Legal & Compliance - Data Compliance & Risk, SVP

Blackstone is the world’s largest alternative asset manager. We seek to create positive economic impact and long-term value for our investors, the companies we invest in, and the communities in which we work. We do this by using extraordinary people and flexible capital to help companies solve problems. Our $1.1 trillion in assets under management include investment vehicles focused on private equity, real estate, public debt and equity, infrastructure, life sciences, growth equity, opportunistic, non-investment grade credit, real assets and secondary funds, all on a global basis. Further information is available at www.blackstone.com. Follow @blackstone on LinkedIn, X, and Instagram.

Blackstone is seeking an experienced and strategic SVP of Data Compliance and Risk to design, implement, and enhance oversight programs across Privacy, Cybersecurity, Artificial Intelligence and Records. Sitting within Blackstone’s Legal & Compliance group, this is a management-level role with direct responsibility for a team of compliance professionals and program analysts. You will serve as a critical partner in developing sustainable, enterprise-level compliance frameworks designed to ensure transparency, accountability and demonstrable adherence to internal policies and external regulatory obligations. 

You will be responsible for the full lifecycle of compliance program development – from drafting policies and standards, building governance frameworks, to implementing procedures, controls, training and monitoring plans. This role requires a proactive leader who can work cross-functionally to embed compliance into business processes while strengthening governance and documentation standards.  

Key Responsibilities:

• Lead and manage a globally distributed team of compliance professionals and analysts, providing day-to-day oversight, coaching and professional development support in a distributed environment.

• Oversee the development and enhancement of compliance frameworks across Privacy, Cybersecurity, AI and Records, ensuring consistency with regulatory requirements and internal policies and risk appetite. 

• Own and enhance information risk management programs, including data retention, disposition and e-discovery.

• Own the full compliance lifecycle, including:

-Policies, standards and procedures

-Governance charters and control mapping

-Roles and responsibilities documentation (e.g., RACI matrices)

-Training, awareness, and culture initiatives

-Monitoring, testing and effectiveness reviews

-Issues management, escalation and reporting

• Forge strategic partnerships with key internal stakeholders.

• Collaborate with risk owners and control functions to align on compliance requirements and validate control design and implementation.

• Identify and close gaps in existing compliance programs, building mechanisms to measure, demonstrate, and report on program effectiveness and maturity.

• Drive the creation and maintenance of central documentation and evidence repositories to support audits, assessments and regulatory examinations.

• Serve as a thought partner on emerging risks in AI governance, data use, and evolving cyber and privacy regulations.

• Monitor the dynamic regulatory environment and communicate obligations with key stakeholders.

Required Qualifications:

• 10+ years of experience in compliance, risk management or governance, with expertise in one or more of the following domains: privacy, cybersecurity, records/information governance, or AI ethics/risk.

• Strong understanding of regulatory frameworks such as GDPR, CCPA, DORA, SEC Cyber Rules, EU AI Act and applicable AI laws, NIST, ISO and AI risk guidelines.  

• Proven track record of building and operationalizing compliance programs and governance frameworks in a complex, matrixed environment. 

• Excellent writing, communication and stakeholder engagement skills; skilled at translating regulatory and risk concepts into actionable guidance and requirements. 

• Experience working in or with second line of defense functions; comfortable challenging and guiding business units and corporate groups. 

• Experience in financial services, healthcare, technology or other highly regulated sectors. 

• Experience managing geographically distributed teams.

• Navigate ambiguity, influence without authority and drive progress across competing priorities. 

Preferred Qualifications:

• Experience building compliance or risk functions

• Familiarity with GRC platforms

• Familiarity providing compliance or risk support for the implementation of privacy, AI or other governance platforms

• CIPP, CISM or similar certifications

The duties and responsibilities described here are not exhaustive and additional assignments, duties, or responsibilities may be required of this position.  Assignments, duties, and responsibilities may be changed at any time, with or without notice, by Blackstone in its sole discretion.

Expected annual base salary range:

Actual base salary within that range will be determined by several components including but not limited to the individual's experience, skills, qualifications and job location. For roles located outside of the US, please disregard the posted salary bands as these roles will follow a separate compensation process based on local market comparables.
Additional compensation and benefits offered in connection with the role consist of comprehensive health benefits, including but not limited to medical, dental, vision, and FSA benefits; paid time off; life insurance; 401(k) plan; and discretionary bonuses. Certain employees may also be eligible for equity and other incentive compensation at Blackstone’s sole discretion.

Blackstone is committed to providing equal employment opportunities to all employees and applicants for employment without regard to race, color, creed, religion, sex, pregnancy, national origin, ancestry, citizenship status, age, marital or partnership status, sexual orientation, gender identity or expression, disability, genetic predisposition, veteran or military status, status as a victim of domestic violence, a sex offense or stalking, or any other class or status in accordance with applicable federal, state and local laws. This policy applies to all terms and conditions of employment, including but not limited to hiring, placement, promotion, termination, transfer, leave of absence, compensation, and training.  All Blackstone employees, including but not limited to recruiting personnel and hiring managers, are required to abide by this policy.

If you need a reasonable accommodation to complete your application, please contact Human Resources at 212-583-5000 (US), +44 (0)20 7451 4000 (EMEA) or +852 3656 8600 (APAC).

Depending on the position, you may be required to obtain certain securities licenses if you are in a client facing role and/or if you are engaged in the following:

• Attending client meetings where you are discussing Blackstone products and/or and client questions;

• Marketing Blackstone funds to new or existing clients;

• Supervising or training securities licensed employees;

• Structuring or creating Blackstone funds/products; and

• Advising on marketing plans prepared by a sales team or developing and/or contributing information for marketing materials.

Note: The above list is not the exhaustive list of activities requiring securities licenses and there may be roles that require review on a case-by-case basis.  Please speak with your Blackstone Recruiting contact with any questions.
To submit your application please complete the form below. Fields marked with a red asterisk * must be completed to be considered for employment (although some can be answered "prefer not to say"). Failure to provide this information may compromise the follow-up of your application. When you have finished click Submit at the bottom of this form.