Privacy Risk & Compliance Lead Consultant - Chicago, IL

At Allstate, great things happen when our people work together to protect families and their belongings from life’s uncertainties. And for more than 90 years our innovative drive has kept us a step ahead of our customers’ evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection.

Job Description

We are looking for a highly motivated and action-oriented privacy risk and compliance professional!

In this role, you will support the team that designs, develops, implements, and maintains the global privacy and regulatory compliance programs at Allstate. You will be responsible for conducting the privacy and compliance impact assessments that evaluate whether new technologies or proposed new uses or sharing of personal information meet privacy requirements to ensure risks are appropriately mitigated.

We need a strong contributor who can drive the execution of multiple projects, while partnering with the broader legal and compliance teams. The successful candidate will be a compliance professional who is passionate about ensuring privacy compliance while providing exceptional internal business partner experiences and promoting digital trust and transparency. In this role, the person partners with other enterprise subject matter experts including business areas, risk, technology, cybersecurity and law & regulation.

Responsibilities:

• Conducts, reviews, and documents privacy impact assessments / data protection impact assessments in accordance with privacy best practices and global standards
• Has a solid understanding of the information lifecycle and can provide guidance and expertise on privacy requirements and standards
• Provides guidance, consultation, subject matter expertise and thought leadership in the privacy space including partnering with third party and security risk groups
• Takes a strong role to help ensure privacy by design through functional knowledge of professional standards and trends along with an understanding of core business processes
• Assists in establishing, managing, and monitoring appropriate privacy controls
• Collaborates with security and procurement risk groups to assess supplier risk holistically
• Assists in the proactive build of a strong compliance and privacy mindset to ensure these programs remain a company priority
• Identifies and can remove barriers to change and recommends new methods that contribute to executing compliance or privacy operations; identifies opportunities and implements process design and optimization
• Self directs own work and may provide some coaching, performance feedback, and final review/approval for the work of others
• Provides guidance to team and clients who develop, evaluate, share, and implement tangible ideas and materials to ensure compliance and privacy controls are appropriate
• Demonstrate change resilience and execute processes effectively and efficiently with a focus on continuous improvement and digitization when appropriate.
• Assist in the proactive build of a strong privacy and compliance mindset by collaborating with business teams to integrate privacy measures into design and implementation of projects / new initiatives
• Prepares metrics to provide insights on program performance

Supervisory Responsibilities:

• This job does not have supervisory duties.

Education and Experience:

• 4-year Bachelors Degree (Preferred)
• 5 or more years of experience (Preferred)
• Privacy certification such as IAPP Certified Information Privacy Professional or similar preferred
• Strong experience with and/or knowledge of privacy controls, protocols, tools, and best practices such as PCI, HIPAA, NIST, GDPR, CCPA and Privacy by Design

Functional Skills:

• Ability to influence, gain consensus, and seek ways to unite disparate ideas with practical work/project plans; work with cross-functional teams from all areas of an organization, including offsite, remote, and offshore resources
• Remain comfortable in the face of ambiguity while continuing to move work toward a goal
• Form solid assumptions and make decisions and recommendations based on a diverse pool of information
• Highly functional written, verbal, and presentation skills
• Ability to identify and adapt to communication styles of different audiences, including technical and non-technical resources
• Strong organizational and project management skills
• Recognizes gaps in process governance, and assists in the design and implementation of holistic solutions
• Ability to evolve and stay current with regulations, technology, industry, ethics, and privacy best practices in a dynamic environment
• Computer skills, including MS Office suite, used in or related to the tasks performed
• Thrives in change; able to multi-task and make effective decisions in a fast-paced, deadline-driven environment

Skills

Compensation