Senior Director, Data Governance & Privacy Operations (GRC) | Technology jobs in United States
cer-icon
Apply on Employer Site
company-logo

FTI Consulting · 1 day ago

Senior Director, Data Governance & Privacy Operations (GRC) | Technology

positionUnited States, Illinois, Chicago
timeFull-time
remoteOnsite
seniorityDirector/Executive
date15+ years exp

FTI Consulting is the leading global expert firm for organizations facing crisis and transformation. The Senior Director will lead global privacy operations, third party risk management, and AI governance within the Technology segment, ensuring compliance with applicable regulations and championing governance and risk management initiatives.

Health CareInformation Technology
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Partner with various stakeholders to ensure appropriate GRC provisions are incorporated into customer, vendor, partner and other GTM content including portals, Trust, DPAs, LOEs, etc
Support Technology segment transformation initiatives including cross-segment programs such as scalable IT; role will interact with external counsel, FTI’s senior leadership and clients
Proactively horizon scan/ monitor data protection, Cyber and AI regulations/ standards (e.g., GDPR, CCPA, EU AI Act, EU AI pact, DORA, etc.); Assess regulations for applicability to context, FTI ‘s solutions and operationalize into various workstreams where needed
Exercise sound judgment to effectively assess, communicate, balance and resolve risk in the provision of compliance guidance to the business
Ensure AI/ Development and other Tech initiatives or products comply with regulations, governance principles, ISO standards and industry best practices
Partner with teams and data stewards to coordinate and perform various audits and assessments (PIA, DPIA, TIA, AI impact assessment, Data Inventories, etc.) as needed to support privacy by design and AI governance principles, drive operational accountability and ensure ongoing compliance and risk management; Maintain risk registers and risk matrices to support PIMS, etc
Build and operationalize negotiation playbooks, risk matrices, data maps, and standardized artifacts that enable self-service and reduce ad hoc escalations
Review and negotiate both client and third-party agreements accounting for compliance and alignment with standard positions, cross border transfers in order to enable product/ solution delivery and client engagements; evaluate third parties' compliance and risk disposition as required
Govern risk exception handling for sales enablement & product risk acceptance, establishing standardization (90%) and exception (10%) protocols
Collaborate on administration, areas of automation, create content, and provide support of various systems: Salesforce, TRUST site, TPRM system (Prevalent) and AI CLM
Champion and evangelize new technology and policy as needed to further strengthen governance and enforce policies and frameworks that ensure ethical, secure, and compliant solution deployment. Proactively evaluate advanced tools and suppliers and continuously evaluate opportunities for automation or self-service
Support and lead initiatives as required under the teams GRC charter

Qualification

Data governanceAI governanceRisk managementData protection regulationsGRC policiesTechnical acumenNegotiation skillsProject managementPartnership developmentLegal acumenEthical AI principlesCommunication skillsSelf-starter mindsetAdaptabilityTeam collaboration

