What you’ll do:
- Develop, implement, and maintain the company’s privacy policies and procedures in compliance with global privacy laws and regulations, such as GDPR, CCPA, HIPAA, etc., including:
- Conduct privacy impact assessments and risk analyses to identify potential privacy issues and develop mitigation strategies.
- Manage data subject access requests, data breaches, and other privacy-related incidents, including investigation, response, and reporting.
- Collaborate with IT and security teams to ensure the protection of personal data through appropriate technical and organizational measures.
- Stay up-to-date with evolving privacy laws and regulations and advise on the implications for the company.
- Review contractual agreements with customers and vendors.
- Support Product Management in the development of new privacy products and features.
- Support sales, marketing and alliance efforts as a privacy practitioner and subject area expert.
- Manage junior staff to achieve program and company objectives.
What you’ll bring:
- Juris Doctor (JD) preferred.
- At least one IAPP certification (CIPP, CIPM, CIPT).
- Minimum of 5 years of experience in data privacy.
- Strong understanding of global privacy laws and regulations.
- Experience conducting privacy impact assessments and managing privacy incidents.
- Excellent communication skills, both written and verbal, with the ability to communicate complex privacy concepts to different audiences.
- A technical background and/or working knowledge of technical concepts, such as databases, data discovery, and software development are highly desirable.
- Experience working with software technology organizations preferred.
