FTI Consulting
Senior Director, Data Governance & Privacy Operations (GRC) | Technology (Multip
FTI Consulting, Los Angeles, California, United States, 90079
Senior Director, Data Governance & Privacy Operations (GRC) | Technology (Multiple Locations)
This range is provided by FTI Consulting. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range $119,500.00/yr - $266,000.00/yr
Who We Are
FTI Consulting is the leading global expert firm for organizations facing crisis and transformation. We work with many of the world's top multinational corporations, law firms, banks and private equity firms on their most important issues to deliver impact that makes a difference. From resolving disputes, navigating crises, managing risk and optimizing performance, our teams respond rapidly to dynamic and complex situations. At FTI Consulting, you\'ll work side-by-side with leaders who have shaped history, helping solve the biggest challenges making headlines today. From day one, you\'ll be an integral part of a focused team where you can make a real impact. You\'ll be surrounded by an open, collaborative culture that embraces diversity, recognition, professional development and, most importantly, you.
About The Role The Senior Director works as a member of our in-house Service Delivery, Privacy, AI Governance & GRC team within the Technology segment of FTI Consulting. In this operational leadership position, you will foster intergroup relationships while ensuring governance, compliance and best practices. You help lead global privacy operations, third party risk management, service delivery and governance for the Technology segment by working closely with the Vice President, legal, sales, DPO and data center operations teams to ensure compliance with applicable regulations, laws and industry standards. With your passion for data protection and responsible innovation, you will champion governance and risk management initiatives to ensure Privacy by design and security remain embedded into scalable operations, negotiations, content, contracts, products and the delivery of services. You will lead and drive core program objectives and product solutions by leveraging your knowledge of hyperscale/SaaS technology and risk management with technical, GRC and legal acumen.
The Ideal Candidate Will Have
Exceptional verbal and written communication skills and the ability to quickly evaluate translate complex regulatory or technical needs into practical, concise and actionable direction
Expert familiarity with ethical AI principles, bias detection, and mitigation techniques
A demonstrated stable work history working in a similar role
The ability to efficiently manage multiple tasks and prioritize changing workloads or competing priorities
The ability and desire to take initiative, work with autonomy, quickly risk-assess and prioritize based on various factors including overall business value
The ability to develop and maintain strong partnerships and influence across organizations at all levels without direct reporting relationships
A self-starter mindset who has the confidence and demonstrated experience to make complex decisions at pace; demonstrated ability to effectuate change and diplomatically identify and resolve risks/noncompliance
What You'll Do
Partner with various stakeholders to ensure appropriate privacy and data protection provisions are incorporated into customer, vendor, partner and other GTM content
Proactively monitor applicability and compliance with data protection, Cyber and AI regulations/standards (e.g., GDPR, CCPA, EU AI Act, EU AI pact, DORA, etc.); assess regulations for applicability, context and operationalize into various workstreams
Exercise sound judgment to effectively assess, communicate, balance and resolve risk in the provision of compliance guidance to the business
Ensure AI/ Development and other Tech initiatives or products comply with regulations, data privacy laws, and industry best practices
Partner with teams and data stewards to coordinate and perform various audits and assessments (PIA, DPIA, TIA, AI impact assessment, Data Inventories, etc.) as needed to support privacy by design, drive operational accountability and ensure ongoing compliance and risk management; Maintain risk registers and risk matrices to support PIMS, etc.
Review and negotiate both client and third party agreements accounting for compliance and alignment with standard positions, cross border transfers in order to enable product/ solution delivery and client engagements; onboard third parties as required
Govern risk exception handling for sales enablement & product risk acceptance; ensuring ethical considerations and responsible digital governance principles are integrated into all endeavors
Collaborate with the Information Security, compliance and legal teams to create content, CBT training, guidance and ensure employee awareness regarding data privacy and security risks and provide relevant training and newsletters
Collaborate on administration, areas of automation, create content, and provide support of various systems: Salesforce, TRUST site, TPRM system (Prevalent) and AI CLM
Champion and evangelize new technology and policy as needed to further strengthen governance and enforce policies and frameworks that ensure ethical, secure, and compliant solution deployment.
