Job Description

Sr. FLoD Technology/Privacy Compliance Risk Officer at Santander Holdings USA Inc summary:

The Sr. FLoD Technology/Privacy Compliance Risk Officer monitors and enforces compliance with technology-related regulations and industry standards within a financial institution. This role involves risk assessment, regulatory advisory, collaboration with IT and business units, and overseeing data privacy and cybersecurity controls. The officer ensures ongoing compliance, supports audit processes, and promotes a strong culture of risk management and data protection.

Sr. FLoD Technology/Privacy Compliance Risk OfficerCountry: United States of America

Your Journey Starts Here:

Santander is a global leader and innovator in the financial services industry. We believe that our employees are our greatest asset. Our focus is on fostering an enriching journey that empowers you to explore diverse career opportunities while nurturing your personal growth. We are committed to creating an environment where continuous learning and development are prioritized, enabling you to thrive both professionally and personally. Here, you will find ample opportunities to connect and collaborate with talented colleagues from around the world, sharing insights and driving innovation together. Join us at Santander, where you are supported by a culture of engagement and a commitment to your success.

An exciting journey awaits, if you are interested in exploring the possibilities We Want to Talk to You!

The Difference You Make:

The Sr. FLoD Technology/Privacy Compliance Risk Officer represents the First Line of Defense (FLoD) is responsible for monitoring, assessing, and enforcing compliance with technology-related regulations, policies, and industry standards within the financial institution. This role ensures that all technology operations and digital processes meet regulatory requirements, minimize risk, and protect the institution’s data, assets, and client information. The Sr. FLoD Compliance Risk Officer will perform key risk management role by assisting the Director of FLoD Technology and Operations Compliance in providing regulatory and compliance advisory support to FLoD.

Essential Functions:

• Serve as a liaison between Compliance, IT, and Business Units, providing guidance on technology-related compliance issues.
• Support project teams on technology risk management during new system implementations or technology changes.
• Monitor, interpret, and implement relevant laws, regulations, and guidelines (e.g., GDPR, CCPA, GLBA, NYDFS 23 NYCRR 500) as they relate to technology and cybersecurity.
• Advise senior management and stakeholders on regulatory changes and compliance requirements affecting technology use and data management.
• Provide regulatory guidance and support on business procedures to ensure compliance with relevant technology regulations and align with industry standards (e.g., NIST, ISO 27001) and best practices for data privacy and cybersecurity.
• Support Risk and Control Self-Assessment (RCSA) risk assessments and identify gaps in the technology and data management processes that may lead to regulatory or compliance risks.
• Collaborate with IT and security teams to implement controls and risk mitigation measures in line with regulatory requirements.
• Ensure ongoing monitoring and reporting of compliance risks associated with technology systems and infrastructure.
• Work closely with Compliance Privacy Officers(s) to implement and oversee data privacy policies and ensure compliance with data protection regulations.
• Monitor data access controls, encryption, and data management protocols to protect sensitive information.
• Prepare and present reports to regulatory bodies and senior management regarding compliance status and audit findings.
• Implement corrective actions for audit findings and monitor their progress.
• Promote a culture of compliance by raising awareness of technology and data protection requirements across the organization.
• Work with incident response teams to investigate technology-related compliance breaches or security incidents.
• Provide recommendations and coordinate remediation actions to resolve incidents and prevent recurrence.

What You Bring:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Qualifications:

Education and Experience

• Education: Bachelor’s degree in Finance, Information Technology, Business, or a related field. A Master’s degree or relevant certification (e.g., CISA, CISM, CISSP, CRISC) is a plus
• Experience: 5+ years of experience in technology compliance, IT risk management, or a related field within the financial services industry.

Skills & Abilities

• Strong knowledge of regulatory frameworks (e.g., SOX, GDPR, FFIEC, FINRA, OCC) and industry standards for data security and privacy.
• Proficiency in risk assessment methodologies and compliance auditing techniques.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work collaboratively across departments and communicate complex compliance requirements effectively.

It Would Be Nice For You To Have:

• Established work history or equivalent demonstrated through a combination of work experience, training, military service, or education.

Risk Culture:

We embrace a strong risk culture and all of our professionals at all levels are expected to take a proactive and responsible approach toward risk management.

EEO Statement:

At Santander, we value and respect differences in our workforce. We actively encourage everyone to apply. Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.

Working Conditions :

Frequent minimal physical effort such as sitting, standing and walking is required for this role. Depending on location, occasional moving and lifting light equipment and/or furniture may be required .

Employer Rights:

This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate your employment at any time for any reason.

What To Do Next :

Review the internal eligibility guidelines here . If this sounds like a role you are interested in, then please apply.

We are committed to providing an inclusive and accessible application process for all candidates. If you require any assistance or accommodation due to a disability or any other reason, please contact us at TAOps@santander.us to discuss your needs.

Benefits:
Santander Benefits - 2025 Santander OnGoing/NH eGuide (foleon.com)

Primary Location: Quincy, MA, 1 Enterprise Drive-Quincy-Corp

Other Locations: Massachusetts-Quincy,Florida-Miami,Texas-Dallas,Florida-Miami

Organization: Santander Holdings USA, Inc.

The base pay range for this position is posted below and represents the annualized salary range. For hourly positions (non-exempt), the annual range is based on a 40-hour work week. The exact compensation may vary based on skills, experience, training, licensure and certifications and location.

Salary: $86,250 - $155,000/year

Keywords:

technology compliance, privacy compliance, risk management, data privacy, cybersecurity, regulatory compliance, financial services, GDPR, CCPA, risk assessment

Job Tags

Hourly pay, Contract work, Work experience placement,

Similar Jobs