VSP Vision Care

Compensation

Full Description

Job Description: • Strategic leader responsible for developing, implementing, and overseeing enterprise-wide programs that safeguard the organization’s operations, reputation, and regulatory compliance. • Provides vision and leadership for risk management, regulatory compliance, privacy, and business continuity initiatives across global operations. • Ensures adherence with applicable laws, regulations, industry standards, and company policies while fostering a culture of accountability, resilience, and ethical business practices. • Build and lead high-performing teams across risk, compliance, privacy, and continuity functions. • Serve as a trusted advisor to executive leadership, providing strategic guidance on risk, compliance, and resilience matters. • Direct the global operational Risk Management function, including disaster planning, environmental, and operational risk. • Develop and execute enterprise risk assessment routines and mitigation strategies. • Establish governance structures and ensure risk-related policies and procedures are updated and consistently implemented across all lines of business. • Build awareness and influence stakeholders at all levels to drive risk management initiatives. • Serve as the enterprise Chief Compliance Officer, overseeing the development and execution of a comprehensive compliance strategy. • Ensure adherence to all applicable federal, state, and international regulations. • Monitor compliance performance, report to executive leadership and the board, and oversee audits, investigations, and corrective actions. • Develop and maintain compliance policies, procedures, and training programs. • Lead the global Privacy Program; define and execute the vision and strategy for program maturation, ensuring compliance with domestic and international privacy laws (e.g., HIPAA, CCPA, GDPR). • Oversee privacy risk assessments, incident response, and implementation of privacy-by-design practices. • Collaborate with technology and business leaders on emerging risks related to AI, adtech, and data governance. • Lead the enterprise Business Continuity Program, including framework design, business impact analyses, recovery strategies, and crisis management. • Oversee disaster recovery planning in partnership with technology teams. • Ensure continuity plans are tested, maintained, and aligned with regulatory requirements and industry best practices. • Provide executive oversight for incident response efforts, ensuring coordinated and effective management of disruptive events. • Develop and manage departmental budgets and ensure efficient resource allocation. • Promote a culture of collaboration, transparency, and continuous improvement across the enterprise in collaboration with other risk-focused business areas such as Cyber Security, Internal Audit, and Global Security. Requirements: • Bachelor’s degree in Business, Law, Risk Management, or related field or equivalent experience; advanced degree preferred • 15+ years of progressive leadership experience in risk management, compliance, privacy, and/or business continuity within complex, global organizations • 10+ years’ experience with clear progression to senior leadership/management roles, leading and motivating, cross-functional, interdisciplinary teams to achieve strategic goals • Proven success in developing and executing enterprise-wide strategies and leading cross-functional teams • Expert knowledge of regulatory compliance, privacy laws, risk management frameworks, and business continuity standards • Strong strategic planning, analytical, and problem-solving skills • Exceptional communication and interpersonal skills; ability to influence at all organizational levels • Demonstrated ability to manage crises, drive change, and inspire confidence • Certifications such as CHC, CIPP, CBCP, or similar are highly desirable Benefits: • Health insurance • 401(k) matching • Flexible work hours • Paid time off • Professional development opportunities