FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
About the role
Key responsibilities & impact- Support oversight of the existing Privacy compliance program across jurisdictions, with primary focus on U.S. requirements and alignment to global privacy obligations, where required suggest improvements.
- Translate Legal guidance and regulatory requirements into policies, standards, and control expectations, ensuring clear articulation of compliance requirements for first-line teams.
- Provide oversight and maintain existing governance frameworks and standards for core privacy program areas, including:
- Data subject rights (DSAR) processes and SLAs
- Data protection impact assessment (DPIA) governance and documentation standards
- Consent and preference management expectations
- Data retention and deletion requirements
- Partner with Product and Engineering to advise on and review the design and implementation of privacy controls, ensuring alignment to regulatory expectations while maintaining second-line independence.
- Provide independent oversight and effective challenge of first-line privacy control environments, including review of control design, identification of gaps, and tracking of remediation actions.
- Oversee privacy incident and breach response processes from a governance perspective, including review of escalation, documentation, and outcomes, in coordination with Legal on notification requirements.
- Maintain privacy risk registers and support risk assessment processes, including DPIA oversight, issue identification, and remediation tracking.
- Monitor adherence to privacy requirements and control expectations, including data subject rights processes, consent management, and regulatory obligations, and escalate issues where gaps are identified.
- Support audits, regulatory examinations, and bank partner reviews by coordinating second-line input, reviewing materials, and tracking remediation actions.
- Produce and contribute to privacy monitoring and governance reporting, including metrics and risk summaries for management and risk committees (e.g., RMC, CRMC).
- Partner with third-party risk functions to provide second-line oversight of privacy considerations in vendor and merchant onboarding and monitoring processes.
- Collaborate with international compliance and DPO functions to support consistent application of privacy governance frameworks, without assuming DPO accountability.
- Support privacy training and awareness by defining requirements and reviewing program effectiveness in coordination with first-line execution teams.
Requirements
What you’ll need- 6–10+ years of experience in privacy compliance, regulatory compliance, risk management, or a related control function, preferably within financial services, fintech, or a regulated environment.
- Strong understanding of U.S. privacy laws (e.g., CCPA/CPRA, GLBA) and familiarity with international regimes (e.g., GDPR, UK GDPR).
- Experience operating within a second-line of defense model, including governance, oversight, and independent challenge of first-line control environments.
- Demonstrated ability to translate regulatory requirements into policies, standards, and control expectations (not direct control ownership or legal interpretation).
- Experience reviewing control design and effectiveness, including participation in audits, regulatory exams, or control testing programs.
- Strong cross-functional partnership skills, with the ability to influence Product, Engineering, and Operations without direct ownership.
- Sound judgment and ability to escalate and manage regulatory risk appropriately.
- Bachelor’s degree or equivalent practical experience; relevant certifications (e.g., CIPP, CIPM) are a plus.
Benefits
Comp & perks- Health care coverage - Affirm covers all premiums for all levels of coverage for you and your dependents
- Flexible Spending Wallets - generous stipends for spending on Technology, Food, various Lifestyle needs, and family forming expenses
- Time off - competitive vacation and holiday schedules allowing you to take time off to rest and recharge
- ESPP - An employee stock purchase plan enabling you to buy shares of Affirm at a discount
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Privacy Program ManagementData Protection Impact Assessment (DPIA)Data Subject Rights (DSAR) ProcessesConsent ManagementControl Design ReviewRegulatory ComplianceGovernance FrameworksIncident Response ManagementRisk AssessmentAudit Coordination
Soft Skills
Sound JudgmentInfluencing SkillsEffective Communication
Certifications
CIPPCIPM
