Privacy Compliance Manager

About The Position

Requirements

• Minimum six years of experience in privacy and regulatory compliance, risk advisory and reporting roles, preferably within financial services
• Strong knowledge of privacy legislation, regulatory guidance, and emerging regulatory trends, with the ability to apply requirements pragmatically to business operations.
• Demonstrated experience assessing privacy risk, conducting Privacy Impact Assessments (PIAs), defining KRIs/KPIs, and recommending and implementing risk mitigation strategies.
• Experience providing second‑line oversight and challenge of first‑line risk and control assessments.
• Strong leadership, project management, and stakeholder engagement skills, with the ability to lead cross‑functional initiatives.
• Excellent written and verbal communication skills, including executive‑level reporting and presentations for senior management and Boards.
• Strong analytical judgment, discretion in handling sensitive information, and a customer‑centric, ethical approach to privacy complaints and breach management.

Nice To Haves

• IAPP Certified Information and Privacy Professional (CIPP) Canada or Europe, and/or Certified Privacy Manager (CIPM) and/or Canadian Risk Management Designation (CRM) highly desirable.
• Certifications in privacy technology, data protection officer, or information systems security are an asset
• Proficiency in French is an asset.

Responsibilities

• Apply Canadian privacy laws and organizational policies to real‑world business initiatives
• Advise business teams on compliant collection, use, disclosure, retention, and safeguarding of personal information
• Support the Chief Privacy Officer in leading ivari wide regulatory change initiatives related to Privacy.
• Identify privacy risks and recommend mitigation strategies aligned with a risk‑based compliance approach
• Maintain and enhance privacy compliance artifacts, including: Privacy impact assessment (PIA) determinations and tracking ongoing remediation, Privacy risk register and KPI tracking, Incident logs and breach documentation
• Support ongoing compliance with Quebec Law 25 accountability and governance requirements
• Contribute to development and maintenance of privacy policies, procedures, and standards
• Ensure documentation of policies and procedures to comply with regulatory requirements and evidence controls
• Produce quarterly reports for senior management and executive leadership
• Lead the design and enhancement of Privacy Impact Assessment tools and risk assessments for moderate‑ to high‑risk initiatives
• Evaluate data flows, purposes, safeguards, and proportionality
• Document findings, mitigation plans, and approvals in compliance records
• Monitor completion of remediation actions arising from PIAs
• Develop and maintain Privacy incident response plan
• Investigate, analyze and handle all privacy incidents reported to the Privacy Office
• Assist the Chief Privacy Officer and Legal with regulatory inquiries, audits, or investigations
• Prepare compliance evidence and documentation for internal or external reviews
• Is a Privacy subject‑matter resource for Compliance and business teams
• Provide guidance and training to Privacy Analysts and operational teams
• Support privacy awareness initiatives and compliance training programs

Benefits

• Competitive base salaries plus a bonus
• Health and dental benefits for the entire family from Day 1
• A fantastic vacation plan and time off
• A pension plan with 100% match by ivari
• Employee savings plan with 75% match
• Flexible and hybrid work arrangements
• Opportunities for professional development
• Recognition programs
• Wellness programs