Privacy Manager

About The Position

Requirements

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree preferred.
• At least 5 years of experience in data privacy, data protection, or data governance roles, with a significant focus on HIPAA and US state privacy laws (e.g., CCPA).
• Previous experience in a fintech or healthcare technology environment.
• An enthusiasm for building a great privacy function in a company that’s still growing and scaling
• Excellent communication and interpersonal skills, with the ability to articulate complex technical and privacy concepts to diverse audiences.
• Strong analytical and problem-solving abilities.
• Ability to work independently and as part of a cross-functional team.
• High level of integrity and ethical conduct.

Nice To Haves

• CIPP/US, CIPT, CISSP, or an equivalent privacy and security certification.

Responsibilities

• Develop, implement, and maintain the company's enterprise-wide data privacy program, including policies, procedures, and controls.
• Serve as the initial point of contact for most data privacy matters, providing guidance to internal teams on the privacy by design framework.
• Monitor and track all program development activities and progress.
• Conduct regular privacy risk assessments and impact assessments (PIAs/DPIAs) for new products, services, and processing activities.
• Ensure continuous compliance with all applicable federal, state, and international data protection laws, including but not limited to:
• Health Insurance Portability and Accountability Act (HIPAA) and HITECH Act.
• California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA).
• Other state privacy laws (e.g., VCDPA, CPA, etc.).
• Oversee and manage responses to data subject access requests (DSARs) and other individual rights requests.
• Develop and update privacy policies, standards, and procedures.
• Ensure documentation of privacy controls and compliance activities.
• Develop and deliver privacy training programs for various Cedar teams, including Product, Client Managers, and Human Resources.
• Foster a culture of privacy awareness throughout the organization.
• Assist in internal and external audits related to privacy, HIPAA, PCI-DSS, and US state privacy law compliance.
• Work with legal and security teams to respond to regulatory inquiries and ensure audit readiness.
• Help Cedar respond to client questions and diligence regarding Cedar’s privacy and security posture.
• Lead and manage the privacy incident response process, including investigation, containment, notification, and remediation of potential privacy breaches.
• Collaborate with Legal and Security teams to maintain an up-to-date and effective incident response plan.
• Escalate critical privacy matters to the Data Privacy Officer and the executive leadership team.

Benefits

• This role is equity eligible
• This role offers a competitive benefits and wellness package
• Unlimited PTO for vacation, sick and mental health days–we encourage everyone to take at least 20 days of vacation per year to ensure dedicated time to spend with loved ones, explore, rest and recharge
• 16 weeks paid parental leave with health benefits for all parents, plus flexible re-entry schedules for returning to work
• Diversity initiatives that encourage Cedarians to bring their whole selves to work, including three employee resource groups: be@cedar (for BIPOC-identifying Cedarians and their allies), Pridecones (for LGBTQIA+ Cedarians and their allies) and Cedar Women+ (for female-identifying Cedarians)
• Competitive pay, equity (for qualifying roles), and health benefits, including fertility & adoption assistance, that start on the first of the month following your start date (or on your start date if your start date coincides with the first of the month)
• Cedar matches 100% of your 401(k) contributions, up to 3% of your annual compensation
• Access to hands-on mentorship, employee and management coaching, and a team discretionary budget for learning and development resources to help you grow both professionally and personally