Privacy Risk and Compliance Manager

Privacy Risk and Compliance Manager Responsibilities:

• Provide strategic guidance and second line of defense oversight to improve company-wide processes to establish, measure and improve privacy practices.
• Solve complex business and security problems, while minimizing friction and maximizing productivity and impact. Use data-driven arguments to make recommendations to leadership on architecture, resourcing, roadmaps, and processes.
• Partner with Cloud infrastructure teams, security, integrity, and cross-functional engineering teams to develop a strategic roadmap to mature the privacy posture of the company.
• Implement maturity frameworks across multiple programs factoring in emerging regulations and proactive detection of risks.
• Broadly, this might be securing end-to-end messaging encryption, protecting next-generation gaming and media services from exploitation, validating secure boot processes and certificate storage, infusing security into SoC hardware designs, and/or creating security programs for new product innovations.
• Become a trusted partner working cross-functionally with engineer, product and business teams building a deep understanding of how their teams work, their needs and how privacy compliance can be operationalized into their teams.
• Support regulatory compliance efforts including controls testing, certifications, risk assessments, oversight and governance, external assessor coordination, control design,, continuous monitoring, issue management and remediation.
  

Minimum Qualifications:

• 15+ years of security, privacy, regulatory compliance domain experience in a cloud-native, engineering-heavy technology environment
• 10+ years of work experience in technical program management or other operational disciplines
• 8+ years experience with public cloud (implementation, architecting environments, etc)
• Industry certifications such as AWS Solutions Architect, CIPP, or CISSP. Deep AWS, GCP, Azure
• Knowledge of industry risk frameworks and best practices (PCI, ISO 27001, MITRE, COSO, ISO, NIST)
  

Preferred Qualifications:

• Bachelor's or Master’s degree in a related discipline or equivalent experience
• Experience working with technical and non technical stakeholders
• Proven track record of delivering ambitious product, and/or organizational or process changes
• Experience in process design and process improvement in end-to-end product lifecycle coordination