Head of AI Governance, Risk & Compliance (IT) at NTT Ltd.

Your day at NTT DATA

• The Director, Regulatory Compliance is a leadership role responsible for ensuring that the organization complies with a complex web of national and/or international laws, regulations, and industry standards that govern the IT sector.
• This role plays a critical part in minimizing legal risks, maintaining ethical conduct, and safeguarding the organization's reputation. This role plays a pivotal role in ensuring that the company operates within the bounds of applicable laws and regulations.
• This role provides leadership and management of a Regulatory Compliance team, fostering a collaborative and innovative team culture focused on achieving operational excellence.

Key responsibilities:

• Develops and oversees the implementation of a comprehensive regulatory compliance strategy aligned with global and regional laws and regulations relevant to the IT industry.
• Oversees the creation, review, and updating of compliance policies, procedures, and guidelines to ensure alignment with legal and regulatory requirements.
• Ensures the establishment of robust monitoring processes to track compliance with laws, regulations, and industry standards.
• Identifies potential compliance risks and vulnerabilities and ensures the development of mitigation plans to address them proactively.
• Oversees internal and external audits related to regulatory compliance.
• Prepares comprehensive audit reports for senior leadership and relevant stakeholders.
• Ensures the development and implementation of compliance training programs to educate employees on compliance standards, regulations, and best practices.
• Promotes and enforces ethical conduct throughout the organization and ensures the set up and management of whistleblower programs and channels for reporting unethical behavior.
• Ensures strict compliance with data protection and privacy regulations (e.g., GDPR, CCPA), including data handling, consent management, and data breach notification procedures.
• Reviews and analyzes contracts, agreements, and partnerships for compliance with legal and regulatory obligations and serves as the primary point of contact for regulatory agencies and authorities.
• Ensures the development and management of incident response plans for compliance-related breaches or violations, including implementing corrective actions.
• Manages the implementation of the regulatory compliance policy, principles and procedures in order to ensure proactive regulatory compliance practices.
• Observes trends on emerging regulatory compliance issues and review compliance documentation and contractual provisions concerning non-compliance issues.
• Coaches, mentors and develops direct reports to ensure the efficient operation of the regulatory compliance function.
• Monitors changes to relevant legislation, governance codes and the regulatory environment to ensure compliance.

To thrive in this role, you need to have:

• Excellent legal expertise of relevant laws and regulations, including data protection, antitrust, export controls, and industry-specific regulations that impact the IT sector.
• Excellent understanding of international regulatory environments and experience with global and / or regional compliance challenges.
• Excellent leadership and team management skills to lead compliance initiatives and teams.
• Excellent communication and interpersonal skills to effectively engage with senior leadership/executives, regulatory agencies, and external stakeholders.
• Ability to analyze complex regulatory issues, assess risks, and develop effective compliance strategies.
• High ethical standards and integrity, with a commitment to fostering a culture of compliance and ethics.
• Excellent proficiency in project management methodologies to oversee compliance initiatives and programs.
• Excellent proficiency in compliance auditing, reporting, and documentation.
• Excellent ability to influence and negotiate with good strategic understanding.
• Excellent ability to work in high-pressure situations to get things done.
• Ability to establish and manage processes and practices through collaboration and the understanding of business.
• Demonstrate high levels of integrity and professionalism.
• Proactive approach with excellent attention to detail and planning and organizational skills.

Academic qualifications and certifications:

• Bachelor's degree or equivalent in law, business, compliance, or a related field
• Master's degree or Juris Doctor (JD) can be beneficial
• Relevant certifications in compliance, such as Certified Compliance and Ethics Professional (CCEP), Certified Information Systems Security Professional (CISSP), or Certified Regulatory Compliance Manager (CRCM)

Required experience:

• Significant knowledge of relevant laws and regulations, including data protection laws, antitrust regulations, export controls, and industry-specific regulations.
• Significant experience in compliance, legal, or regulatory roles within the IT industry or a related field.
• Significant experience with compliance auditing, reporting, and documentation.
• Significant demonstrated success in setting strategic direction, driving change, and achieving business performance goals at a senior leadership level.
• Significant experience working within a global matrixed organization, preferably within the IT services industry.
• Significant experience working in a leadership type role(s) within a regulatory compliance or similar environments.