Manager, Privacy Governance and Compliance
Hyundai Capital America

Description

Who We Are: Through our service brands Hyundai Motor Finance, Genesis Finance*, and Kia Motors Finance, we provide financial products tailored to meet the needs of Hyundai, Genesis, and Kia dealerships nationwide, including dealer inventory and facility financing. And, through these dealerships, we provide indirect vehicle financing and leasing solutions to over 1.7 million retail customers.

Employee Value Prop and Culture: Our employees contribute every day to a culture that is fast-paced, dynamic, energized, agile, and collaborative.

From our various engagement programs to the unique design of our offices, we strive to foster a connected, fun, positive and rewarding company culture where employees feel appreciated for their contributions, proud of their company, and thrive to be passionately invested in HCA's success.

Global One Company:

Many countries. One identity. Hyundai Capital has offices across the world, including China, Canada, the United Kingdom, Germany, Russia, Brazil and Korea. Our work environments are designed with specific themes in mind to achieve a consistent global identity that reflects our values: light, collaboration, elements of nature and symmetry.

General Summary:

The Manager, Privacy Governance and Compliance will act as subject matter expert to Information Protection Department leadership and other stakeholders across HCA on United States privacy and records management governance matters. Build, continually enhance and assist functional leadership with setting the strategic direction for HCA's privacy and records management programs and practices to ensure privacy and records management compliance risks are proactively identified and appropriately and managed. Lead and manage cross functional and corporate wide projects and privacy and records management programs and resources. The ideal candidate for this role is a candidate with considerable management and advisory experience on compliance and governance matters in the privacy and records management areas, and who excels at building stakeholder partnerships, exercises sound judgment, pays close attention to detail, and consistently seeks outcomes consistent with an organization's business goals while appropriately identifying and managing risk.

Duties and Responsibilities

1. Subject Matter Expert: Act as a subject matter expert to Information Protection Department leadership and other stakeholders across HCA on United States privacy and records management governance matters. Provide practical consultative support to privacy and records management team members and management and the various business units to ensure privacy and records management compliance risks are proactively identified and appropriately and managed.

2. Program Implementation and Management: Build, continually enhance and assist with setting the strategic direction for HCA's privacy and records management programs and practices. Ensure that business needs are met and privacy and records management risks are addressed by the management and performance of Privacy Impact Assessments, Breach Response Planning and Management, Data Classification and Handling, Information Sharing assessments, Operational Privacy Risk Assessments and other privacy and records management risk and incident management activities.

3. Program and Project Leadership: Lead and manage cross-functional and corporate-wide projects and privacy and records management programs and resources.

4. Regulatory Updates and Gap Remediation: Maintain an in-depth understanding and comprehension of the various privacy and records management-related laws and regulations across the United States. Work directly with the business units, including the Legal and Compliance Department, to conduct gap analysis establish implementation and remediation plans, as applicable, for upcoming legal and regulatory changes.

5. Perform all other duties as assigned.

Knowledge and Skills:

• Complete understanding and comprehension of United States privacy and records management laws and regulations , fair information practices and core privacy and data protection principles, direct marketing techniques, workplace monitoring, online privacy, risk management and information security.

• Tactical thinking skills, creative problem solving, analytical skills, verbal and written communication skills, including meeting facilitation and presentation skills.

• Ability to influence and articulate professional and persuasive individual who can serve as an effective member of the team and who is able to communicate privacy-related concepts to a broad range of technical and non- technical staff.

• Excellent leadership, functional management and teamwork skills.

• Excellent written and verbal communication skills.

Qualifications

• 5+ years related professional experience.

• Experience managing operational privacy compliance programs required.

• Comprehensive understanding of U.S. privacy and records management laws and regulations, including, but not limited to, GLBA, CCPA, FCRA and SB1, fair information practices and core privacy and data protection principles, direct marketing techniques, workplace monitoring, online privacy, and information security.

• Minimum bachelor's degree in related area.

• CIPP/US, CIPM, CIPT, CISA, CISM, or CISSP required. CRM, CIPM or CIPP/C would be considered an asset.

Physical Requirements and Working Condition:

Employees in this class are subject to extended periods of sitting, standing, and walking, vision to monitor and moderate noise levels. Work is performed in an at home and office environment.

California Privacy Notice

This notice only applies to our applicants who reside in the State of California.

The latest version of our Privacy Policy can be found here. This Privacy Policy provides you with notice, at or before the point of collection, about the categories of personal information to be collected from you, the purposes for which your personal information is collected or used, and whether that information is sold or shared, so that you can exercise meaningful control over our use of your personal information.We are providing this notice to comply with the California Consumer Privacy Act of 2018, as amended as amended by the California Privacy Rights Act of 2020 ("CCPA").

If you have any questions about CCPA regarding California residents or HCA team members, please contact the Privacy Team at Privacy2@hcs.com.