Senior Manager, Customer Privacy

Requisition ID # 170864 

Job Category: Compliance / Risk / Quality Assurance 

Job Level: Senior Manager

Business Unit: Gen Counsel, Ethics, Risk & Compliance

Work Type: Hybrid

Job Location: Oakland

Department Overview

The Enterprise Governance and Shared Compliance (EG&SC) group within the General Counsel, and Ethics, Risk, and Compliance (GC ERC) department provides leadership, strategic direction, and critical oversight of cross-cutting governance and compliance matters, including overseeing and expanding existing enterprise programs for compliance with FERC, NERC, TSA, and privacy requirements. One aspect of this function is to lead and support coordination, governance, and implementation of critical shared (e.g., cross-functional) compliance requirements and adherence with standardized enterprise and operational compliance risk mitigations.

Position Summary

Jobs in the Customer Privacy Leadership family provide privacy and data protection support for PG&E’s privacy compliance. Provide crucial subject-matter guidance and support to the enterprise to ensure the understanding of risks around, threats to, analysis of, strategy and overall management of privacy and personal data (including personal data for customers, employees, non-employee workers and others). These roles develop and implement enterprise strategies and activities designed to ensure the privacy and appropriate use of PG&E’s personal data assets.

This position is hybrid, working from your remote office and your assigned work location based on business needs or company requirements. The assigned work location will be within the PG&E Service Territory and will be agreed upon by the successful candidate and hiring leader.

PG&E is providing the full salary/pay range for this position. The actual amount paid to an individual will be based on multiple factors, including, but not limited to, internal equity, specific skills, education, licenses or certifications, experience, market value, and geographic location. The range to reasonably expect will be around the minimum and the midpoint $151k-$204k. The final decision will be made on a case-by-case basis related to the factors above. This job is also eligible to participate in PG&E’s discretionary incentive compensation programs.

Bay Area Min: $151,000

Bay Area Mid: $204,000

Bay Area Max: $257,000

Job Responsibilities

• Aligns and shapes enterprise strategy around privacy and data governance functions to address risks related to unauthorized use or loss of personal information.

• Owns PG&E's enterprise privacy compliance program and ensures appropriate enterprise controls are in place to facilitate compliance for California Consumer Privacy Act (CCPA), Health Insurance Portability and Accountability Act (HIPAA), CPUC Rule 27 and all other privacy regulations.

• Counsels executives, up to SVP, on privacy and data governance risks and issues; builds enterprise consensus to implement key strategies

• Resolves complex regulatory and business problems, including resolution and interface with CA Governor's Office, CPUC, CA State guidance - this may involve data requests, policy shaping input, and resolution, etc.

• Leads implementation of significant enterprise-wide cultural and program changes, improvements, and enhancements.

• Benchmarks program externally to identify best practices in these areas. Participates in privacy and data governance forums; may play a leadership role on behalf of PG&E.

• Reviews and/or creates internal and external policies, standards, and controls related to access and protection of enterprise personal data to ensure compliance with all relevant privacy and data protection laws and contractual commitments.

• Interfaces with PG&E functions like IT Cyber-Security, Internal Auditing, Corporate Security, Compliance & Ethics, Regulatory policy shaping alignment and integration of privacy in all facets of the business.

• Developing and/or applying innovative tools and solutions to support compliance programs and enterprise-wide initiatives, with a focus on how the compliance management system can help solve challenges and improve efficiency.

• Helping drive continuous improvement in compliance program; consistently demonstrating innovative new thinking focused on compliance strategy, performance and implementation.

• Acts as thought leader to apply benchmarking, best practices and PG&E expertise to advance privacy and data governance practices across the enterprise and resolve complex issues.

Qualifications

Minimum

• BA/BS or equivalent work experience in business or other relevant discipline

• 9 years of experience with at least three years of leading team, including 5 years of risk, compliance, privacy, or data governance experience

Desired

• MBA or Masters degree in related field

• Experience working in utility sector or other highly regulated industry.

• Travel 10% of the time.