AI and IT Compliance Consulting Director

Job Description

You have a clear vision of where your career can go. And we have the leadership to help you get there. At CNA, we strive to create a culture in which people know they matter and are part of something important, ensuring the abilities of all employees are used to their fullest potential.

Join CNA as our AI Compliance Director—a strategic leader driving the future of responsible AI and technology governance. You will help shape enterprise-wide compliance, champion ethical AI, and collaborate across business areas to ensure our organization remains at the forefront of regulatory excellence. JOB DESCRIPTION: Key Responsibilities Lead AI Governance: Serve as the Compliance AI Program Owner, overseeing intake, triage, and lifecycle management of AI initiatives. Ensure responsible, ethical, and compliant AI implementation.

Regulatory Strategy: Monitor global legislative and regulatory frameworks affecting information technology, cybersecurity, artificial intelligence, and data privacy. Translate requirements into actionable policies, standards and procedures.

Risk Management: Conduct and oversee compliance-focused risk assessments. Develop and maintain a compliance risk register for technology-related risks. Cross-Functional Collaboration: Partner with IT, Information Security, AI Governance, Legal and Enterprise Risk Management teams to embed AI governance into operational workflows and third-party risk management.

Program Optimization: Streamline AI governance processes, automate workflows, and identify opportunities to enhance compliance maturity and reduce friction for business users. Training & Communication: Provide guidance and training on responsible AI practices. Communicate compliance priorities to senior leadership and stakeholders.

Monitoring & Reporting: Maintain audit-ready documentation, define KPIs, and report governance metrics to senior leadership. Qualifications Bachelor’s degree with Master’s preferred in Computer Science, Risk Management, Data Ethics, Law, or a related discipline or equivalent.

Law degree or compliance certification preferred. 10+ years of related experience, with 5+ years in compliance, risk management, or AI governance. Proven experience developing and implementing AI governance frameworks.

Expertise in regulatory impact assessments, policy development, and compliance program optimization. Familiarity with AI risk assessment tools, audit procedures, and governance automation platforms. Skills & Abilities Senior-level knowledge of regulatory compliance, especially insurance compliance.

Deep understanding of AI, Data Privacy, and Cybersecurity regulations. Certifications in compliance, AI governance, data privacy (e. g.

, CIPP, CIPM), or cybersecurity (e. g. , CISSP) are highly valued.

EWJD3