Wintrust Financial Corporation

Apply for this job

VP, Personal Data Rights and Privacy - Compliance (Finance)



Wintrust is a financial holding company with approximately $62 billion in assets whose common stock is traded on the NASDAQ Global Select Market. Guided by its “Different Approach, Better Results” philosophy, Wintrust offers the sophisticated resources of a large bank while providing a community banking experience to each customer. Wintrust operates more than 200 retail banking locations through 16 community bank subsidiaries in the greater Chicago, southern Wisconsin, west Michigan, northwest Indiana, and southwest Florida market areas. In addition, Wintrust operates various non-bank business units, providing residential mortgage origination, wealth management, commercial and life insurance premium financing, short-term accounts receivable financing/outsourced administrative services to the temporary staffing services industry, and qualified intermediary services for tax-deferred exchanges. Our unique business model is a competitive strength and value driver, powered by our talented colleagues who put our customers first and achieve better results for our clients.

Why join us?

  • An award-winning culture! We are rated a Top Workplace by the Chicago Tribune (past 11 years) and Employee Recommended award by the Globe & Mail (past 6 years).

  • Competitive pay and discretionary or incentive bonus eligible.

  • Comprehensive benefit package including medical, dental, vision, life, a 401k plan with a generous company match and tuition reimbursement to name a few

  • Promote from within culture.

Why join this team?

  • Hybrid Work Schedule – Split your time working remotely and at our Corporate Headquarters in Rosemont, IL.

  • We foster an inclusive environment for an individual to grow and work independently.

  • Opportunity to interact with management level, experienced professionals - higher visibility.

  • Wintrust has a great compliance culture that comes from the top.

  • Gain experience and further your career by joining a growing organization.

Position Overview

The Wintrust Personal Data Rights and Privacy Officer will serve as a good steward of customer data and work in collaboration with the information security and data governance teams to protect the privacy and data rights of Wintrust's customers and consumers.  They will enhance and manage a strong Privacy program that defines, develops, connects, maintains and implements policies and processes that enable consistent, effective privacy practices which minimize risk and provide for the confidentiality of NPI/PCI/PHI/PII, paper and/or electronic, across media types.  Privacy and personal data rights is intended to be inclusive of, but is not limited to, the following rules:  GLBA/Regulation P, CCPA, TCPA, FCRA, COPPA, HIPAA, PCI, PIPEDA, GDPR, Personal Data Rights rules, and other applicable consumer protection and data rights rules.)

What You'll Do

  • Work with organization senior management, security, and data governance to develop a Personal Data Rights and Data Privacy Compliance program that integrates into the WTFC Compliance Risk framework, the Data Management Program, IT risk management framework, Information Security Program, and the PCI program.  This includes developing key performance metrics, reporting, and escalation to evaluate bank and consumer data privacy risk.

  • Manage partnerships with CSO, CDO, Risk Management, HR, Fair Banking, and Legal to ensure a consistent approach to Privacy and Personal Data Rights Compliance overseeing the risk for the bank and the consumer.  

  • Provide expert consultation to senior leadership and associate teams on privacy and personal data rights compliance-related matters, key policy requirements, impact of new products, transactions, market segments, and/or strategic initiatives.

  • Perform and oversee initial and periodic Privacy risk assessments, documentation of controls and mitigation efforts, and remediation, incorporating or rolling up existing risk assessment programs/processes where appropriate, including specific risk assessments required like PCI, HIPPA, etc.

  • Oversee communication of privacy policies, notices, and practices to customers. Maintains the Privacy Policy and recommends appropriate changes to corresponding program policies, procedures, and standards to meet objectives and regulatory change.

  • Serve as a subject matter expert who provides education to and liaise with Compliance Officers, the Business, and control partners to support the identification and assessment of compliance risks associated with organizational activities, including developing new products, services, client relationships, training programs and business practices. Provides oversight of the implementation of necessary changes to business processes, systems, third-parties, or programs in accordance with privacy and personal data rights laws, regulations, and industry standards.

  • Support the Legal team coordination of Privacy/HIPAA/PCI/data breach incidents, incident response, customer communications, regulatory conversations, and strategy.

  • Function as the Privacy Officer, PCI Officer, and the HIPAA officer.

Qualifications

  • Bachelor's Degree with 8 years of experience in Compliance, Legal, Audit, Regulatory Compliance Management, Banking or other related experience or High School Diploma (GED) with 12 years of experience in Compliance, Legal, Audit, Regulatory Compliance Management, Banking or other related experience.

  • Expertise in US federal, state, and Canadian privacy and consumer data rights laws, regulations, and industry standards; knowledge of EU rules beneficial.

  • Thorough understanding of HIPAA regulations, requirements, and guidelines as it relates to financial services.

  • Need for a thorough understanding of company data, and a strong handle of the scope of that information.

  • Hands-on experience with privacy risk assessments (i.e., PIAs, DPIAs), Privacy Incidents, and Data-Rights.

  • Ability to interpret and operationalize a broad range of complex privacy and personal data rights regulations and devise logical and pragmatic solutions.

  • Must be able to influence and skillfully manage change in the organization.

  • Excellent organizational, influence, collaboration, project management, communication, and presentation skills.

Preferred Certifications

  • Certified Regulatory Compliance Manager (CRCM)

  • Certified Information Privacy Professional (CIPP)

  • Certified Information Privacy Manager (CIPM)

  • OneTrust Privacy Professional Certification

  • Payment Card Industry Professional certification (PCIP)

Benefits

Medical Insurance • Dental • Vision • Life insurance • Accidental death and dismemberment • Short-term and long term Disability Insurance • Parental Leave • Employee Assistance Program (EAP) • Traditional and Roth 401(k) with company match • Flexible Spending Account (FSA) • Employee Stock Purchase Plan at 5% discount • Critical Illness Insurance • Accident Insurance • Transportation and Commuting Benefits • Banking Benefits • Pet Insurance

#LI-HYBRID

#LI-VB1

From our first day in business, Wintrust has been proud to serve a variety of unique communities and people from all walks of life. To be Chicago's Bank® and Wisconsin's Bank®, we need to reflect that diversity both in all the communities we serve, the people we employ, the organizations we work with, and our banking and lending practices. Wintrust Financial Corporation, including community banking and financial services subsidiaries, is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity and expressions, genetic information, marital status, age, disability, or status as a covered veteran or any other characteristic protected by law.

Apply
Apply Here done