Program Manager-Bespoke

Job Description

Job The Data Privacy Program Manager will be responsible for leading and managing the organization\u2019s privacy program, ensuring that privacy controls are effectively implemented across both existing and new applications. This role will be critical in overseeing all privacy initiatives and projects, ensuring their timely completion and alignment with regulatory requirements and industry best practices. Key responsibilities include the implementation of privacy controls across IT applications, covering areas such as privacy notices, cookies notices, consent and preference management, cookies banners, and cookies blocking mechanisms. The manager will also be responsible for evaluating and implementing new tools and technologies, including data discovery platforms, privacy vaults, data masking, and encryption solutions, to enhance the organization\u2019s privacy posture. Key Responsibilities: Oversee all privacy initiatives and ensure the timely completion of privacy-related projects. Manage the organization\u2019s privacy program, including the implementation of privacy controls in existing and new applications. Implement privacy controls across IT applications, including privacy notices, cookies notices, consent and preference management, cookies banners, and cookies blocking. Evaluate and implement new tools such as data discovery platforms, privacy vaults, data masking, and encryption solutions. collaborate closely with Digital and Information Security teams to ensure that privacy by design principles are embedded in all projects. This includes the implementation of data loss prevention (DLP) measures, encryption, data masking, access controls, anonymization, and tokenization. Collaborate with Digital and Information Security teams to ensure privacy by design controls are implemented, including DLP, encryption, masking, access controls, anonymization, and tokenization. Coordinate with various departments to implement privacy controls and policies across the organization. Play a key role in driving change management initiatives related to privacy and ensuring that all privacy-related projects are completed on time and within scope. Drive change management initiatives related to privacy and ensure effective communication and adoption of privacy practices across the organization. Work Experience Relevant Experience 8-10 years of experience in project management, data protection, or a related field. Experience managing a Information Technology /cyber / privacy program for an organization, including the implementation ofacross multiple applications and platforms. Experience with risk assessment /privacy impact assessments (PIAs) and data protection impact assessments (DPIAs). Proven track record in overseeing IT initiatives and projects, ensuring their timely completion and compliance with regulatory requirements. Experience with privacy by design principles and working closely with IT and InfoSec teams to implement technical privacy controls. Hands-on experience with privacy tools like data discovery platforms, privacy vaults, data masking, and encryption solutions. Knowledge of global privacy regulations , Experience working in a cross-functional role , collaborating with legal, IT, information security, and business teams. Key Competencies Knowledge of change management principles and best practices for implementing privacy controls across an organisation\u2019s IT landscape. Knowledge of privacy by design and default principles, ensuring that privacy is integrated into the design of systems and processes from the outset. Ability to assess the impact of new technologies or processing activities on personal data and propose mitigation strategies. Familiarity with privacy management platforms such as OneTrust, TrustArc, or similar tools used for managing consent, data subject access requests, and other privacy-related processes. Awareness of emerging technology trends that impact data privacy, such as artificial intelligence, big data analytics. Knowledge of the potential privacy implications of these technologies and how to mitigate associated risks. Strong understanding of data protection regulations (e.g., GDPR, CCPA) and their application in business operations