Compliance and Privacy AssociateApply now Job ID R90915 Updated date 01/28/2020 Location Toronto, Ontario
At Capital One, we’re building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity, simplicity, and humanity to banking. We measure our efforts by the success our customers enjoy and the advocacy they exhibit. We are succeeding because they are succeeding.
Guided by our shared values, we thrive in an environment where collaboration and openness are valued. We believe that innovation is powered by perspective and that teamwork and respect for each other lead to superior results. We elevate each other and obsess about doing the right thing. Our associates serve with humility and a deep respect for their responsibility in helping our customers achieve their goals and realize their dreams. Together, we are on a quest to change banking for good.
Roles and Responsibilities of the position include, but may not be limited to:
Reports directly to the Privacy Office Manager and is responsible for the daily operation and administration of the Privacy Program
Tracks privacy metrics and prepares reports related to privacy to meet governance and business requirements
Serves as a privacy subject matter expert for the Personal Information Protection and Electronic Documents Act and provides consultation to all LOBs pertaining to privacy-related practices
Investigates, documents and responds to any privacy requests, complaints and inquiries in accordance with Capital One’s policies, standards, procedures and processes
Monitors compliance with Capital One’s Privacy Standard and other Enterprise policies, standards and procedures, identifying specific problem areas. Provides recommendations for improvements to enhance privacy compliance and implements approved initiatives
Identifies privacy risks in day-to-day operations, including within new and existing projects and programs. Works with the LOB to implement improvements to privacy compliance
Provides privacy incident guidance within the existing incident and events management process
Guides the business through Capital One’s privacy breach response plan to assist them in collecting and submitting the required information. Coordinates the privacy breach reporting process, supporting and providing consultation to the LOB on breach obligations
Maintains a database of privacy breaches in compliance with applicable privacy laws, regulations and guidelines
Manages audit requests (second and third line) and provides advice and guidance to the LOB on privacy related audit inquiries as necessary.
Works with the second line testing teams to include privacy audits to ensure compliance with Capital One’s privacy policies, standards, procedures and processes.
Supports the development and delivery of privacy training for the LOB
Keeps current on privacy trends, best practices and all guidelines and other documents issued by the federal Privacy Commissioner.
Inspires a compliance privacy culture, developing and leading approved initiatives to enhance privacy awareness throughout the LOB
Performs other Privacy, Governance and Compliance duties as may be assigned
The right candidate will have:
A demonstrated knowledge and experience in compliance with the Personal Information Protection and Electronic Documents Act, regulations and establishing best practices
Superior writing and editing skills with the ability to construct well-founded, clear, and concise analyses and recommendations
The ability to prioritize and manage multiple processes and projects at once
Experience in data mapping and data governance
Knowledge related to data privacy, information/cyber security and information risk matters
A proven record as a results driven individual who is comfortable working autonomously in a fast-paced evolving environment
The ability to communicate effectively with clients and within all levels of the organization, establish and maintain positive relationships and build teams.
Excellent attention to detail
At least three years of professional work experience in the field of privacy
At least three years of experience working with the Privacy Act or PIPEDA
At least three years working experience in a regulated financial services organization or a highly regulated industry
Master’s or bachelor’s degree from an accredited college or university
CIPP(C) / CIPM designation or equivalent
Three years working experience in governance, risk, legal, audit, compliance, or in a second line of defense role
Experience working with regulators (OPC and OSFI)
Ability to adopt a risk-based approach in making recommendations to implement practical policies and procedures
Ability to work independently with minimal direction and in a team environment
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at RecruitingAccommodation@capitalone.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
For technical support or questions about Capital One's recruiting process, please send an email to Careers@capitalone.com
Capital One does not provide, endorse nor guarantee and is not liable for third-party products, services, educational tools or other information available through this site.
Capital One Financial is made up of several different entities. Please note that any position posted in Canada is for Capital One Canada, any position posted in the United Kingdom is for Capital One Europe and any position posted in the Philippines is for Capital One Philippines Service Corp. (COPSSC).