Temporary Privacy Compliance Officer for Top Bank - Remote

Our client, a top bank with offices in NYC, is seeking a remote temporary Compliance/Risk officer in their privacy compliance group. This role does not require a legal background, though candidates with relevant legal experience are welcome. seeking a privacy professional to oversee privacy impact assessments (PIAs/DPIAs) for banking products, systems, and vendor relationships. This role requires strong compliance and risk management expertise, the ability to critically evaluate data practices, and the confidence to lead discussions with stakeholders across the bank. Key Responsibilities Privacy & Risk Assessment Execution • Conduct PIAs/DPIAs for new products, technology changes, and third-party engagements. • Identify personal data types, processing purposes, legal bases, and potential risks. • Evaluate alignment with privacy laws (GLBA, GDPR, CCPA/CPRA) and banking regulations. Stakeholder Engagement • Lead structured meetings with business, technology, compliance, and legal teams. • Translate regulatory requirements into business-friendly solutions. • Provide regular updates to senior management, Compliance, and the Risk Committee. Control Design & Risk Mitigation • Recommend and track mitigations for identified privacy risks. • Ensure controls align with frameworks such as NIST Privacy Framework, ISO 27701, FFIEC, and bank policies. • Partner with InfoSec and Operational Risk to integrate data privacy/security measures. Vendor & Third-Party Risk • Review vendor contracts and data processing agreements. • Conduct third-party privacy assessments and recommend remediation. Governance & Reporting • Maintain auditable records of assessments and decisions. • Produce metrics on PIA/DPIA completion, remediation timelines, and residual risks. Qualifications • 5+ years in privacy, compliance, operational risk, or information security — preferably in banking/financial services. • Knowledge of GLBA, FFIEC privacy guidelines, and general privacy laws (GDPR, CCPA/CPRA). • Strong meeting facilitation and stakeholder engagement skills. • Proven critical thinking skills for complex data flow assessments. • Excellent written and verbal communication skills. • Familiarity with privacy tools (OneTrust, Archer, ServiceNow GRC). • Preferred certifications: CIPP/US, CIPM, CRISC, or CISA. • Able to work Eastern Standard Time hours, even if remote. Preferred Experience • Financial product lifecycle knowledge (loans, deposits, digital banking). • Cloud and third-party integration risk assessment in regulated environments. • Incident response and breach notification processes. Success in This Role Means • PIAs/DPIAs completed before go-live or vendor onboarding. • High-risk findings have clear mitigation plans and ownership. • Stakeholders confident in privacy risk oversight. • Positive outcomes in audits and regulatory exams. Pay rate: $70-80/hour, depending on experience. Apply tot his job Apply tot his job