This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
We are seeking a Lead Data Privacy Engineer to assist in leading our Data Protection Engineering, Monitoring, and Audit efforts. This role is responsible for embedding privacy by design principles into systems and processes, designing and maintaining technical controls to safeguard personal data (PII), and ensuring compliance with privacy regulations while supporting business objectives. The position requires a strong technical database background and deep knowledge of privacy laws and security and privacy frameworks, working closely with cross functional teams to maintain a robust data security & privacy posture.
Job Responsibility:
Drive strategy, planning, prioritizing, and execution of data security and privacy initiatives to protect unstructured and structured data in hybrid environments
Design and Implementation of Privacy Enhancing Technologies (PETs), lead privacy-preserving solutions planning, design, development, implementation, and monitoring
Drive and support technical components compliance/audit processes
Provide expert guidance on secure systems architecture, design and implementation in alignment with privacy engineering principles
Continuous monitoring of emerging technologies, regulatory developments and industry trends to recommend enhancements to organizational privacy posture. Develop and maintain data protection dashboard, metrics roadmap, and scorecards
Apply threat modeling and risk analysis methodologies to mitigate privacy and security risks. Facilitate risk-based approach to develop, manage, and maintain data protection controls
Collaborate with engineering, product, legal, and compliance teams to translate privacy and regulatory requirements (e.g., GDPR, CCPA, HIPAA) into technical designs, policies, and guardrails
Foster a privacy by design culture and embed privacy requirements into engineering documentation
Lead and contribute to enterprise data governance activities, including data discovery, classification, data loss prevention, audit, and incident response
Lead project teams of talented professionals to deliver data security capabilities
Requirements:
7+ years of hands-on experience in security engineering, privacy engineering, privacy enhancing technologies or related fields
7+ years of experience with privacy and data protection regulations (GDPR, CCPA, HIPAA, etc.) and translating them into technical requirements
5+ years of experience in one or more programming or scripting languages (e.g. Python, Java, Go, Rust, or similar)
5+ years of experience in designing and implementing cryptographic or data protection systems (e.g. encryption, tokenization, key management)
5+ years of experience in performing privacy threat modeling, data flow mapping, and conducting DPIAs/PIAs
5+ years of experience in working in CI/CD environments, Infrastructure as Code (IaC), and automating security/privacy checks
5+ years of data security technology experience, including data classification, DLP, insider risk, encryption, web content filtering and CASB
Bachelor degree from accredited university or equivalent work experience (HS diploma + 4 years relevant experience)
Nice to have:
Professional Certifications such as CDPSE, CIPP, CIPT, CIPM, CISSP, or equivalent
Experience with security controls alignment to key regulations like NIST, FIPS 140-2, ISO, HITRUST, HIPAA, PCI, CPRA, GDPR
Experience supporting regulatory audits, investigations, or independent assessments
Experience building and scaling privacy platforms or features in a fast-paced environment (e.g. developing & automating processes, leveraging AI ML)
Familiarity with Data Loss Prevention (DLP) systems and data mapping tools
Familiarity with cloud platforms (AWS, Azure, GCP) and various data technologies (SQL, NoSQL databases, data lakes, etc.)
Experience implementing controls at scale in regulated environments
Experience aligning technical infrastructure with regulatory obligations
Hands-on experience with secure system architecture, data encryption, tokenization, access controls or secure API design
Experience in healthcare, insurance, or highly regulated industries
Strong analytical abilities, verbal/written communication, and interpersonal skills
Demonstrated experience in secure system design and alignment with organizational/regulatory requirements
Excellent communication and ability to explain complex technical and legal concepts to diverse audiences
What we offer:
Affordable medical plan options
401(k) plan (including matching company contributions)
Employee stock purchase plan
No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching