People sitting at table all looking in the same direction
Back to search results

Compliance and Operational Risk Manager

London, , United Kingdom

Job Description:

Job Title: Compliance and Operational Risk Manager

LOB: Enterprise Privacy

Corporate Title: Vice President or Director

Location: London

The Enterprise Privacy Compliance and Operational Risk is looking for a seasoned privacy professional to join as a Compliance and Operational Risk manager.

In the role you will need prior experience advising on EMEA data privacy and cross border data movement activities and implementing a privacy compliance program.  This role will have visibility to senior legal/risk/compliance/business leaders, and be expected to help set the strategic direction for privacy within the region.

Role Description:

The Enterprise Area of Coverage (“EAC”) Compliance and Operational Risk Manager for Data Privacy is a subject matter expert responsible for contributing to the independent compliance and operational risk oversight of Front Line Unit (“FLU”) and Control Function (“CF”) performance and any related third party/vendor relationships by engaging with the risk officer teams for the FLUs/CFs to independently advise those leaders on effectively managing compliance and operational risk in the area of coverage for the EMEA region. This role is responsible for providing EMEA wide oversight of adherence to the Privacy and Cross Border Data Movement Enterprise Policy and specific privacy and cross border data movement related laws, rules, regulations, and regulatory guidance, such as the EU General Data protection Regulation through the identification, escalation and timely mitigation of compliance and operational risks in alignment with the Compliance and Operational Risk Management Program and the Global Compliance Enterprise Policy (“GC Policy”).

As the Enterprise Privacy Compliance and Operational Risk Program Manager your responsibilities will include:

  • Working closely with cross-functional teams in legal/risk/compliance to advise the business on data privacy and cross border data movement activities within the EMEA regional primarily; may have global data privacy responsibilities as well

  • Overseeing the global privacy compliance program in EMEA including but not limited to identifying and remediating issues, development of monitoring and testing activities, implementation of regulatory changes

  • Overseeing key regulatory activities impacting EMEA including General Data Protection Regulation (GDPR) and Safe Harbor/Privacy Shield requirements

  • Collaborating with Enterprise Privacy and regional leadership to provide strategic guidance on emerging privacy trends and requirements

Core Skills:

  • Privacy compliance and/or cross border data movement experience including implementing and overseeing global privacy law, rules, regulations (i.e. EU General Data Protection Regulation)

  • CIPP or other certification

  • Ability to build relationships internally and externally

  • Ability to think strategically

  • Excellent written and oral communication skills

  • A Self-motivated, hands-on, driven individual

Bank of America

Every day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates.

In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here.

Good conduct and sound judgement is crucial to our long term success. It’s important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind-set are the cornerstones of our Code of Conduct and are at the heart of managing risk well.

We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio-economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience.

We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements.

As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment.

Learn more about this role

Full time


Manages People:


Talent Acquisition Contact:

Referral Bonus:

Street Address

Primary Location: