Job Details

Privacy Program Manager (CORPORATION)

New York, NY, United States
  • Employment Type: Direct Hire

Our client, an elite global alternative asset management firm, is seeking to add a Privacy Program Manager to its sophisticated and growing New York team. This dynamic, big idea, big execution professional will build and evangelize the privacy program in conjunction with and amongst a group of top tier professionals with strong support from senior leadership. This Program Manager must be a hands-on contributor that can consult ad hoc on privacy laws and opportunities; however, this person will not be a policy writer or a legal breach handler. Essential background should include having rolled out a successful privacy program before (preferably financial, banking, brokerage company) privacy by design expertise, risk audit knowledge, DSAR and an incident response background. Subject matter expertise in GDPR and CCPA required, as well as a confident privacy market software technology exposure or acquisition is paramount. This role is an opportunity to make a major impact on a distinguished organization that offers an unparalleled culture and tremendous financial, vertical and horizontal professional growth. Send resumes to [email protected].

Job Description:
The Privacy Program Manager will assist the Data Policy and Strategy Officer and the privacy operations team in operationalizing the global privacy program, with a focus on creating and implementing the tools, policies and training needed to enable employees to appropriately and responsibly handle personal data as part of their business activities.

Primary job responsibilities include:

  • Privacy Program Management: Ensures the company is executing the global privacy program in compliance with sectoral and jurisdictional laws and regulations; assists in the development and maintenance of policies, standards, playbooks and standard operating procedures that support global privacy program objectives; develops and participates in delivering privacy training to employees
  • Regional Compliance: Helps implement measures throughout the world to ensure compliance with local laws; maintains registration details, creates registers as may be required by law, and ensures fulfillment of other legislative and regulatory compliance requirements
  • Business Consultation: Advises on data protection and data handling standards and on appropriate disclosure, notification and consent mechanisms; assists in the development and negotiation of data sharing agreements, data transfer agreements, in the implementation of model contractual clauses and intragroup data sharing arrangements; researches and responds to privacy-related questions as these arise
  • Data Subject Services: Helps implement and monitor opt-in/out-opt, technical monitoring, and data subject services such as the data subject access request program; ensures that subject access requests are logged and responded to within the prescribed periods
  • Privacy Impact Assessments: Prepares documents, data flows, and other materials related to products (new products, product enhancements, changes to workflows and new use cases) and Protection Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs) and conduct periodic compliance assessments of these
  • Privacy by Design: Collaborates with IT, information security and other teams to ensure incorporation of privacy by design approach into data processing procedures; works to understand use cases and develop operational procedures for new business scenarios involving internal or external data handling 
  • Monitoring and Compliance: Monitors country-specific regulatory activities to ensure awareness of changes in regulatory environment globally; helps develop and manage internal controls relating to privacy legal frameworks; assists in incident and data breach responses (including evaluating notification requirements)
  • Audit and Assess: Supports ongoing measurement and auditing on overall effectiveness of the privacy program and execution of privacy policies and standards, both internally and by third-party vendors; investigates and implements technical aids that support compliance  

Qualifications:

  • Minimum of bachelor’s degree, masters or law degree preferred
  • CIPP and/or CIPM certification preferred
  • Directly related experience in data protection and governance and/or privacy program management preferred
  • Demonstrated ability delivering results and advancing privacy program maturity
  • Deep understanding of personal data and broad knowledge of data across the business, ideally in the Financial Services industry, but relevant experience from other consumer/regulated industries will also be considered
  • Understanding of IT systems and their connection to data collection and processing
  • Ability to operate effectively in a matrixed environment: building and managing peer and management-level relationships through achievement of results, accountability to schedule, and allocation of resources and meeting customer needs
  • In-depth understanding of privacy policies, principles, and technologies as well as familiarity with privacy control frameworks
  • Experience interpreting privacy regulations
  • Experience in common office business systems such as Microsoft
  • Experience in working with staff compliments of at least ten people operating in different locations

Competencies:

  • Ability to understand legal contracts and regulatory requirements quickly, then apply to ensure our compliance; to support this, you will need to collaborate with external experts to meet our goals
  • Strong technical skills, sharp intellect, and ability to understand and analyze difficult, complex compliance and business problems
  • Applies own expertise effectively and demonstrates the ability to work with colleagues to devise pragmatic and creative solutions
  • Demonstrated skills in business partnering and collaboration, and being adept at establishing and sustaining effective working relationships, both within and between departments
  • Prioritization, perspective and focus on critical tasks that add value
  • Excellent organizational skills and follow-through  
  • Excellent oral and written communication skills and an ability to explain complex concepts in simple ways
  • Strong judgment and the ability to engender trust
  • Sense of urgency, diligent and conscientious work ethic
  • Calm demeanor, tolerance for ambiguity and confidence
  • Outstanding record of academic achievement and professional accomplishment
  • Cross-cultural understanding
  • Excellent attention to detail

Interested in this job? Get in touch.

(Accepted file formats are PDF, DOC, DOCX, TXT, RTF and ZIP. File size maximum is 2 MB.)