Job Brief:
You'll be joining Mindtickle’s InfoSec and Compliance team, which is responsible for various functions related to Security, Privacy, and Compliance around Mindtickle's rapidly growing cloud platform. You'll play a crucial role in all our compliance & information security initiatives, including but not limited to those arising from regulations (e.g., GDPR, CCPA, UK DPA 2018, FINRA), audit requirements (e.g., SOC 2, HIPAA), and customer/ prospects requests (typically large enterprises).
As Data Privacy & Compliance Manager, you will champion the highest data privacy standards and drive forward compliance across all of Mindtickle. Crucial to this role will be an expert knowledge of international data protection laws and a proactive and pragmatic approach towards data privacy and compliance.
Key Responsibilities:
Act as the single point of contact for all privacy-related topics, including communication with customers and prospects, including RFPs, emails, or privacy calls
Closely working with the internal legal team and external legal counsel to support the review of third parties/customer data processing addendums (DPAs), standard contractual clauses, contracts, and other data protection agreements
Maintain the data protection terms agreed with customers in a contract management software
Perform due diligence of new third parties and periodic risk review of existing third parties, including processes around sub-processors
Support in other industry compliance projects such as ADA, Section 508, WCAG, FINRA, 21 CFR Part 11, etc.
Lead the assessment of new legislation or other regulatory changes (GDPR, CCPA, UK DPA 2018, LGPD, PIPEDA, Swiss FDAP) and make recommendations as necessary to ensure that risks are mitigated as well as ongoing compliance
To work flexibly and collaboratively across all teams in the organization while driving privacy & compliance-related projects, including sales, customer success, product, and engineering
Own internal and external privacy audit projects, including planning, scoping, need analysis, ongoing project management, and communications with all relevant stakeholders
Onboard privacy solutions, design, build and deploy data privacy programs on the solutions to ensure compliance with privacy requirements
Maintain Records of Processing Activities (ROPA) and ensure Privacy By Design for new features/changes in the platform
Undertake all other reasonable and related tasks associated with this role
Desired Qualification:
5-10 years of experience in data privacy and compliance, with exposure to cloud software platforms
Extensive experience in data protection and knowledge of relevant legislation, including GDPR, Standard Contractual Clauses, Transfer Impact Assessment, CCPA, UK DPA 2018, LGPD, PIPEDA, Swiss FDAP, etc.
Certifications such as CIPP/E, CIPP/US, CIPM, CIPT, etc., are preferred
Specialist knowledge in a relevant area, e.g., data security and individual rights requests
Excellent communication, interpersonal, project management, and issue resolution skills
Excellent analytical skills, organizational skills, ingenuity, and the ability to work as part of a team
Experience in managing privacy audits and risk management processes
Demonstrated ability to learn quickly, take the initiative, and drive complex projects
Skills:- Data security, data privacy, GDPR, Information security, Privacy, FDAP and Cloud Computing
Sign up for our newsletter to stay up to date with new jobs posted on Profilehunt
Please confirm your email address once you subscribe.