The Director of Compliance and Information Privacy will coordinate the CIA’s information privacy, compliance, , and policy efforts, and provide senior leadership with a comprehensive view of any organization risks in these areas. The Director is responsible for ensuring the CIA’s compliance with federal, state, and industry related regulatory standards including, but not limited to, laws, regulations, statutes, codes, charters, conventions, decrees, policies, procedures, and rules. Additionally, the Director will be responsible for chairing the Policy Advisory Group and other committees with department heads and senior leadership in the development, management, and evolution of organization policies and corresponding procedures. The Director of Compliance and Information Privacy will be responsible for the coordination of all information privacy, compliance and policy training and awareness programs.
- Oversee an enterprise-wide compliance and privacy program that meets federal, state, and industry mandated requirements.
- Monitor internal and external risks associated with regulatory compliance.
- Cultivate relationships with peers and subject matter experts to facilitate the evaluation of regulations, or other compliance initiatives as it relates to federal, state, and international laws and regulations.
- Ensure that all appropriate senior leaders, directors, and employees are trained, knowledgeable of and comply with CIA policies and pertinent federal, state, and industry standards.
- Execute and manage internal compliance and privacy communications, awareness, and training programs.
- Collaborate with other operational units such as information systems, purchasing, and key stakeholders in establishing vendor management and appropriate language for contracts involving the management and protection of data.
- Perform internal review, auditing, and monitoring of compliance, privacy and policy activities.
- Collaborate with internal departments in the review of compliance activities and monitoring of areas and/or departments annually or periodically.
- Ensure the completion of federal, state, and associated accrediting agency required reporting directives, disclosure notices, and/or any other related requirements are met.
- Ensure program compliance with all accreditation and recognition standards.
- Work in collaboration with Education leadership to assist in the planning and preparation of all documents required for submitting new degree programs and program changes.
- Manage College-wide policy and procedure development efforts and central repository.
- Lead and/or participate in special projects as assigned.
- Any and all other duties as assigned.
Bachelor’s Degree in Information Technology, Law and Policy, Business Administration, or a related field.
- Eight (8) to ten (10) years of working experience in Higher Education, Privacy or Compliance; at least three years of which has been in information systems privacy, compliance management, policy development, and contract administration in a college/university environment.
- Demonstration knowledge and experience working with higher education accrediting, state and federal agencies.
- Experience in project management functions and leading teams in a higher education setting.
- Master’s degree strongly preferred.
- Juris Doctor
- Certified Information Privacy Professional (CIPP) and/or Certified Compliance and Ethics Professional (CCEP)
- Strong analytical skills, with knowledge of operational and information technology assessments.
- Proficient in the use of word processing and spreadsheet software, Word and Excel. Excellent interviewing and report writing skills.
- A positive track record of working with cross-functional teams in a consultative and collaborative manner.
- Strong interpersonal, communications and leadership skills.
- Technical savvy in data management and computer systems.
- Proficiency in working with Microsoft Office products
- Exceptional skills in managing people and projects.
- Expereience in working with the delivery of on-line degree programs.
- Knowledge of PCI, Red Flag, HIPPA, FERPA, HEOA, CLERY, Title IV, Title IX, ADA, and A133 audits.
- Ability to travel periodically to other CIA locations due to business needs.
- Work requires the ability to use a computer for extended periods of time, sometimes in excess of eight (8) hours per day.
- Must be available to work nights and weekends as required due to business needs.