Zions Bancorporation's Compliance Risk Management team is transforming what it means to work for a financial institution. With a commitment to risk mitigation, monitoring, and reporting; we have been providing our community, clients, and colleagues the best experience possible for over 150 years. Help us transform our workforce of the future, today.

Zions Bancorporation has just opened an opportunity for a Compliance Officer within our Compliance Privacy team. If you are ready to move to your next career opportunity, this may be the one. This position requires an investigative mindset and an ability to collaborate cross-functionally. The ideal candidate will have an inquisitive personality that always wants to learn and can thrive in a diverse and fast-paced environment.

The position will be based in Salt Lake City, UT and is eligible to work from home Mondays and Fridays to align with the flexible department schedule (subject to periodic review).

Compliance Officer - Privacy

• Responsible for assisting the Privacy Compliance Manager with assessing, measuring, monitoring, privacy laws, rules, and regulations in a 2LOD capacity. Regulations in scope generally include: CCPA, CalFIPA, CalOPPA, CAN-SPAM, COPPA, ECPA, GLBA, HIPAA/HITECH, Reg. P, RFPA, TCPA.
• As directed, support the execution of broader compliance privacy elements including risk assessments, policy and procedure development/enhancements, and the development of privacy related training materials.
• As applicable to Compliance Privacy, reinforce the requirements of the Compliance Risk Management Oversight Program, which requires compliance oversight of the first line of defense (1LOD) in the form of ongoing monitoring, comprehensive reviews, and targeted reviews. Ongoing monitoring activities generally include:

o Engagement in risk assessments (e.g., Risk and Control Self-Assessment, General Compliance Risk Assessment).

o Evaluation of risk and performance metrics such as key risk Indicators (KRIs) and key performance indicators (KPIs).

o Validation and testing of key controls.

o Evaluation of third-party supplier risk.

o Evaluation of recent regulatory changes and industry enforcement actions to identify areas of concern or opportunities for improvement.

o Monitoring of customer communications (complaints and disclosure/notices).

o Review of material changes to governance documents (Framework, Policy, Program, Standard, Charter) or significant procedural changes.

o Validation of relevant implemented Findings.

o Creation and evaluation of training materials.

o Engagement in new products and initiative reviews.

o Provide consultation and advisory services, including ongoing review and challenge.

o Participate in management and risk committee meetings.

o Monitor key management and risk reporting (e.g., Internal Audit or regulatory exam results).

o Review risk acceptance and exception requests.

o Perform transactional testing, as required.

• Other duties as assigned.

Qualification:

• Requires a bachelor's degree in business, finance, or a related field.
• 2+ years working experience in banking/financial services regulatory compliance, auditing, risk management or other directly related experience.
• A combination of education and experience may meet requirements.
• Working knowledge of federal and state compliance privacy laws and regulations
• Effective research, project management, organizational, analytical, and problem resolution skills required.
• Must be results oriented and have the ability to work independently and meet deadlines.
• Must have good communication skills.
• Ability to work on and track multiple tasks and priorities.
• Highly motivated with the ability to be proactive, take initiative, carefully monitor, follow through and complete projects/responsibilities in a professional and timely manner.
• Strong interpersonal and communication skills including the ability to work freely and comfortably with staff and management at all levels.
• Proficient with Microsoft applications including Excel, PowerPoint, Word, etc.
• Those with International Association of Privacy Professionals (IAPP) privacy certification (CIPP /E /US, CIPT, etc.) will be highly considered.