Rwpss Privacy Compliance Associate

Compliance Associate
The Compliance Advisor assists with broader planning of business unit compliance programs in order to ensure organization functions are in compliance with all relevant laws, regulations, and policies and to prevent illegal, unethical, or improper business practices within the organization. Working independently under general supervision, this job assists team members with identifying, investigating, and reporting compliance risks.

Key Responsibilities and Duties
- Supports compliance risk assessments to identify compliance issues, concerns, and deficiencies.
- Assists with investigations in response to complaints and/or potential violations of rules, regulations, policies, and procedures.
- Supports organization and implementation of compliance audits.
- Assists with the design and implementation of corrective action plans to resolve problematic compliance issues and to ensure that compliance deficiencies are corrected.
- Drafts reports on the results of compliance and ethics initiatives of the business unit.
- Maintains documentation of compliance activities to provide a record of issues, and to ensure easy accessibility and retrieval of documents.
- Assists with the implementation of preventative measures and compliance processes, while contributing to the revision of policies and procedures to improve the general operation of business unit compliance programs as needed.

Educational Requirements
- University (Degree) Preferred

Work Experience
- 2+ Years Required; 3+ Years Preferred

Physical Requirements
- Physical Requirements: Sedentary Work

Career Level
6IC

The Compliance Associate supports broader planning of privacy compliance programs in order to ensure organization functions are in compliance with relevant privacy laws, regulations, policies, and standards. Working in partnership with US-based Compliance officers, this job focuses on large projects and processes to identify, investigate, and report compliance risks, and provides recommendations for revisions to policies and procedures.

Key Duties & Responsibilities:

- Organizes and performs privacy compliance risk assessments and monitoring activities to identify compliance issues, concerns, and deficiencies.
- Performs all phases of privacy compliance monitoring activities, including developing the scope, documenting applicable risks and controls, developing reproducible scripts, analyzing and interpreting findings, documenting and tracking issues and observations, and drafting written reports.
- Supports the gathering of evidentiary documentation from business partners in response to various privacy risk and compliance assessments.
- Monitors, tracks, designs, and implements corrective action plans to resolve compliance issues and to ensure that compliance deficiencies are corrected
- Works cross-functionally with the TIAA Enterprise Privacy Office (EPO) to provide a unified approach to address privacy risk across TIAA.
- Cultivates partnerships across lines of business with cross-functional stakeholders responsible for privacy.
- Compiles privacy risk and compliance operational metrics that may be used for management and committee reporting

Management/Leadership Responsibility:
N/A

Budget Responsibility:
N/A

Impact:
Nature of Impact - Monitoring and validating that our organization is compliant with federal and international regulations.

Area of Impact - Works extensively across departments e.g. legal, cybersecurity, data management, and IT

Problem Solving:
Analytical skills are needed to collect and conduct initial assessment of various metrics data; execute monitoring responsibilities; and facilitate administration of the privacy impact assessments that will need to be reviewed, monitored and decisioned on according to internal procedures.

Functional Knowledge:

- Knowledge of global Privacy regulations a plus.

Business or Industry Knowledge
- A thorough understanding of compliance program elements (e.g., monitoring, procedures administration)

Interactions / Interpersonal Skills:

- Excellent verbal, written and interpersonal communication skills.

Job Requirements And Qualifications:
Required Education:
Preferred Education:
Masters

Required Experience:
3-5 years

Preferred Experience:
5-7 years

Skills and Abilities:

- Knowledge of compliance, risk management, legal or related function
- Familiar with privacy laws and regulations, including GDPR, CCPA, CANSPAM, TCPA, and the FCRA.
- Shift timings 3:00 PM IST to 12:00 AM IST (as the role require adequate oversight from US Compliance officers)

Required Licenses/Certifications:
None

Required Licenses/Certifications:
None

Related Skills

Adaptability, Business Process Understanding, Compliance, Compliance Trends, Critical Thinking, Detail-Oriented, Influence, Relationship Management, Risk Monitoring, Strategic Thinking

___________________________________________________

Company Overview

TIAA Global Capabilities was established in 2016 with a