Senior Manager, Compliance & Privacy OfficerRemote / Hybridlocation Downtown TorontoInsuranceAnti-Money Laundering Specialist, Licensing & Compliance Officer, Privacy Specialist, Audit & Risk Management SpecialistThe Senior Manager, Compliance & Privacy Officer is responsible for the strategic identification, assessment, and management of regulatory, legislative, and licensing requirements across Canada, the United States, and the UK.Reporting to the CFO, this role serves as the primary compliance liaison between North American operations global offices. The incumbent must be a versatile leader capable of pivoting team priorities to meet shifting regulator demands while overseeing anti-money laundering (AML), data privacy, physical security, and corporate risk.ResponsibilitiesLicensing & Regulatory ManagementLifecycle Management: Direct the end-to-end licensing process, including initial applications, renewals, and annual returns for corporate business licenses.Agency Liaison: Act as the daily point of contact for Regulatory Authorities; coordinate the submission of Company and 'Key Person' applications under strict deadlines.Information Governance: Interface with Key Persons to collect highly sensitive and confidential data; expeditiously process requests from regulators for investigative documentation or fees.Executive Advisory: Keep Executive Management informed of critical licensing matters and maintain meticulous files for all corporate and executive filings.Audit Support: Represent the company during Regulatory Authority audits, investigations, and interviews.Compliance & Legal OversightRegulatory Oversight: Maintain continuous monitoring of MSH Internationals adherence to regulatory, legislative, and contractual obligations; develop region-specific compliance checklists.Business Advisory: Analyze legislative changes and advise business units on regulatory elements required for placing business in specific territories.Product Support: Assist staff with research and background preparation for insurance product reviews and approval processes with national and state regulators.Reporting: Collect and analyze data to prepare formal case files and reports for Executive Management and external regulatory bodies.Training: Partner with the Training and Development Coordinator to create and deliver compliance tools and materials for all global staff; conduct ad hoc training as required.Chief Privacy Officer (CPO) DutiesData Protection Leadership: Ensure global compliance with GDPR, PIPEDA, HIPAA, PIPA, and provincial regulations.Materials Review: Review and approve marketing materials and contracts to ensure legislative compliance, focusing on privacy and consent clauses.Incident Management: Receive, document, track, investigate, and remediate privacy complaints in accordance with the Policy and Procedures for Privacy Complaints.Risk Assessments: Conduct Privacy Impact Assessments (PIAs) and deliver recommendations for remediation.Culture: Deliver periodic 'Lunch and Learn' sessions and formal training to integrate privacy awareness into the corporate culture.Risk Management & Internal AuditRisk Register: Execute annual self-risk assessments and vendor/provider assessments; maintain the corporate risk register and advise business lines on control design.Strategic Risk: Conduct periodic AML risk assessments categorized by product and distribution channel.Audit Delivery: Coordinate and deliver on all internal and external audits, including ISO 27001, ISO 27017, SOC 1, SOC 2, and SOC 3.Remediation: Collaborate with stakeholders to resolve audit nonconformities and perform individual internal audit projects and report preparation.Executive Reporting: Provide Quarterly Risk Management and Audit reports to the Executive Committee.Committee ParticipationActive member and contributor to the following:Change Management, Fraud Management, Human Errors, AI Governance, Incident Management, Records Destruction, and Audit & Risk Management Committees.Contract & Administrative GovernanceContract Management: Oversee the contract management platform and review all contracts for legal and compliance components; liaise with external legal counsel on complex reviews.Designated Officer: Serve as the Records Retention Officer and oversee Physical Security protocols.Qualifications & EducationEducation: Post-secondary degree in Business Administration, Law, Compliance, or a related field.Experience: 8+ years in compliance and contracts administration, specifically within the Insurance industry.Functional Expertise: Proven background in Audit, Risk Management, and Anti-Money Laundering (AML).Communication: Exceptional English communication skills (written/oral) with the diplomacy required to negotiate with Executive Management and external advisors.Soft Skills: Exceptional analytical ability, attention to detail, and the organizational skills to manage a high-volume, multitasking environment.Preferred Skills:Professional fluency in French.Paralegal training or certification.
Job Title
Compliance Manager