experience providing privacy risk and governance guidance across cloud technologies, data platforms, AIenabled solutions, and marketing technologies.

  • Familiarity with data flows, system architecture concepts, and privacy controls (minimization, encryption, access controls, logging, retention).
     

The salary range is indicative for roles at the same level within DTCC across all US locations. Actual salary is determined based on the role, location, individual experience, skills, and other considerations. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

With over 50 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From 20 locations around the world, DTCC, through its subsidiaries, automates, centralizes, and standardizes the processing of financial transactions, mitigating risk, increasing transparency, enhancing performance and driving efficiency for thousands of broker/dealers, custodian banks and asset managers. Industry owned and governed, the firm innovates purposefully, simplifying the complexities of clearing, settlement, asset servicing, transaction processing, trade reporting and data services across asset classes, bringing enhanced resilience and soundness to existing financial markets while advancing the digital asset ecosystem. In 2024, DTCC’s subsidiaries processed securities transactions valued at U.S. $3.7 quadrillion and its depository subsidiary provided custody and asset servicing for securities issues from over 150 countries and territories valued at U.S. $99 trillion. DTCC’s Global Trade Repository service, through locally registered, licensed, or approved trade repositories, processes more than 25 billion messages annually. To learn more, please visit us at www.dtcc.com or connect with us on LinkedInXYouTubeFacebook and Instagram.

DTCC proudly supports Flexible Work Arrangements favoring openness and gives people freedom to do their jobs well, by encouraging diverse opinions and emphasizing teamwork.  When you join our team, you’ll have an opportunity to make meaningful contributions at a company that is recognized as a thought leader in both the financial services and technology industries. A DTCC career is more than a good way to earn a living. It’s the chance to make a difference at a company that’s truly one of a kind.

Learn more about Clearance and Settlement by clicking here.


The General Counsel's Office is a valued, trusted and responsive partner within DTCC. The team promotes and protects the best interests of the DTCC family of companies by creating and facilitating solutions and providing guidance on legal and regulatory matters.

The Compliance Department is dedicated to protecting DTCC against risks of non-compliance with applicable laws and regulatory matters affecting DTCC and its subsidiaries, including evaluating and responding to new and changing federal, state, local and administrative regulations.