Privacy Strategy Lead
In this role, you will shape a strong privacy and data risk management environment across Consumer and Community Banking by translating regulatory change into clear, actionable outcomes. You will partner with Legal, Compliance, Product, Engineering, Controls, and firmwide stakeholders to build scalable privacy approaches that enable innovation and strengthen customer trust. You will lead high-visibility initiatives, influence senior stakeholders, and help embed privacy into product design and operational processes.
As a Privacy Strategy Lead at JPMorganChase, you will drive privacy initiatives by developing frameworks that enable practical operating models, controls, and product requirements. You will advise stakeholders on privacy risks and trade-offs, coordinate delivery across multiple teams, and ensure documentation, artifacts, and communications support effective implementation and governance.
Job responsibilities:
- Analyze privacy regulatory changes and document business impacts and implementation requirements.
- Track and assess emerging privacy legislation globally in partnership with Legal, Governance, and firmwide stakeholders.
- Support compliance with U.S. and global privacy regulations by assessing jurisdictional obligations and developing implementation frameworks.
- Provide guidance to business and product owners on online tracking and advertising technology (AdTech) activities.
- Collaborate with cross-functional teams to integrate privacy into business processes, control forums, product development, and strategic initiatives.
- Manage stakeholder communications and coordinate delivery across multiple teams.
- Maintain current documentation supporting privacy initiatives (e.g., requirements, decisions, controls, implementation plans).
- Develop executive-level materials summarizing key decisions, risks, impacts, and recommendations.
Required qualifications, capabilities, and skills:
- Strong working knowledge of data privacy and data protection regulations (e.g., CCPA, GLBA, GDPR, COPPA) and ability to translate obligations into operational and product requirements.
- Experience implementing privacy requirements across multiple jurisdictions using a strategic, scalable approach.
- Experience assessing risk and implementing controls for online tracking and advertising technology within U.S. and global privacy frameworks.
- Strong executive communication skills, including presenting risks, trade-offs, and recommendations.
- Proven ability to build partnerships across functions and manage multiple initiatives with clear milestones and outcomes.
- Comfort with complex data and technical concepts; ability to work effectively with product and engineering partners.
Preferred qualifications, capabilities, and skills:
- 5+ years leading large, complex enterprise programs, setting strategic objectives, and driving execution.
- Experience implementing privacy regulatory requirements within a large financial institution.
- Experience with consent management platforms and tag management systems.
- Experience performing technical analysis of online tracking and advertising technology to support compliance with applicable privacy regulations.
- IAPP certifications (for example, CIPP/US, CIPP/E, CIPM).