Privacy & Compliance Program Manager

United States

Full Time USD 56K - 105K *

Elastic

We're the creators of the Elastic (ELK) Stack -- Elasticsearch, Kibana, Beats, and Logstash. Securely and reliably search, analyze, and visualize your data in the cloud or on-prem.

View company page

Elastic is a free and open search company that powers enterprise search, observability, and security solutions built on one technology stack that can be deployed anywhere. From finding documents to monitoring infrastructure to hunting for threats, Elastic makes data usable in real-time and at scale. Thousands of organizations worldwide, including Barclays, Cisco, eBay, Fairfax, ING, Goldman Sachs, Microsoft, The Mayo Clinic, NASA, The New York Times, Wikipedia, and Verizon, use Elastic to power mission-critical systems. Founded in 2012, Elastic is a distributed company with Elasticians around the globe. Learn more at elastic.co.

We are looking for a Privacy & Compliance Program Manager, reporting to our VP of Business Integrity and Privacy. This position is ideal for an entrepreneurial and collaborative candidate seeking a unique opportunity to program manage Elastic’s Privacy and Business Integrity strategy.  We will consider candidates whose subject matter expertise is primarily in one area, with a basic working knowledge of the other.  This is an exciting opportunity to join a dynamic, fully distributed global enterprise and execute on the continued development of its compliance and privacy programs. This is a remote position. We will consider candidates located anywhere in North America. 

What You Will Be Doing: 

  • Support the Privacy team to shape and influence a culture of privacy throughout Elastic through campaigns, communication, training and key knowledge sharing.
  • Partner with the Director of Privacy to design and implement a best in class global privacy program and guide the execution, implementation and scaling of the program across the business.
  • Partner with Elastic’s Product, Security and Sales teams to further embed privacy by design into our products and services.
  • Partner with Elastic’s privacy attorneys team to strengthen our measurable and scalable processes for demonstrating privacy compliance, including:
    • Impact assessments (Privacy, Data Transfer, and Data Protection) 
    • Records of processing activities
    • Data maps 
    • Responses to data subject access requests
  • Promote and support Elastic’s Code of Conduct, including content updates, employee certification, and branding/communications.
  • Enhance and lead the Conflict of Interest review process, including developing a workflow tool and reviewing and tracking potential conflicts disclosed.
  • Partner with our Business Integrity counsel to strengthen the compliance communications strategy and partner with stakeholders to implement Ethics & Compliance messaging in various cross-functional initiatives, including Integrity Week.
  • Partner with HR on training, including content development, delivery, tracking, and execution. 
  • Generate and maintain records and metrics to support the VP of Business Integrity and Privacy and the Chief Legal Officer for executive and  board reporting. 

Minimum Qualifications (Must-Haves):

  • Candidates must have at least 5 years of program management experience in either compliance or privacy.  
  • Experience overseeing the operational aspects of a privacy and/or compliance program, such as developing and/or implementing systems and processes for:
    • DPIA, PIA, TIA, ROPA, DSAR, Data Maps
    • Third party risk management
    • Due diligence
    • Training 
    • Risk assessments
    • Periodic reporting
    • Case management 
  • Experience with metrics and data-driven quarterly reporting. 
  • Be proactive, able to exercise independent judgment, and work effectively on cross-functional teams. 
  • Demonstrate a sense of ownership and must be comfortable in a dynamic and rapidly evolving environment. 
  • Exhibit excellent judgment, character, and professional integrity.

Bonus Qualifications (Nice to Haves):

  • Compliance Certifications such as CCEP or LPEC, or Privacy certifications such as CIPP/E/US/M and equivalents are valued but not required.

Additional Information - We Take Care of Our People

As a distributed company, diversity drives our identity. Whether you’re looking to launch a new career or grow an existing one, Elastic is the type of company where you can balance great work with great life. Your age is only a number. It doesn’t matter if you’re just out of college or your children are; we need you for what you can do.

We strive to have parity of benefits across regions and while regulations differ from place to place, we believe taking care of our people is the right thing to do.

  • Competitive pay based on the work you do here and not your previous salary
  • Health coverage for you and your family in many locations
  • Ability to craft your calendar with flexible locations and schedules for many roles
  • Generous number of vacation days each year
  • Double your charitable giving - We match up to $1500 (or local currency equivalent)
  • Up to 40 hours each year to use toward volunteer projects you love
  • Embracing parenthood with minimum of 16 weeks of parental leave

Different people approach problems differently. We need that. Elastic is an equal opportunity/affirmative action employer committed to diversity, equity, and inclusion. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, pregnancy, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, disability status, or any other basis protected by federal, state or local law, ordinance or regulation.

We welcome individuals with disabilities and strive to create an accessible and inclusive experience for all individuals. To request an accommodation during the application or the recruiting process, please email candidate_accessibility@elastic.co We will reply to your request within 24 business hours of submission.

Applicants have rights under Federal Employment Laws, view posters linked below: Family and Medical Leave Act (FMLA) Poster; Equal Employment Opportunity (EEO) Poster; and Employee Polygraph Protection Act (EPPA) Poster.

Please see here for our Privacy Statement.

* Salary range is an estimate based on our salary survey 💰

Tags: CIPP Compliance Monitoring Polygraph Privacy Risk assessment Risk management Strategy

Perks/benefits: Career development Competitive pay Equity Flex hours Flex vacation Health care Medical leave Parental leave Salary bonus

Regions: Remote/Anywhere North America
Country: United States
Job stats:  14  2  0
  • Share this job via
  • or

More jobs like this

Explore more InfoSec/Cybersecurity career opportunities

Find open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Analysis, Cryptography, Digital Forensics and Cyber Security in general, filtered by job title or popular skill, toolset and products used.