Compliance Advisory Program Manager

About The Position

Requirements

• Bachelor's degree in a related discipline or equivalent practical experience
• 5+ years of experience in Governance, Risk, and Compliance (GRC) with specialization in data privacy and cyber security either in Tech industry, Financial Services, or Healthcare
• 2+ years experience delivering technical programs or products from inception to delivery across organizations
• 2+ years experience managing and directing contingent workers and contractors who specialize in privacy and security program management
• Prior working knowledge of GDPR, CCPA, and familiarity with similar privacy data protection legislation and security regulations
• Prior experience working with program management either directly in product or engineering coupled with ITGC experience

Nice To Haves

• Experience designing, implementing, and maintaining scalable global compliance operations
• Experience in a leadership capacity influencing stakeholders and engineers
• Prior experience working with regulatory compliance orders, laws, and regulations such as FTC Consent Order or other equivalent decrees
• Proven track record of delivering organizational transformational change
• Design thinking process improvement experience leveraging creativity and structure to solve complex problems while putting the user first
• Experience working in a technical environment and prior cross-group collaboration experience
• Experience in end-to-end lifecycle creation and management
• Master's degree in a related discipline

Responsibilities

• Provide strategic guidance and second line of defense oversight to improve company-wide operational processes to establish, measure, and improve privacy practices
• Support Meta's commitment to protect users' privacy by enabling and advising privacy domains to navigate the complex landscape of global and data privacy regulations
• Become a trusted partner to product, business, legal, and engineering teams across the company to develop insights and drive improvements into the mechanics of how teams incorporate compliance and privacy-by-design into operations and product life cycles
• Provide second line of defense guidance and oversight to ensure Meta's compliance with global privacy regulations and obligations across all new and modified products, services, and practices
• Consult with legal partners to ensure products and practices comply with global privacy laws and regulations
• Serve as a subject-matter expert with an understanding of the End-to-End (E2E) Privacy Compliance Processes, including timelines and stakeholder involvement/expectations
• Manage the successful delivery of the FTC audit for assigned safeguard/domain, ensuring all requirements are met, documentation is complete, and findings are addressed in a timely manner
• Provide compliance advisory and review for new safeguards, issues, remediation plans, monitors, and safeguard changes, ensuring alignment with regulatory expectations and internal standards
• Provide independent oversight to proactively identify issues, ensure visibility, and help prioritize remediation efforts within assigned safeguards/domains, acting as a key escalation point and advocate for risk mitigation
• Develop long-term objectives of how we will evolve our privacy program operating model with well-documented roadmaps, goals, and objectives while delivering on immediate priorities
• Provide guidance to product, business, and engineering teams on complying with the Privacy Program and its day-to-day objectives
• Anticipate bottlenecks, provide escalation management, and ensure user privacy is not compromised