Skip to main content



The health and safety of our colleagues and candidates for employment are our highest priority. Accordingly, Citi continues to monitor the COVID-19 situation closely. We have implemented precautionary measures across our firm globally, including conducting all candidate interviews virtually on a temporary basis until further notice where needed.

ICG O&T Data Privacy Risk Officer - Vice President

Job Req ID 22491158 Primary Location Tampa, Florida; Jacksonville, Florida; New Castle, Delaware; Getzville, New York; Irving, Texas Job Category Risk Management
Apply Now

The Institutional Clients Group (ICG) Operations and Technology organization includes more than 55,000 people supporting 5,000+ programs and projects that are executed on an annual basis driving Citi’s Mission to Be the Best for Our Clients. The ICG O&T Data Privacy Risk & Controls (ICG OTRC – Privacy) team oversees data privacy governance and controls activities across the full ICG O&T book of work and also partners with ICG Business and other Citi O&T groups to ensure alignment with the Enterprise Privacy & Confidentially program. ICG OTRC – Privacy is responsible for a wide range of activities including but not limited to Governance, Privacy Program Controls and Oversight, and operational support for privacy rights request fulfillment and cross border data transfer processes The ICG O&T Data Privacy Sr.  Analyst works as an integral member of the ICG OTRC Privacy Controls team. Integrates subject matter and industry expertise within a defined area. Developed communication and diplomacy skills are required in order to guide, influence and convince others, in particular colleagues in other areas and occasional external customers. The Data Privacy Sr. Analyst is responsible for monitoring and reporting against privacy controls and supporting the privacy rights request fulfillment process, including exception and escalation management. This role also offers the opportunity to lead risk management and controls implementation efforts, process improvement, and to contribute to organizational strategy.


  • Work closely with enterprise and ICG O&T stakeholders to embed privacy by design (PbD) principles into business plans and strategic initiatives during the design and execution process;
  • Support the implementation of a ICG O&T Privacy Program operational  controls framework, and monitoring and testing of those controls;
  • Support the development and implementation of ICG O&T Privacy programs, processes and procedures to improve compliance with requirements (e.g. privacy policies, standards and tools; and updates to privacy laws, industry standards, trends and business objectives);
  • Participate in periodic internal reviews or audits to ensure compliance procedures are followed;
  • Support approved corrective action plans to address privacy risks;
  • Promote effective awareness of privacy program requirements across the organization through collaborative processes such as trainings and awareness programs
  • Act as a liaison to the privacy champions and business partners from a risk escalation and determination standpoint;
  • Be a versatile team player, display leadership qualities, and be enthusiastic in addressing new challenges as we continue to embed privacy principles across the enterprise;
  • Manage individual project priorities, deadlines and deliverables;
  • Provide subject matter expert (SME) support to ICG O&T in fulfilling regulatory and organizational requirements to protect the privacy of both client and employee personal information, while enabling business and technology innovation
  • Design, develop, enhance and operationalize privacy policies/procedures, processes and controls, including privacy metrics, personal information inventory, Privacy Impact Assessment  (PIA), Data Protection Impact Assessments (DPIAs), Privacy by Design (PbD), and Individual Rights Request Management, etc.;
  • Work with Global Chief Privacy Office colleagues and other key stakeholders (e.g. Legal, Compliance, business, technology) to successfully implement regulatory compliance initiatives (e.g. create the execution plan, guidance and procedural processes);
  • Provide ad-hoc Privacy SME guidance to business areas as and when required specifically around new projects;
  • Support the deployment of tools (automation) to enhance data privacy controls. This includes providing Privacy SME support, training, and artifacts;
  • Develop and deliver privacy education and awareness materials to external stakeholders;
  • Support company record and information management program;
  • Has the ability to operate with a limited level of direct supervision; and
  • Can exercise independence of judgement and autonomy.


  • 3+ years of experience in risk management and controls oversight in one or more of the following risk disciplines: data privacy, technology risk, audit, or compliance is desirable.
  • 5+ years of project management and business analysis is desirable.
  • Understanding of privacy principles and best practices is desirable.
  • Knowledge of privacy laws (GDPR, CCPA, etc.) is desirable.
  • Experience with conducting risk assessments in diverse operational environments
  • Experience with developing procedures and processes
  • Project management and coordination skills with proven ability to meet deadlines, prioritize assignments and manage multiple projects
  • Ability to build positive relationships across the organization
  • Well-organized, self-confident and good at maintaining strong relationships at all levels of the organization
  • Excellent communication skills – verbal & written


Job Family Group:

Risk Management


Job Family:

Operational Risk


Time Type:

Full time


Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting


Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.

Apply Now
  • Join our team
    of 220,000+
    strong diverse employees

  • Socially minded employees volunteering in communities across 90 countries

  • Meaningful career opportunities thanks to a physical presence in over 95 markets

We foster a culture that embraces all individuals and encourages diverse perspectives, where you can make an impact and grow your career. At Citi, we value colleagues that demonstrate high professional standards, a strong sense of integrity and generosity, intellectual curiosity, and rigor. We recognize the importance of owning your career, with the commitment that if you do, we promise to meet you more than half way.

Saved Jobs

You have no saved jobs

Previously Viewed Jobs

You have no viewed jobs