BNY Mellon Careers

IRM Lead Analyst (Data Privacy)

Oriskany, New York

Job Description

The primary purpose of this position is to support the Head of Privacy (Americas) in the execution of his/her duties across the Americas region to ensure that all Lines of Business and Business Partners fulfil their regulatory and organizational requirements to protect the privacy of both client and staff personal information.  The privacy analyst will offer support as a Privacy SME in a wide range of activities aimed at managing and enhancing BNYM’s privacy program.  Responsibilities would include driving and supporting privacy risk assessments; analyzing privacy issues; compliance monitoring; tracking and monitoring regulatory change; assisting with incident response/ breach investigations in collaboration with the lines of business, legal and other business partners; developing meaningful metrics to effectively report status of privacy initiatives to leadership; and providing ongoing management, content development and oversight of privacy training program. 

The Information Risk Lead Analyst supports the Information Risk Managers driving the strategic information risk program within IRM and business areas supported.. S/he will assist and support Senior Information Risk Analysts and Managers with the development of strategic program elements and provide input to the IRM risk prioritization. S/he must demonstrate working knowledge of privacy, information, cyber, security, and technology risk concepts and ability to interpret and drive the enforcement of BNY Mellon information risk policies and standards, and regulatory requirements. Sh/e would perform detailed application risk analysis to facilitate comprehensive risk assessment; including work paper and metrics for tracking towards issue remediation and tracking to ensure effective controls are in place to remediate risk. The lead analyst is expected to support advanced data manipulation tasks including pulling/aggregating data from multiple sources and performs analysis, trending, etc., and understanding of metrics (KRIs, KPIs). The Information Risk Lead Analyst reports to the Information Risk Senior Analyst or Information Risk Manager within their department and is expected to deputize for the Information Risk Senior Analyst when required. Knowledge of privacy concepts, frameworks and best practices, as well as of U.S. federal and state privacy laws, a plus. Certified Information Privacy Professional (CIPP) or other related Privacy, Security, Risk Management, Project Management certifications also a plus.


Bachelor s Degree or equivalent work experience required. Previous risk and/or audit experience is - a plus but not required. A minimum of 3 years' experience, 3-5 years experience in information risk or technology is preferred.

For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments & safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark:

Risk and Compliance provide risk and compliance services across all BNY Mellon businesses. Organizationally, Risk and Compliance includes the following groups: Risk Management, Compliance, Global Corporate Security, Information Risk Management and Global Business Continuity. Risk Management oversees and delivers risk services and ensures new business risks are reviewed and approved. Risk Management is organized through Chief Risk Offices for each core business and critical operation. Risk managers provide shared support to BNY Mellon for operational risk services for Global Corporate Trust, Depositary Receipts, Treasury Services and Global Operations in EMEA. Compliance helps ensure BNY Mellon's businesses maintain appropriate processes to comply with applicable laws, regulations, BNY Mellon policies and ethics. This is accomplished through business- and business partner-specific teams of professionals, under centralized global management.

BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.

Primary Location: United States-New York-Oriskany
Internal Jobcode: 32943
Job: Risk
Organization: Information Risk Management-HR06032
Requisition Number: 1715686