Privacy Program Manager

About The Position

Requirements

• 5-8 years of privacy program management experience, with demonstrated experience building privacy programs from scratch or significantly scaling existing programs.
• Deep expertise in GDPR and UK GDPR operational requirements, including hands-on experience with RoPAs, DPIAs, DSARs, international data transfers, and privacy technology platforms (OneTrust, Ketch, etc.).
• Experience working within multi-jurisdictional privacy programs spanning EEA, UK, US, and other global regions.
• Proven track record in SaaS, cloud, or technology environments, preferably serving regulated customers (legal, financial services, healthcare).
• Strong program management and stakeholder coordination skills, with ability to manage multiple workstreams, drive initiatives to completion, and build trusted cross-functional partnerships.
• Excellent communication skills with ability to translate complex privacy regulations into practical operational guidance and drive organizational change.
• Self-starter mentality with ability to build structure in ambiguous environments and work independently while partnering effectively with legal counsel.
• Experience leading a team.

Nice To Haves

• CIPP/E, CIPP/US, or CIPM certification.
• Experience supporting AI governance initiatives or AI-related privacy assessments.
• Technical background with familiarity in data flows, system architectures, or data mapping.
• Experience in agile/product development environments supporting privacy-by-design.

Responsibilities

• Operationalizing and scaling the global privacy program, including records of processing (RoPA), privacy tooling, and operational compliance with GDPR, UK GDPR, CCPA/CPRA, and other global privacy regulations.
• Managing the operational workflow for privacy assessments (PIAs, DPIAs, LIAs, AI impact assessments), including coordinating inputs, documentation, tracking, and escalation, while partnering with legal counsel on legal judgment and risk analysis.
• Owning the data subject rights request (DSAR) program and privacy training coordination, ensuring timely execution and regulatory compliance.
• Managing privacy due diligence for third-party suppliers as part of our Third-Party Risk Management process.
• Overseeing the review and updating of privacy notices and cookie consent management.
• Supporting the management of personal data incidents in coordination with Information Security and the DPO and collaborating with relevant teams to identify privacy risks and develop proportionate mitigation approaches.
• Serving as the primary point of contact for privacy operations across Product, Engineering, Marketing, Sales, Security, and Compliance teams, building trusted partnerships and establishing regular stakeholder cadence.
• Building privacy governance structures (privacy committees, champion networks, escalation paths) and creating self-service resources that enable business teams to operate compliantly.
• Developing privacy metrics, dashboards, and reporting for leadership visibility, and managing audit preparation and compliance evidence.
• Leading privacy culture and change management initiatives, translating complex regulations into practical guidance, and driving adoption across the organization.
• Managing the Privacy Operations Specialist, providing direction on priorities, quality standards, and professional development.

Benefits

• Flexible working policy
• Flexible work hours
• Market competitive salary
• Annual performance-based bonus
• Comprehensive Health/Vision/Dental/Life Insurance
• 401k Retirement Savings Plan with a company match up to 4%
• Enhanced leave for expecting parents (20 weeks 100% paid for primary leave, and 10 weeks 100% paid for secondary leave)
• Flexible time off policy
• Multiple company wellness days each year
• Access to RethinkCare, a global behavioral health platform
• Unlimited access to LinkedIn Learning courses
• Access to interactive Microsoft courses & training