Required

Bachelor's or Master's degree in a relevant field, such as computer science, engineering, law or public policy
5 years of experience in data governance, privacy and/or AI governance, policy, or related fields
2 years navigating, negotiating, and reviewing commercial agreements involving complex data protection, AI terms, information technology and security schedules, cross border data transfers and operational service levels within hyperscale
15 or more years of total applicable work experience with at least 10 of those years in information technology, information security and/or operational risk management in the context of enterprise IT systems and specifically, SaaS, IaaS, hyperscale or hybrid cloud environments
Any of the following certifications: Certified Information Privacy Professional (CIPP), Artificial Intelligence Governance Professional (AIGP), Certified Risk Professional (CRP), CRISC (Certified in Risk and Information Systems Control), or Certified Regulatory Compliance Manager (CRCM)
Demonstrated experience synthesizing legal, regulatory, and contractual obligations into workstreams and related policy
Demonstrated experience scaling governance programs through operating model design (intake, triage, playbooks, automation) and measurable reporting metrics (KPIs)
Expert knowledge of domestic and global data protection regulations and security frameworks regulations (such as GDPR, CCPA, CPRA, HIPAA, GLBA, NIST, ISO 27701, ISO 42001, etc.) and applying them in a complex technology environments
Comfort navigating ambiguity in evolving initiatives where scope, tooling, and processes are still being defined
Exceptional verbal and written communication skills and the ability to quickly evaluate translate complex regulatory or technical needs into practical, concise and actionable direction
Expert familiarity with ethical AI principles, bias detection, and mitigation techniques
Demonstrated experience applying AI governance into various workstreams at both the enterprise and product level
The ability to efficiently manage multiple tasks and prioritize changing workloads or competing priorities; ability to pivot quickly between strategy and hands-on tactical execution
Extensive experience leading bespoke negotiations with third parties and clients
The ability and desire to take initiative, self-educate, work with autonomy, quickly risk-assess and prioritize based on various factors including overall business value and operational integrity
The ability to develop and maintain strong partnerships and influence across organizations at all levels without direct reporting relationships
A self-starter mindset who has the confidence, conviction and demonstrated experience to make complex decisions at pace; demonstrated ability to effectuate change and diplomatically identify, articulate and resolve risks/ noncompliance -- even if unpopular
Demonstrated success implementing governance readiness for emerging Technology initiatives by translating requirements into repeatable controls, artifacts, and operating rhythms
Experience creating and implementing GRC policies, addendums, documentation and site content
Passion for AI ethics, GRC, Security and Privacy

Preferred

Juris Doctor or Masters in Law strongly preferred. While this position will not be acting as legal counsel for FTI, in depth demonstrative legal acumen is required
Demonstrated project management expertise
Familiarity and ideally, previous experience with at least one major data governance enterprise platform (i.e., One Trust), vendor risk management system, a Contract Lifecycle Management system ( i.e. Ironclad, DocuSign, Conga, Luminance, etc.), and ServiceNow or similar workflow/intake platforms is a plus
Experience with Privacy Enhancing Technologies
E-discovery or legal operations subject matter expertise

Benefits

Competitive total compensation, including bonus earning potential
Full package of benefits plans, including medical, dental, and vision coverage along with life and disability insurance
Generous paid time off and holidays
Company matched 401(k) retirement savings plan
Potential for flexible work arrangements
Generous paid parental leave with available planning tools, virtual expert coaching services and flex return support.
Family care benefits, including back-up child/elder care
Employee wellness platform
Employee recognition programs
Paid time off for volunteering in your community
Corporate matching for charitable donations most important to you
Make an impact in our communities through company sponsored pro bono work
Professional development and certification programs
Free in-office snacks and drinks
Free smartphone and cellular plan (if applicable)
FTI Perks & Discounts at retailers and businesses
Upscale offices close to public transportation

Company

FTI Consulting

twittertwittertwitter
Glassdoor4.0
company-logo
FTI Consulting is the leading global expert firm for organizations facing crisis and transformation, with more than 7,900 employees located in 32 countries and territories.
dateFounded in 2006
location
Danvers, Massachusetts, USA
people-size5001-10000 employees
web-link
http://www.thinkfirst.us

H1B Sponsorship

FTI Consulting has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (10)
2024 (12)
2023 (2)
2022 (9)
2021 (8)
2020 (3)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Sophie Ross
Global CEO of FTI Technology
linkedin
leader-logo
Steven Gunby
President and Chief Executive Officer
linkedin

Recent News

Globe Newswire
FTI Consulting Announces Asia Leadership Appointment
2024-05-07
thefly.com
FTI Consulting announces Beji Varghese joins as Senior Managing Director
2024-04-29
SeekingAlpha
FTI Consulting GAAP EPS of $2.23 beats by $0.48, revenue of $928.55M beats by $26.78M
2024-04-25
Company data provided by crunchbase