Manager of Privacy and Compliance

  • Category
  • Location
    Watertown, Massachusetts
  • Type
    Direct hire
Job Summary:
The Manager of Privacy & Compliance manages governance, risk, and compliance.  The position actively works to align internal information Security program with business objectives while creating strong business relationships in the process.   

Reporting to the Director, Information Security & Risk Management, the Manager of Privacy & Compliance is responsible for the following:
  • Managing the Privacy & Compliance team, with help from the Director, Information Security & Risk Management and the heads of Enterprise IT.
  • Partnering with management and cross-functional project teams to develop creative solutions to balance business goals with legal and regulatory risk.
  • Raising stakeholder awareness of common privacy issues and responses
  • Managing external security assessments and audits (ISO 27001, NIST CSF)
  • Evaluating business systems and vendors for conformance with privacy policies, standards, and program objectives. Translating privacy requirements into operational and technical requirements.
  • Maintaining a current understanding of control frameworks including ISO 27001 and NIST CSF
  • Maintaining a thorough understanding of GDPR privacy requirements and compliance requirements under PCI DSS
  • 5+ years of business systems analysis and operations, risk management, compliance, project and management
  • 2+ years of experience in a privacy program management role
  • Proven ability to balance multiple priorities, adapt to a constantly changing business strategies, work independently, drive projects to completion, and meet deadlines
  • Ability to develop strong business relationships while keeping risk management in alignment with business objectives and regulatory and privacy requirements
  • Understanding of system development and business process management
  • Experience translating business rules or policies into functional or technical requirements or user stories.
  • Knowledge of U.S. and European privacy and security laws and industry leading practices
  • Strong analytic, organizational and communication skills
Education and Certifications
  • Information Privacy and Security Certifications (e.g., CISSP, CISM, CDPSE, CIPP, CIPM,) preferred
  • Bachelor's degree in a related discipline or equivalent practical experience
Related Jobs
  • Senior IT Project manager
     Summary: This company is seeking an IT Project Manager to oversee the application of project management methodology during all phases of the project cycle, with responsibilities that include project design, scope management, cost control, quali
    • Waltham, Massachusetts
    • Contract
  • Lead DevOps Engineer - SaaS - Drug Therapies (Remote / USA ONLY) - 200k
    Compensation: up to $200,000.00 salary based on seniority/experience, + health, dental, 401k, profit sharing, bonus and more! Work from home / REMOTE from your home office. CANDIDATES MUST BE IN THE CONTINENTAL USA. About the company: Esta
    • Boston, Massachusetts
    • Direct hire
  • Senior voice engineer
    PURPOSE AND SCOPE: Determines voice strategies and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members. Determines voice req
    • Waltham, Massachusetts
    • Contract
Ready to work with us?