Support and lead initiatives as required under the teams GRC charter
How You'll Grow We are committed to investing and supporting you in your professional development and we have developed a range of programs focused on fostering leadership, growth and development opportunities. We aim to promote continuous learning and individual skills development through on-the-job learning, self-guided professional development courses and certifications. You\'ll be assigned a dedicated coach to mentor, guide and support you through regular coaching sessions and serve as an advocate for your professional growth.
As you progress through your career at FTI Consulting, we offer tailored programs for critical professional milestones to ensure you are prepared and empowered to take on your next role.
Basic Qualifications What You Will Need To Succeed
Bachelor's or Master\'s degree in a relevant field, such as computer science, engineering, law or public policy.
5 years of experience in data governance, privacy and/or AI governance, policy, or related fields.
2 years navigating, negotiating, and reviewing commercial agreements involving complex data protection, information technology and security schedules, cross border data transfers and operational service levels.
15 or more years of total applicable work experience with at least 10 of those years in information technology, information security and/or operational risk management in the context of enterprise IT systems and specifically, SaaS, IaaS, hyperscale or hybrid cloud environments.
Any of the following certifications: Certified Information Privacy Professional (CIPP), Artificial Intelligence Governance Professional (AIGP), Certified Risk Professional (CRP), CRISC (Certified in Risk and Information Systems Control), or Certified Regulatory Compliance Manager (CRCM).
Demonstrated experience synthesizing legal, regulatory, and contractual obligations into workstreams and related policy.
Expert knowledge of domestic and global data protection regulations and security frameworks regulations (such as GDPR, CCPA, CPRA, HIPAA, GLBA, NIST, ISO 27701, ISO 42001, etc.) and applying them in a complex technology environments.
Preferred Qualifications
Juris Doctor or Masters in Law strongly preferred. While this position will not be acting as legal counsel for FTI, in depth demonstrative legal acumen is required
Demonstrated project management expertise
Familiarity and ideally, previous experience with at least one major data governance enterprise platform (i.e., One Trust), vendor risk management system and a Contract Lifecycle Management system (i.e. Ironclad, DocuSign, Conga, Luminance, etc.)
Experience with Privacy Enhancing Technologies
E-discovery or legal operations subject matter expertise
Seniority level
Director
Employment type
Full-time
Job function
Information Technology Industries: Business Consulting and Services
#J-18808-Ljbffr
Base pay range $119,500.00/yr - $266,000.00/yr
Who We Are
FTI Consulting is the leading global expert firm for organizations facing crisis and transformation. We work with many of the world's top multinational corporations, law firms, banks and private equity firms on their most important issues to deliver impact that makes a difference. From resolving disputes, navigating crises, managing risk and optimizing performance, our teams respond rapidly to dynamic and complex situations. At FTI Consulting, you\'ll work side-by-side with leaders who have shaped history, helping solve the biggest challenges making headlines today. From day one, you\'ll be an integral part of a focused team where you can make a real impact. You\'ll be surrounded by an open, collaborative culture that embraces diversity, recognition, professional development and, most importantly, you.
About The Role The Senior Director works as a member of our in-house Service Delivery, Privacy, AI Governance & GRC team within the Technology segment of FTI Consulting. In this operational leadership position, you will foster intergroup relationships while ensuring governance, compliance and best practices. You help lead global privacy operations, third party risk management, service delivery and governance for the Technology segment by working closely with the Vice President, legal, sales, DPO and data center operations teams to ensure compliance with applicable regulations, laws and industry standards. With your passion for data protection and responsible innovation, you will champion governance and risk management initiatives to ensure Privacy by design and security remain embedded into scalable operations, negotiations, content, contracts, products and the delivery of services. You will lead and drive core program objectives and product solutions by leveraging your knowledge of hyperscale/SaaS technology and risk management with technical, GRC and legal acumen.
