Senior Data Privacy Analyst

Discover your future at Citi

Working at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you’ll have the opportunity to grow your career, give back to your community and make a real impact.

Engineer the future of global finance. At Citi, our Tech team doesn’t just support finance – we are helping to redefine it. Every day, $5 trillion crosses through our network. We do business in 180+ countries operating at a scale few can match. From deploying advanced AI to helping shape global markets, we build systems that matter. Look to join a team where your work helps influence economies, your ideas can drive innovation and outcomes, and your growth is backed by mentorship, continuous learning and flexibility with potential hybrid work opportunities. Help solve real‑world challenges that touch millions and get the opportunity to build the future of finance with Citi Tech.

In this role, you will be responsible for coordinating and executing individual rights requests (IRR) in accordance with global privacy regulations, including GDPR, CCPA/CPRA, and other applicable frameworks.

The role ensures timely and compliant responses to data subjects exercising their privacy rights, including access, correction, deletion, restriction, and portability.

You will collaborate closely with legal, technology, and data governance functions to manage requests end‑to‑end, maintain evidence of compliance, and continuously improve operational efficiency.

• Manage intake, validation, and processing of IRRs, ensuring accuracy and adherence to regulatory timelines.
• Ensure the completion of the identity verification process and assess complexity of each request; coordinate with business units and data owners to retrieve and validate relevant data.
• Review and redact responsive data prior to disclosure, ensuring compliance with legal exemptions and internal data handling policies.
• Maintain centralized tracking and audit records for all requests, documenting decisions, communications, and actions.
• Partner with Legal, Privacy, and Information Security teams to interpret obligations and apply consistent decision criteria.
• Use privacy management platforms for workflow, evidence, and reporting.
• Identify opportunities for automation and process optimization, including templated responses, SLA monitoring, and cross‑tool integration.
• Support regulatory inquiries, internal audits, and 2LoD reviews by providing metrics and documentation.
• Assist with preparation of performance metrics and trends on request types, completion time, and compliance rates.

• Extensive experience in privacy operations, compliance, or information governance, preferably in a financial services environment.
• Strong understanding of data protection regulations (GDPR, CCPA/CPRA, GLBA, etc.).
• Demonstrated ability to work cross‑functionally and manage complex data discovery efforts.
• Communicates effectively, develops and delivers multi‑mode communications that convey a clear understanding of the unique needs of different audiences; able to drive consensus, and influence relationships at all levels.
• Collaborates effectively by building partnerships and working well with others to meet shared objectives.
• Strong negotiation, influencing and stakeholder management skills across a variety of stakeholders at different levels.
• Optimizes work processes by balancing effective/efficient processes with a focus on continuous improvement. Demonstrates ability to balance between understanding the “big picture” while paying close attention to detail.
• Up‑to‑date understanding of key data privacy risk and control concepts, tools and trends.
• Certifications such as CIPP/E, CIPP/US, or CIPM preferred.

• Bachelor's/University degree or equivalent experience

This job description provides a high‑level review of the types of work performed. Other job‑related duties may be assigned as required.

By joining Citi, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed), and enjoy a whole host of additional benefits such as:

• 27 days annual leave (plus bank holidays)
• A discretionary annual performance related bonus
• Private Medical Care & Life Insurance
• Employee Assistance Program
• Pension Plan
• Paid Parental Leave
• Special discounts for employees, family, and friends
• Access to an array of learning and development resources

Visit ourGlobal Benefitspage to learn more.

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self, every day. We want the best talent around the world to be energized to join us, motivated to stay and empowered to thrive.

Job Family Group: Data Governance

Job Family: Data Privacy & Data Transfers

Time Type: Full time

Most Relevant Skills: Constructive Debate, Data Governance, Data Management, Internal Controls, Laws and Regulations, Management Reporting, Policy and Procedure, Program Management, Regulatory Management, Risk Controls and Monitors.

Other Relevant Skills: For complementary skills, please see above and/or contact the recruiter.

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.

If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View Citi’s EEO Policy Statement and the Know Your Rights poster.