Senior Data Governance & Privacy Analyst

Reposted 2 Days Ago
Be an Early Applicant
The City, Greater London, England, GBR
In-Office
Senior level
Digital Media
The Role
Lead data privacy and governance initiatives: perform technical privacy reviews, maintain end-to-end data mapping and ROPA, run compliance scans, support DSARs and regulatory responses, enforce governance standards, and partner with Engineering, Product and Legal to remediate privacy gaps.
Summary Generated by Built In
Condé Nast is a global media company producing the highest quality content with a footprint of more than 1 billion consumers in 32 territories through print, digital, video and social platforms. The company’s portfolio includes many of the world’s most respected and influential media properties including Vogue, Vanity Fair, Glamour, GQ, The New Yorker, Condé Nast Traveler/Traveller, Allure, AD, Bon Appétit and Wired, among others.Job Description

Location:

London, GB

Condé Nast is a global media company producing the highest quality content with a footprint of more than 1 billion consumers in 32 territories through print, digital, video and social platforms. The company’s portfolio includes many of the world’s most respected and influential media properties including Vogue, Vanity Fair, Glamour, Self, GQ, The New Yorker, Condé Nast Traveler/Traveller, Allure, AD, Bon Appétit and Wired, among others.

Condé Nast is a global media company, home to iconic brands including Vogue, GQ, Glamour, CN Traveller, Vanity Fair, Wired, The World of Interiors, House & Garden and Tatler, among many others. We are headquartered in New York and London and operate in 32 markets worldwide, with a footprint of more than 1 billion consumers across print, digital, video and social platforms. 

Condé Nast thrives on collaboration, and our teams come together in the office four days a week (Monday - Thursday). We value diversity of background, views and cultures. We celebrate people for their personal qualities, skills and contributions, recognising the power our brands have to influence and shape culture. The cross-functional Data Governance function, in which the role sits, is an integral part of our overall business strategy, helping us to generate value through the use of our first party data in line with regulatory compliance.

Purpose

The Data Governance team supports Technology and Legal in initiatives that increase trust in and utility of data at Condè Nast, to ensure internal and regulatory compliance while driving operational excellence.

The Data Governance & Privacy Analyst will work in a dynamic team responsible for delivering operational initiatives that drive data privacy and compliance. Initial responsibilities involve contributing to the development and subsequent iterations of a roadmap for effective data mapping and lineage capabilities, in order to establish comprehensive and trustable repositories that align our understanding of information flows across Condé Nast and enable efficient handling of DSR (data subject request), generation of ROPA (record of processing activities) and DPIA (data protection impact assessment) documents by Legal.

You will contribute to the delivery of data mapping and curation, ensuring that outputs are fit for purpose and have appropriate governance operating models in place to promote quality, freshness and access. You will manage projects end-to-end and use SQL and broad knowledge of the digital marketing landscape to describe and depict our data flows in formats that are aligned with US and global regulatory compliance standards and guidelines, as well as to provide up-to-date standardised understanding across Technology, Commercial, Legal and other departments.

Your role is pivotal in helping Condé Nast develop its privacy programme maturity, efficiency and reporting on status, including remediation of gaps and special projects. You will support programmes, playbooks and standard operating procedures for privacy compliance processes. Your role will require working with internal and cross-functional teams globally. You will leverage cross-domain expertise to collaborate with various teams and stakeholders on complex and sensitive data privacy initiatives. In particular you will collaborate with the Data & Technology Legal team to translate legal requirements into privacy programme deliverables and processes.

The role is responsible for supporting data privacy, which, in collaboration with Legal, works to address:

  • development of data privacy best practices, including workflows

  • documentation of first and third party data use and flows

  • proactive minimisation of data-related risks through compliant analytics

  • solving for data quality through privacy-first approaches

Responsibilities:

  • Lead technical privacy reviews across websites, mobile apps and backend services. Assess data collection, tracking technologies and third party integrations at code and network level, including cookies, pixels, SDKs, APIs and JSON payloads.

  • Own end to end data mapping. Document and maintain accurate records of data flows, data elements, systems and vendors. Keep records of processing activity current and aligned with regulatory requirements across markets.

  • Run compliance scanning and monitoring using tools such as Privado, Didomi and ObservePoint. Validate consent signals, tag behaviour and data transmission. Investigate gaps and drive remediation with engineering teams.

  • Support consent management. Review and test consent platforms, ensure correct implementation of consent modes and frameworks such as TCF. Confirm that user choices control data collection and downstream processing.

  • Handle data subject rights workflows. Support intake, validation and fulfilment of DSARs, deletion and access requests. Work with engineering and data teams to locate, extract and erase data across systems within legal timeframes.

  • Prepare regulatory responses. Gather evidence, produce clear documentation and support Legal and Data Protection teams in responding to regulators, audits and internal reviews.

  • Conduct privacy risk assessments. Review new and existing products, features and vendors. Identify risks in data use, cross border transfers and retention. Recommend practical controls and track mitigation.

  • Audit data processing and sharing. Verify that analytics, advertising and third party data flows match declared purposes, contracts and consent states. Monitor ongoing compliance and report breaches or deviations.

  • Define and enforce data governance standards. Maintain data classifications, naming standards and schema controls. Ensure consistent use of identifiers, events and attributes across platforms.

  • Partner with Engineering, Product and Legal. Translate regulatory requirements into technical tasks. Guide implementation and verify outcomes through testing and inspection.

  • Maintain documentation and training. Produce clear guidance on tracking, consent, data handling and privacy by design. Train teams on correct implementation and common failure points.

  • Support vendor governance. Review third party technologies, assess data collection and transfers, ensure contracts and configurations meet privacy requirements.