The Ideal Candidate Will Have
Exceptional verbal and written communication skills and the ability to quickly evaluate translate complex regulatory or technical needs into practical, concise and actionable direction
Expert familiarity with ethical AI principles, bias detection, and mitigation techniques
A demonstrated stable work history working in a similar role
The ability to efficiently manage multiple tasks and prioritize changing workloads or competing priorities
The ability and desire to take initiative, work with autonomy, quickly risk-assess and prioritize based on various factors including overall business value
The ability to develop and maintain strong partnerships and influence across organizations at all levels without direct reporting relationships
A self-starter mindset who has the confidence and demonstrated experience to make complex decisions at pace; demonstrated ability to effectuate change and diplomatically identify and resolve risks/noncompliance
What You'll Do
Partner with various stakeholders to ensure appropriate privacy and data protection provisions are incorporated into customer, vendor, partner and other GTM content
Proactively monitor applicability and compliance with data protection, Cyber and AI regulations/standards (e.g., GDPR, CCPA, EU AI Act, EU AI pact, DORA, etc.); assess regulations for applicability, context and operationalize into various workstreams
Exercise sound judgment to effectively assess, communicate, balance and resolve risk in the provision of compliance guidance to the business
Ensure AI/ Development and other Tech initiatives or products comply with regulations, data privacy laws, and industry best practices
Partner with teams and data stewards to coordinate and perform various audits and assessments (PIA, DPIA, TIA, AI impact assessment, Data Inventories, etc.) as needed to support privacy by design, drive operational accountability and ensure ongoing compliance and risk management; Maintain risk registers and risk matrices to support PIMS, etc.
Review and negotiate both client and third party agreements accounting for compliance and alignment with standard positions, cross border transfers in order to enable product/ solution delivery and client engagements; onboard third parties as required
Govern risk exception handling for sales enablement & product risk acceptance; ensuring ethical considerations and responsible digital governance principles are integrated into all endeavors
Collaborate with the Information Security, compliance and legal teams to create content, CBT training, guidance and ensure employee awareness regarding data privacy and security risks and provide relevant training and newsletters
Collaborate on administration, areas of automation, create content, and provide support of various systems: Salesforce, TRUST site, TPRM system (Prevalent) and AI CLM
Champion and evangelize new technology and policy as needed to further strengthen governance and enforce policies and frameworks that ensure ethical, secure, and compliant solution deployment.
Support and lead initiatives as required under the teams GRC charter
How You'll Grow We are committed to investing and supporting you in your professional development and we have developed a range of programs focused on fostering leadership, growth and development opportunities. We aim to promote continuous learning and individual skills development through on-the-job learning, self-guided professional development courses and certifications. You\'ll be assigned a dedicated coach to mentor, guide and support you through regular coaching sessions and serve as an advocate for your professional growth.
As you progress through your career at FTI Consulting, we offer tailored programs for critical professional milestones to ensure you are prepared and empowered to take on your next role.
Basic Qualifications What You Will Need To Succeed
Bachelor's or Master\'s degree in a relevant field, such as computer science, engineering, law or public policy.
5 years of experience in data governance, privacy and/or AI governance, policy, or related fields.
2 years navigating, negotiating, and reviewing commercial agreements involving complex data protection, information technology and security schedules, cross border data transfers and operational service levels.
15 or more years of total applicable work experience with at least 10 of those years in information technology, information security and/or operational risk management in the context of enterprise IT systems and specifically, SaaS, IaaS, hyperscale or hybrid cloud environments.
Any of the following certifications: Certified Information Privacy Professional (CIPP), Artificial Intelligence Governance Professional (AIGP), Certified Risk Professional (CRP), CRISC (Certified in Risk and Information Systems Control), or Certified Regulatory Compliance Manager (CRCM).
Demonstrated experience synthesizing legal, regulatory, and contractual obligations into workstreams and related policy.
Expert knowledge of domestic and global data protection regulations and security frameworks regulations (such as GDPR, CCPA, CPRA, HIPAA, GLBA, NIST, ISO 27701, ISO 42001, etc.) and applying them in a complex technology environments.
Preferred Qualifications
Juris Doctor or Masters in Law strongly preferred. While this position will not be acting as legal counsel for FTI, in depth demonstrative legal acumen is required
Demonstrated project management expertise
Familiarity and ideally, previous experience with at least one major data governance enterprise platform (i.e., One Trust), vendor risk management system and a Contract Lifecycle Management system (i.e. Ironclad, DocuSign, Conga, Luminance, etc.)
Experience with Privacy Enhancing Technologies
E-discovery or legal operations subject matter expertise
Seniority level
Director
Employment type
Full-time
Job function
Information Technology Industries: Business Consulting and Services
#J-18808-Ljbffr