Director, Cybersecurity & Data Privacy

About The Position

Requirements

• Bachelor’s Degree with a solid academic performance.
• 5+ years of experience managing large, complex data privacy or compliance engagements.
• 3+ years of experience in a consulting or industry-specific environment in advertising technology (AdTech).
• Knowledge and experience developing and managing key privacy deliverables such as: Data Inventory, DPIA, PIA, Third-party Risk, Incident Response, Data Subject Access Rights, Tracking Technologies, Consent, Privacy Policy, and VRMs.
• Experience working with tag management systems and other marketing tools including Google Tag Manager and Google Analytics.
• Knowledge of various internet protocol layers, emphasizing a holistic view of network security and performance.
• Deep knowledge of privacy regulations and frameworks (e.g., GDPR, CCPA, HIPAA) and their practical implementation.
• Proven track record of successfully leading and managing a team of privacy consultants or professionals.
• Excellent communication and interpersonal skills, with the ability to explain complex privacy concepts to non-technical stakeholders.
• Strong analytical and problem-solving abilities to identify privacy risks and develop practical solutions.
• Willingness and flexibility to travel as required
• Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future.

Nice To Haves

• Certified Information Privacy Professional (CIPP) and/or OneTrust certifications (preferred)

Responsibilities

• Conduct comprehensive assessments of clients' current ad tech practices and identify compliance gaps related to privacy regulations.
• Implement changes in various Ad Tech technologies to operationalize compliance strategy.
• Develop and deploy methodologies on integrating data protection by design principles to the SDLC, including requirements, elicitation, design, implementation, testing, deployment, and ongoing administration and maintenance.
• Develop and deploy methodologies to advise clients on applying consent models to cookies, pixels, beacons, and other tracking technologies for websites and mobile applications.
• Develop and deploy website scanning strategies and technologies; recommend and implement technical measures to support compliance with consent and preference management obligations.
• Oversee delivery of engagements related to Privacy Technology implementations, integrations, and configurations; privacy by design; Software / Solution Development Lifecycle (SDLC) integration; privacy source code analysis; website and application compliance; and Privacy Technology training and adoption.
• Design and develop robust API/system integrations utilizing cutting-edge privacy tools, acting as a key system architect.
• Monitor and troubleshoot integration issues, ensuring system reliability and performance.
• Assist with in-depth analyses of network traffic and employ advanced network scanning tools.
• Create documentation identifying data flows between various systems and technologies.
• Lead day-to-day activities of engagements including interaction with other team members, subject matter experts, external counsel, and client contacts.
• Manage all facets of client engagements, including project planning, work stream supervision, budgeting, and billing.
• Create project status summaries, reports, metrics, written analyses, assessments, and other presentations of work performed.
• Create and update policies and procedures to support compliance with various regulations.
• Actively participate in and lead internal and external team meetings including client assessments, presentations, and status meetings.
• Manage time and tasks to meet internal and external deadlines.
• Develop standardized metrics, methodologies, and other work products to be delivered by client project teams.
• Stay informed on industry trends and best practices in system architecture, automation and integration.