Data, Privacy & AI Compliance (Second Line of Defense) - Vice President (all genders)
JPMorganChase
Software Engineering, Data Science, Compliance / Regulatory
Frankfurt, Germany
Posted on Dec 1, 2025
Join the JPMSE Compliance team in Frankfurt as a Compliance Vice President, reporting functionally to the EMEA Head of Data & AI CCOR. The role is partnering effectively with local management, Line of Business (LOB) and global/regional Compliance teams as well as Internal Audit, Operational Risk and other Control functions. This position is committed to shaping the future of compliance frameworks and driving meaningful change throughout the organization.
As a Data, Privacy & AI Compliance Vice President within our Compliance team, you will provide oversight, subject matter expertise, and support to ensure compliance with relevant laws and regulations, including GDPR and the EU AI Act, and you will contribute to reports to senior management and governance committees. You will play a key role in the management, analysis, and oversight of compliance risks from a second line perspective. You will be responsible for supporting the development and execution of risk mitigation strategies, provide subject matter expertise to stakeholders, and providing oversight of the firm’s compliance with evolving Data, Privacy and AI regulations across the EMEA region.
Job responsibilities
- Lead and support the maintenance of the Compliance Program for the firm’s European entities, focusing on Data, Privacy, and AI risk.
- Provide subject matter expertise to senior stakeholders and business partners on Data Privacy and AI Risk, policies, and regulatory issues.
- Identify and raise potential concerns and challenge on business activities with regards to Global Investment Bank & Global Corporate Bank including Banking, Payments, Securities Services, Markets as well as to the Private Bank and International Consumer Bank business activities.
- Oversee and support 1st Line of Defense (1LOD) Data, Privacy & AI program, including analysis of new business initiatives and products.
- Provide compliance subject matter expertise & challenge on regional and firmwide projects, ensuring alignment with regulatory requirements.
- Develop and deliver training and communication programs to enhance employee awareness of Data, Privacy and AI obligations.
- Oversee the 1LOD Data, Privacy & AI processes and controls and challenge any potential concerns. Support the development and execution of 1LOD Data Risk testing activities.
- Compile and analyse management information, identifying trends and emerging risks.
- Maintain expert knowledge of current and future Data, Privacy and AI regulations impacting the EMEA region.
- Build and maintain strong relationships with business, control, and operational risk teams across the organization.
- Represent the function in regulatory exams, internal audits, and governance forums as required.
Required qualifications, capabilities, and skills
- Significant prior experience in Data, Privacy and AI or other related experience (such as compliance, legal, audit or risk).Proven experience in interpreting and applying regulations such as GDPR, EU AI Act, relevant German Law and other applicable EMEA Privacy and AI laws in the banking sector; experience with retail business activity.
- Sound understanding of controls, risk metrics and reports. Detail-oriented, with a high level of attention to quality in work products.
- Strong organizational skills with the ability to manage multiple priorities and meet tight deadlines.
- Excellent verbal and written communication skills, with the ability to present complex issues clearly and concisely to senior management.
- Exceptional written and verbal communication skills in German and English.
- Strong interpersonal and influencing skills, with a track record of building credibility and effective partnerships with senior stakeholders.
- Collaborative approach and ability to work effectively with multi-disciplinary teams in a global organization.
- High energy, self-directed, and proactive, with the ability to execute in a fast-paced, deadline-driven environment.
Preferred qualifications, capabilities, and skills
- Experience in a second line Compliance or Risk Management, or related function within financial services is highly desirable.
- Relevant MBA or Bachelor's degree with professional certification preferred (e.g., CIPP/E, CIPM, ISACA).
- Broad-based IT skills and with relevant applications.
- Ability to extract, interpret, and present data-driven insights to support Compliance, Privacy, and Risk Management objectives.
J.P. Morgan is a global leader in financial services, providing strategic advice and products to the world’s most prominent corporations, governments, wealthy individuals and institutional investors. Our first-class business in a first-class way approach to serving clients drives everything we do. We strive to build trusted, long-term partnerships to help our clients achieve their business objectives.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
Our professionals in our Corporate Functions cover a diverse range of areas from finance and risk to human resources and marketing. Our corporate teams are an essential part of our company, ensuring that we’re setting our businesses, clients, customers and employees up for success.
Our Compliance teams work globally across all lines of business to advise internal stakeholders on the impact of regulatory requirements and how to balance these with the firm’s needs. Their diverse mandate means they also provide input on new business strategies, product lines, policies, training, operational processes, risk mitigation and control.
Join the team managing compliance risk programs related to Data Privacy, Data Protection, Data Use, Data Storage, Data Retention and AI