Director Risk and Compliance - US Based Remote

3 days ago Be among the first 25 applicants

Lensa partners with DirectEmployers to promote this job for Anywhere Real Estate.

Job Summary

As a key member of the Global Information Security team, the Director of Risk & Compliance (Data Privacy and Regulatory Compliance) will lead global data privacy and compliance initiatives across Product & Technology. This strategic role focuses on embedding privacy-by-design and regulatory compliance into the design, development, and operation of technology systems and products. The Director will ensure that data handling practices and information systems comply with regulations such as HIPAA, PCI, GDPR, and NYDFS, and maintain audit standards like SOC 1 Type I and II through technical controls, risk management, and governance frameworks.

Key Responsibilities

1. Embed Privacy and Security: Collaborate with engineering and product teams to integrate privacy-by-design and security principles into system development lifecycles.
2. Translate Regulations: Convert complex regulatory requirements (e.g., HIPAA, PCI, GDPR, NYDFS) into actionable controls.
3. Ensure Audit Readiness: Oversee audit preparations and adherence to standards, ensuring robust controls for financial reporting.
4. Monitor Regulatory Changes: Stay updated on evolving regulations, assess impacts, and advise stakeholders.
5. Cross-Functional Collaboration: Partner with Legal, Risk, and Compliance teams to interpret and implement requirements.
6. Ensure Compliance: Oversee adherence to laws, regulations, and standards through governance and controls.
7. Data Protection Impact Assessments: Manage DPIAs and proper handling of personal data.
8. Metrics and KPIs: Establish measures to evaluate privacy and compliance initiatives.
9. Champion a Compliance Culture: Chair the Global Data Privacy Steering Committee and promote a culture of privacy and compliance.
10. Advise on Data Protection: Serve as a subject matter expert on controls, readiness, and audits.

Qualifications

• Proven expertise in global data privacy and compliance, with knowledge of CCPA, HIPAA, PCI, GDPR, NYDFS, and SOC standards.
• Ability to stay current with regulations and privacy trends.
• Experience leading teams, audits, risk assessments, and privacy programs.
• Strong understanding of technical controls, risk management, and security governance.
• Experience working with cross-functional teams to operationalize compliance.
• Excellent communication skills for diverse stakeholders.
• Strategic thinking and advising senior leadership.
• Analytical skills to assess risks and implement solutions.
• Bachelor’s degree in a related field; advanced degrees or certifications preferred.
• 8-10 years of experience in privacy, compliance, or related tech fields, with at least 5 in leadership.
• Preferred Certifications: CIPP/US, CIPP/E, CISSP, CISA.

About Anywhere Real Estate Inc. (http://www.anywhere.re/) (NYSE: HOUS) is transforming real estate. We support leading brands like Better Homes and Gardens Real Estate, Century 21, Coldwell Banker, and others, facilitating nearly 1 million transactions annually across 118+ countries. Our purpose is to empower everyone’s next move through our integrated services.

At Anywhere, we value talent, growth, and a people-first culture rooted in empowerment, innovation, and collaboration. Read more in our Impact Report.

We are recognized as a great place to work by organizations such as Great Place to Work, Forbes, Newsweek, and Ethisphere.

EEO Statement: EOE including disability/veteran

Questions? Contact support@lensa.com

• Director

• Full-time

• Finance and Sales

• IT Services and IT Consulting