Senior Privacy Manager

Job Description

Your Career

In this pivotal role, you will be an integral part of the Palo Alto Networks’ Global Legal Department’s Privacy team, providing expertise in privacy program strategies and operational effectiveness to anticipate challenges, diagnose problems, prescribe actions, and lead programs that have a direct impact on building customer trust and ensuring compliance in the complex cybersecurity landscape. 

As a publicly traded (NASDAQ: PANW), Fortune 500 technology company, we are seeking an individual who is passionate about enabling organizations to more effectively achieve their business objectives while maintaining robust data privacy. You should be an innovative privacy professional energized by coaching teams and leaders, driving transformation, and creating processes that work together and win together. You should be comfortable working with any level of employee or manager, understand business strategy, and have a knack for reading a situation, navigating sensitivities, and finding creative solutions to privacy challenges.

Managing critical privacy workstreams for the enterprise, this position reports directly to the head of privacy and will be an outward facing professional, interfacing directly with the business

Your Impact

• Privacy Program Management & Project Leadership: Help create a scalable and world-class privacy program through the successful initiation, planning, execution, monitoring, control, and closure of privacy-related projects. Drive ongoing improvement of privacy maturity and privacy metrics. Manage and organize privacy programs and compliance frameworks, including liaising with third-party privacy auditors.

• Data Subject Access Requests (DSAR) and Automation: Provide comprehensive DSAR support under applicable law, including intake, communications, collection, redaction, production, and tracking in coordination with managing attorney, e-discovery staff (internal and external), and cross-functional stakeholders. Manage integrations with privacy software vendors to ensure privacy processes can operate at scale, overseeing the implementation of automated solutions.

• Privacy Mailbox Management & Process Improvement: Monitor and delegate work from the Privacy Mailbox based on the team responsibility matrix, consulting attorneys for escalation or questions when necessary. Identify and implement process improvements related to privacy inquiries and requests.

• Cross-Departmental Collaboration & Project Coordination: Work with procurement and vendor assurance teams to ensure privacy risk alignment, managing projects related to vendor privacy assessments. Assist the privacy team with various go-to-market (GTM) tasks to create and enhance processes and documentation, acting as a project lead for specific GTM privacy initiatives.

• Training and Awareness Program Management: Coordinate privacy training across the organization and ensure the team has top-notch privacy awareness and education on privacy by design and OS best practices, overseeing the development and delivery of training modules.

• Privacy Certifications and Documentation Oversight: Provide support to obtain and maintain privacy certifications (including APEC PRP/CBPR and ISO 27k series), managing the project lifecycle for new certifications. Maintain and update internal and external privacy templates, guidance, white papers, and blogs, ensuring document accuracy and accessibility.

• Liaison with Auditors & Audit Project Management: Act as a liaison with auditors, managing audit-related projects and ensuring timely delivery of requested documentation and information, and report findings to members of senior management.

Qualifications

Your Experience 

• 5+ years of privacy experience with at least 3 years managing or leading one or more privacy or related security, compliance, or program management functions.

• Previous experience working within an in-house legal or compliance department, especially at a large (preferably international) organization.  Experience in the technology or cybersecurity sector is also a plus. 

• Strong understanding of global data protection laws and associated frameworks (GDPR, CCPA, HIPAA, NIST, ISO, etc.).

• Demonstrable experience in managing the full lifecycle of Data Subject Access Requests (DSARs).

• Familiarity with data mapping principles and operational processes.

• Proficiency in using privacy management software; specific experience with Exterro and OneTrust is highly preferred.

• Strong attention to detail and exceptional organizational skills.

• Proven project management skills with the ability to drive initiatives to completion.

• Ability to work independently, manage multiple projects and tasks simultaneously, and meet deadlines in a dynamic, fast-paced environment.

• Excellent communication skills, both written and verbal, with the ability to articulate complex privacy concepts to technical and non-technical audiences.

• Ability to handle sensitive and confidential information with the utmost discretion and integrity, particularly concerning cybersecurity-related data.

• Solid understanding of major global privacy laws and regulations.

• A proactive approach to tasks and the ability to work independently with minimal day-to-day supervision.

• Privacy-focused certifications, coursework, and/or work experience preferred (e.g., IAPP CIPM, CIPT, CIPP, or FIP). 

• "Can do" attitude and excellent time management and customer service skills.