Head of Data Privacy & Data Regulatory Compliance

Salary / Rate Minimum: $215,000

Salary / Rate Maximum: $280,000

The minimum and maximum salary/rate information above include only base salary or base hourly rate. It does not include any another type of compensation or benefits that may be available.

Purpose of the Role

To lead and integrate the strategic and operational delivery of data privacy compliance, and records management across the Investment Bank (IB), ensuring alignment with legal, regulatory, and business requirements. The role acts as a senior lead and control owner across these domains, embedding governance, risk, and control frameworks that support sustainable and compliant data practices, driving transformation of the function through a data led, technology enabled approach. Provide regional leadership for the IB CDAO within the US region, ensuring alignment with global and regional objectives, regulatory requirements, and business priorities, acting as the primary point of contact for regional stakeholders and representing the function in cross-business forums.

Key Accountabilities

• Lead and integrate IB-wide data privacy and records management strategy and operations, ensuring compliance with legal, regulatory, and business requirements.
• Act as senior control owner for data privacy and records management, embedding strong governance, risk, and control frameworks.
• Oversee all data privacy activities, including DPIAs, RoPAs, privacy control reviews, and maintenance of privacy notices.
• Drive data privacy awareness, training, and cultural adoption across the IB.
• Govern classification, retention, storage, and disposal of records in line with Group Data & Records policies.
• Lead records assurance activities (Records TSA, RTS workshops) and manage inventories, action logs, and remediation.
• Shape and influence the IB-wide data strategy, operating model, simplification initiatives, and tooling enhancements.
• Drive transformation of the function through data-led, technology-enabled approaches aligned to industry best practice.
• Represent IB CDAO in cross-functional forums and external regulatory/legal engagements.
• Provide regional leadership for the US, acting as primary point of contact and ensuring alignment with global objectives and regulatory expectations.
• Oversee day to day regional operations, ensuring effective service delivery, policy adherence, risk management, and continuous improvement.
• Ensure compliance with all applicable US federal, state, and local regulations.
• Lead and develop the regional team, setting clear objectives, driving performance, supporting training, and enabling succession planning.
• Build strong stakeholder relationships across business units, compliance, technology, regulators, and vendors.
• Communicate regional priorities, achievements, risks, and issues to global and regional leadership.
• Maintain robust governance frameworks and ensure accurate documentation, reporting, and record keeping.

Key Requirements:

• Evidencable knowledge and skills in Financial Services, specifically Investment Banking
• Successful track record of implementing data management strategy and framework in an automated, tooling led environment.
• Good understanding of data management tooling, architecture, and application into financial services
• Strong stakeholder influencing and communication skills
• Leadership and delivery within a global, matrix delivery environment

Purpose of the role

To develop and implement data privacy policies, procedures and monitoring the adherence to these policies across the organisation. 

Accountabilities

• Identification and assessment of potential risks related to data privacy and implement measures to mitigate these risks and enhance overall data protection.
• Development and implementation of an effective incident response plan for data breaches and coordinating with relevant teams to investigate and address incidents promptly.
• Provision of data privacy training and awareness to employees by educating employees about their data privacy obligations, how to manage personal data securely, and how to identify and report data privacy breaches.
• Identification of areas for improvement and implementation of enhancements to the data privacy programme.
• Development and implementation of data privacy policies, procedures and monitoring the adherence to these policies across the organisation.
• Development and implementation of Barclays Data Privacy strategy aligned with the bank's business objectives and regulatory requirements.
• Definition and enforcement of data privacy policies and procedures to ensure data protection, security, and compliance.
• Partnering with stakeholders to drive improvements in the understanding, appropriate use and protection of personal data.
• Development and maintenance of a comprehensive data privacy governance framework aligned with regulatory requirements and industry standards.

Director Expectations

• To manage a business function, providing significant input to function wide strategic initiatives. Contribute to and influence policy and procedures for the function and plan, manage and consult on multiple complex and critical strategic projects, which may be business wide..
• They manage the direction of a large team or sub-function, leading other people managers and embedding a performance culture aligned to the values of the business. Or for an individual contributor, they lead organisation wide projects and act as deep technical expert and thought leader, identifying new ways of working and collaborating cross functionally. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions..
• Provide expert advice to senior functional management and committees to influence decisions made outside of own function, offering significant input to function wide strategic initiatives.
• Manage, coordinate and enable resourcing, budgeting and policy creation for a significant sub-function.
• Escalates breaches of policies / procedure appropriately.
• Foster and guide compliance, ensure regulations are observed that relevant processes in place to facilitate adherence.
• Focus on the external environment, regulators, or advocacy groups to both monitor and influence on behalf of Barclays, when appropriate.
• Demonstrate extensive knowledge of how the function integrates with the business division / Group to achieve the overall business objectives.
• Maintain broad and comprehensive knowledge of industry theories and practices within own discipline alongside up-to-date relevant sector / functional knowledge, and insight into external market developments / initiatives.
• Use interpretative thinking and advanced analytical skills to solve problems and design solutions in often complex/ sensitive situations.
• Exercise management authority to make significant decisions and certain strategic decisions or recommendations within own area.
• Negotiate with and influence stakeholders at a senior level both internally and externally.
• Act as principal contact point for key clients and counterparts in other functions/ businesses divisions.
• Mandated as a spokesperson for the function and business division.

All Senior Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L – Listen and be authentic, E – Energise and inspire, A – Align across the enterprise, D – Develop others.

All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave.