Privacy Manager

About The Position

Requirements

• 6+ years of experience in privacy or security governance, risk, or compliance functions.
• Passion for Privacy as a strategic approach, not a check-the-box exercise.
• Experience working in or with a technology organization in an intensive agile environment.
• Experience with GDPR, CCPA, or consumer/e-commerce experience preferred.
• A strong degree of comfort working alongside, engaging and communicating in a cross-functional environment, including IT, engineering, and business stakeholders.
• Excellent interpersonal, communication, and presentation skills, including report-writing experience.
• Understanding and belief that privacy management is never a 'one size fits all'.
• An entrepreneurial spirit and bias towards action and thoughtful experimentation.

Responsibilities

• Lead the development, implementation, and maintenance of the organization's privacy program.
• Ensure compliance with privacy regulations such as GDPR, CCPA/CPRA, and other applicable data privacy laws, regulations, and industry best practices.
• Conduct privacy risk assessments, Data Protection Impact Assessments (DPIAs), and audits of policies, processes, and standard operating procedures to identify and implement enhancements.
• Strong understanding of privacy, data protection, and compliance requirements within cloud environments, including AWS, Azure, and Google Cloud Platform (GCP).
• Manage incident response for data breaches and coordinate reporting to regulators when required.
• Assist in data mapping, inventory, and classification initiatives.
• Engage with business, technical, and legal stakeholders to conduct privacy-by-design reviews for product launches, integrations, and implementations.
• Develop, update, and enforce privacy policies, procedures, and training programs while tracking regulatory developments and industry best practices to proactively enhance the organization's privacy program.
• Partner cross-functionally with engineering, product, legal, customer service, and other business teams, building an understanding and framework for scaling privacy compliance in their processes and operations.
• Lead privacy due diligence reviews and oversight of third-party vendors, including to verify compliance with security & privacy requirements.
• Assist in delivering privacy training and awareness programs across the organization.
• Report privacy metrics, risks, and incidents to senior management and executive leadership.

Benefits

• Paid Time Off, including vacation, paid bereavement, and family sick leave.
• Universal Paid Parental Leave for both parents + flexible return to work program.
• Paid Sabbatical after 5 years of continuous service.
• Exclusive employee subscription and rental discounts.
• Comprehensive health, vision, dental, FSA and dependent care from day 1 of employment.
• 401k match.
• Company-wide events and outings.
• Office-centric work with the option to work remotely on Fridays.