Reporting to the Head of Data Enablement, the Sr. Director Data Protection, Compliance and Governance Operations is a key role in the Global Data Office responsible for managing Equifax's implementation of data compliance and governance controls for our core data platforms. This functional manager role will work in partnership with the first line of defense in Information Security and Technology, and with Privacy, Risk and Compliance teams to develop and improve data compliance and oversight capabilities and operations. They will focus on process automation, continuous improvement and use of innovative technology solutions to protect, monitor and limit the use of sensitive data.
Equifax has a hybrid work schedule that allows for 2 days of remote work (Monday and Friday), with 3 days onsite (Tuesday, Wednesday, Thursday) every week.
This role reports to our office in Alpharetta, GA and midtown ATL. Must have flexibility to go to both office locations during the week.
This position is open to US Citizens and Green Card Holders.
Direct-hire. No C2C. No Vendors. No sponsorship.
What you'll do
Architect, design, and drive implementation of business processes, and tooling for efficient management, monitoring and oversight for compliance with data policies and standards, focusing on automation, strong controls, and user enablement.
Collaborate with Information Security, Technology, Privacy, Risk and Compliance teams to develop strategies for data protection and data retention management.
Be responsible for day-to-day operations, for surveillance on the movement of sensitive data within Equifax platforms using cloud data protection and monitoring technology.
Ensure adherence to operational KPIs, and provide regular management reporting. Leverage data analytics and performance metrics to find opportunities for optimization, cost reduction, and business value creation.
Conduct regular audits, assessments and certification for data access, retention, and data movement, identifying potential risks or vulnerabilities, and implement corrective actions.
Ensure compliance with data privacy regulations, industry standards, and internal policies governing data access, usage and retention. Report and action noncompliance.
Improve and streamline workspace and user access provisioning, management and oversight processes to enable self-service through design and implementation of new/ re-engineered processes, tooling and automation.
Drive continuous improvement initiatives to enhance user experience, and optimize governance operations.
As a functional manager, this role will coach, mentor and lead a team of data compliance and governance operations staff, developing a global center of excellence for data monitoring and oversight.
Collaborate with multi-functional teams to promote data governance standard methodologies, raise awareness of data policies, standards and control processes.
Design, develop and execute enterprise training on data risk, data governance and compliance requirements and capabilities.
Foster a culture of innovation and experimentation, encouraging the exploration of new technologies, methodologies, and standard processes in data governance and platform operations.
What experience you need
Bachelor or Masters degree in computer science, data management, information security, privacy, risk management or related discipline required; equivalent experience will be considered.
7-10 years of experience in data governance operations, technology risk management, information security, or related roles with demonstrated leadership experience.
Experience working with financial services or other regulated data.
Demonstrated experience with data and technology risk management process and control design and data control monitoring, oversight and governance operations.
Experience with data and information protection tools (Privacera, BigID, Varonis, ForcePoint etc.), and leveraging those tools to control and support data privacy and security capabilities
Experience working with cloud data platforms.
Familiarity with global and regional data sharing and privacy laws and regulations.
Knowledge of data structures and controls (segregation, tokenization, etc.) that maximize integration and compliant use.
Excellent verbal and written communication skills, ability to communicate findings and recommendations effectively to senior management.
What could set you apart
CIPP/CIPM/CIPT/CISM/CISSP or similar certifications.
Experience with or technical aptitude for designing and evangelizing advanced privacy methods (e.g., synthetic data, differential privacy, etc.)
Experience leveraging design thinking and agile methodologies and tools to drive collaborative execution.
Experience with SQL, BI tools and Google Cloud Data Analytics Platform.