Privacy Specialist

We are looking for an experienced Privacy Specialist to become the founding member of our Data Protection Team. In this role, you will be critical in shaping and operationalizing our data privacy and protection strategy. This is a hands-on role requiring both strategic thinking and tactical execution. You’ll collaborate with cross-functional teams—including Legal, Engineering, Product, and Security—to ensure our software, services, and internal practices align with privacy regulations such as GDPR, CCPA, and others relevant to our global operations.

Responsibilities:

• Develop, enhance, and implement our privacy and data protection control framework, processes, and tools.
• Ensure compliance with applicable data privacy laws (e.g., GDPR, CCPA) and coordinate with the Legal team to monitor evolving regulations.
• Partner with Product and Engineering to embed privacy by design and default into new technologies and product features.
• Lead data discovery, classification, and data flow mapping initiatives across systems and third-party services.
• Conduct Data Protection Impact Assessments (DPIAs) and privacy risk evaluations for new products, projects, or vendors.
• Create and deliver internal training programs to foster a company-wide culture of privacy awareness.
• Collaborate with Information Security to develop and test incident response and data breach protocols.
• Assess third-party vendors for privacy compliance and manage appropriate contractual safeguards (e.g., DPAs, SCCs).
• Act as a subject matter expert and point of contact for internal and external stakeholders on all privacy-related matters.

Requirements:

• At least 3 years of experience in data privacy or data protection roles, ideally in the tech or cybersecurity industry.
• Experience working with SaaS products or in a B2B software environment.
• Prior experience establishing or operating as the first dedicated privacy function is a plus.
• Deep understanding of global privacy regulations and frameworks (e.g., GDPR, CCPA, ISO/IEC 27701).
• Relevant certifications such as CIPP/E, CIPP/US, or CIPM are strongly preferred.
• Strong understanding of software development processes, IT systems, and the data lifecycle.
• Familiarity with network security and broader technical concepts is a bonus.
• Strategic thinker with strong analytical skills and the ability to navigate ambiguity.
• Excellent communication and stakeholder management skills, with the ability to work across teams globally.
• Proficient in English, both written and spoken.