Skills and Experience

  • At least 3 years of experience in data privacy, data governance or ad tech within digital media or platform environments, with direct exposure to web and mobile data collection.

  • Strong technical understanding of how websites and apps work. Ability to inspect cookies, tags, pixels, SDKs, APIs and JSON payloads using browser and network tools.

  • Proven experience conducting technical privacy reviews and audits. Ability to trace data flows from front end collection through to backend systems and third party vendors.

  • Hands on experience with data mapping and records of processing. Ability to produce and maintain accurate, system level documentation of data elements, flows and purposes.

  • Working knowledge of consent management platforms and frameworks such as TCF. Ability to validate consent signals and ensure correct enforcement across analytics and advertising technologies.

  • Experience supporting data subject rights processes, including DSARs, access, deletion and portability. Ability to locate and retrieve data across distributed systems.

  • Familiarity with compliance monitoring tools such as Privado, Didomi, ObservePoint or similar. Ability to interpret scan results and drive remediation with technical teams.

  • Strong knowledge of US privacy laws including CCPA and CPRA, with working knowledge of GDPR and other global frameworks. Ability to translate legal requirements into technical controls.

  • Experience in regulatory response and audit support. Ability to gather evidence, document findings and support responses to internal and external reviews.

  • Understanding of data governance practices including schema design, data standards and classification. Ability to enforce consistency across tracking and analytics implementations.

  • Clear communication skills. Ability to explain technical data flows and risks to Commercial, Product and Engineering. Strong analytical skills and attention to detail. Ability to investigate discrepancies in data collection and consent.

  • Able to manage multiple workstreams in a fast moving environment, maintain clear structure and prioritisation, and preserve accuracy and control across documentation and review work despite shifting demands and ambiguity.

What happens next?

If you are interested in this opportunity, please apply below, and we will review your application as soon as possible. You can update your resume or upload a cover letter at any time by accessing your candidate profile.

Condé Nast is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, age, familial status and other legally protected characteristics.

Skills Required

  • At least 3 years of experience in data privacy, data governance or ad tech within digital media or platform environments with web and mobile data collection exposure.
  • Strong technical understanding of websites and apps, including inspecting cookies, tags, pixels, SDKs, APIs and JSON payloads using browser and network tools.
  • Proven experience conducting technical privacy reviews and audits; ability to trace data flows from front-end to backend and third-party vendors.
  • Hands-on experience with data mapping and maintaining records of processing activities (ROPA).
  • Working knowledge of consent management platforms and frameworks such as TCF and ability to validate consent signals.
  • Experience supporting data subject rights processes (DSARs), including access, deletion and portability.
  • Familiarity with compliance monitoring tools such as Privado, Didomi, ObservePoint or similar and ability to interpret scan results.
  • Strong knowledge of US privacy laws including CCPA and CPRA, and working knowledge of GDPR and other global frameworks.
  • Experience in regulatory response and audit support, including gathering evidence and documenting findings.
  • Understanding of data governance practices including schema design, data standards, classification and enforcing consistency across tracking and analytics.
  • Clear communication skills to explain technical data flows and risks to Commercial, Product and Engineering stakeholders.
  • Ability to manage multiple workstreams, prioritise tasks and maintain accuracy in a fast-moving environment.

Condé Nast Compensation & Benefits Highlights

The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Condé Nast and has not been reviewed or approved by Condé Nast.

  • Parental & Family Support Parental leave has been expanded to 14 weeks fully paid for covered editorial staff, alongside expanded bereavement and protections that support family needs. Hybrid work protections and guaranteed comp time after 40 hours further ease caregiving and schedule demands.
  • Leave & Time Off Breadth Time off offerings include generous PTO, UK packages with 25 days plus bank holidays, and added days for moving or volunteering. Company practices like holiday closures and guaranteed compensatory time reinforce usable time away from work where applicable.
  • Healthcare Strength Healthcare options include provisions such as Bupa Private Healthcare in the UK and access to an Employee Assistance Programme. U.S. roles commonly include core medical, dental, and related coverage as part of the package.

Condé Nast Insights

Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: New York, NY
7,216 Employees

What We Do

Condé Nast is a global media company, home to iconic brands including Vogue, The New Yorker, GQ, Glamour, AD, Vanity Fair and Wired, among many others. The company's award-winning content reaches 88 million consumers in print, 419 million in digital and 432 million across social platforms, and generates more than 1 billion video views each month. The company is headquartered in New York and London, and operates in 32 markets worldwide including China, France, Germany, India, Italy, Japan, Mexico and Latin America, Russia, Spain and Taiwan. Launched in 2011, Condé Nast Entertainment is an award-winning production and distribution studio that creates programming across film, television, social and digital video and virtual reality.

Similar Jobs

Boeing Logo Boeing

Aerospace Systems Safety Engineer (Systems Safety & Mission Assurance )

Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
In-Office
Bristol, England, GBR
170000 Employees

Boeing Logo Boeing

Manager - Connectivity Program Management

Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
In-Office
Frimley, Surrey Heath, Surrey, England, GBR
170000 Employees

Boeing Logo Boeing

Project Manager

Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
Hybrid
Bristol, England, GBR
170000 Employees

Boeing Logo Boeing

Supply Chain Management Analyst

Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
In-Office
Sheffield, South Yorkshire, England, GBR
170000 Employees

Similar Companies Hiring

Hedra Thumbnail
Software • News + Entertainment • Marketing Tech • Generative AI • Enterprise Web • Digital Media • Consumer Web
San Francisco, CA
14 Employees
Bankrate Thumbnail
Artificial Intelligence • Consumer Web • Digital Media • Fintech • Marketing Tech • Software • Financial Services
US
160 Employees
Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account