Director of Privacy Management

GEICO is seeking a strategic and dynamic leader to serve as the Director of Privacy Management. In this role, you will oversee and shape the organization's privacy policies and incident response practices to ensure compliance with privacy laws and regulations, safeguard sensitive customer and employee data, and promote a culture of data protection and trust. The Director will work cross-functionally with data governance, legal, IT, security, and product management teams to align business objectives with privacy goals while addressing emerging privacy risks in a rapidly evolving regulatory environment.

Key Responsibilities

• Strategic Leadership: Develop, implement, and maintain GEICO’s privacy program, including policies, processes, and governance structures, to comply with applicable laws and regulations.  
• Risk Management: Identify, assess, and mitigate privacy risks across GEICO’s operations, ensuring risk is well-documented and mitigation plans are executed effectively.
• Compliance Monitoring: Oversee compliance with data protection laws, monitor regulatory developments, and lead efforts to incorporate changes into GEICO’s policies and operations. 
• Incident Management: Coordinate with internal and external stakeholders to respond to privacy incidents, ensuring proper reporting and remediation steps are taken promptly.
• Training & Awareness: Lead training programs and awareness campaigns to educate employees on privacy practices, regulatory updates, and their responsibilities under privacy laws.
• Cross-Functional Collaboration: Partner with internal teams, including legal, compliance, IT, and product development, to embed privacy-by-design principles into GEICO’s processes and offerings.
• Vendor Management: Assess and monitor third-party vendors for privacy compliance, ensuring appropriate contractual protections and security measures are in place.
• Reporting: Provide regular updates to executive leadership on privacy program status, risk profiles, and incident responses.

Qualifications

• Bachelor’s degree in law, business, information systems, or related field;
• Certification in privacy management (e.g., CIPP, CIPT, or CDPSE).
• At least 10 years of experience in privacy, data protection, legal, or compliance, including leadership roles.
• In-depth knowledge of privacy laws and frameworks- GLBA, State Privacy laws (emphasis on CCPA), NYDFS Cyber NYDFS Cyber Reg 500. (FCRA, DDPA, HIPAA, CANSPAN, TCPA, Biometrics laws is a plus).
• Strong understanding of data governance and data security principles.
• Demonstrated experience managing cross-functional teams and driving privacy initiatives in complex, matrixed organizations.
• Excellent analytical, organizational, and communication skills with the ability to influence at all organizational levels.

Preferred Skills

• Experience in the insurance, financial services, or technology industry.
• Advanced degree (e.g., JD, MBA, or Master’s in Data Privacy) is a plus.
• Proven success in managing privacy incident responses and regulatory inquiries.
• Familiarity with privacy-enhancing technologies and tools.
• Passion for fostering a privacy-first organizational culture.

Annual Salary

$140,000.00 - $300,000.00

The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations.

At this time, GEICO will not sponsor a new applicant for employment authorization for this position.

Benefits:

As an Associate, you’ll enjoy our Total Rewards Program* to help secure your financial future and preserve your health and well-being, including:

• Premier Medical, Dental and Vision Insurance with no waiting period**
• Paid Vacation, Sick and Parental Leave
• 401(k) Plan
• Tuition Assistance
• Paid Training and Licensures

*Benefits may be different by location.  Benefit eligibility requirements vary and may include length of service.

**Coverage begins on the date of hire. Must enroll in New Hire Benefits within 30 days of the date of hire for coverage to take effect.

The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled.

GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants.