Attorney- Bank Regulatory- Enterprise Privacy, Bank of America, New York City, NY, Washington DC, Charlotte, NC

Position Overview:

Bank of America is seeking an enterprise level privacy/data protection attorney.

Detailed Position Description:

Bank of America is seeking an enterprise level privacy/data protection attorney.

Key Responsibilities:

  • In-depth knowledge of, and experience analyzing and applying, federal, state, and global laws and corporate policies related to privacy, especially financial privacy, including state laws and regulations related to telemarketing and email marketing
  • Analyzing and applying laws, regulations and corporate policies related to: the Fair Credit Reporting Act (FCRA) and its application to financial institutions, including requirements added to the FCRA by the FACT Act, privacy laws, including GLBA and US state privacy laws FCC and FTC consumer privacy rules, including TCPA and UDAAP, HIPAA and related regulations
  • General Data Protection Regulation and other international privacy laws and regulations
  • Proficiency with analyzing telemarketing, email marketing, affiliate sharing, data analytics, secondary use of consumer reports, credit scores, fraud scores, bankruptcy scores, and other model-based scores, and adverse action matters
  • Proficiency with online and mobile privacy laws, and consumer notice and disclosure requirements
  • Knowledge of, and practical experience with, federal and state data breach notification laws and regulations
  • Experience analyzing laws, contract terms and conditions, and corporate policies and standards, related to financial privacy, consumer credit reporting, telemarketing, and email marketing
  • Familiarity with laws related to e-commerce, mobile commerce, and information security
  • Familiarity with self-regulatory regimes like Direct Marketing Association and CTIA
  • Proficiency advising risk and compliance managers and other corporate support functions and attorneys in the above areas, and supporting them in the development of practical operational processes that control risk and ensure compliance
  • Proficiency drafting and analyzing customer terms and conditions, contracts with third parties, and corporate policies and standards, related to financial privacy, the FCRA, and information security
  • Work closely with Enterprise Privacy colleagues to identify risks and develop strategies for privacy/data protection and cross border data movement initiative implementation and compliance.

This position is posted as a more senior position but is flexible to be filled as a lower level position if the posted qualifications are met by a strong lower level applicant.

Application Submission Information:

Candidates must apply online at and enter 17000676 under Keyword or Job Number

Link to posting below where candidates can apply