Privacy & Responsible AI, Sr. Program Manager. USA REMOTE

About the positionResponsibilities• Supports the company's privacy compliance measures through various tasks and responsibilities, including conducting privacy risk assessments, business process assessments, privacy incident management, and data subject access requests. • Maintains inventory of enterprise AI use cases via the completion of AI Risk Assessments; assists business stakeholders with populating these assessments as needed. • Communicates the company's privacy and security compliance mechanisms, as well as responsible AI principles, data retention, and our position on usage data, in response to both customer requests and internal requests for data sharing.• Ensures alignment between the company’s global cybersecurity, privacy, responsible AI, and data management practices and initiatives. • Develops and maintains mechanisms for complying with the GDPR's Article 30 requirements for data processing logs and assists the business with documenting and updating such records on an annual basis. • Develops and leads cross-functional initiatives to collect and maintain an inventory of all internal tools and systems and assigns relevant assessments to business teams where appropriate; flags risks for high-impact systems that have not been approved by all appropriate assessment mechanisms.• In collaboration with the Digital Marketing team, implements and oversees appropriate mechanisms for privacy and marketing compliance on the company's websites and those of its third-party data processors and data brokers, including the use of cookie settings and consents, do-not-sell, opt-ins, webforms, and user preference centers. Regularly audits compliance with the requirements for such websites, data partners, webforms, and preference centers set forth by this role. • Ensures adherence to appropriate data protection frameworks, regulatory requirements, and company policies.Aligns program initiatives to the NIST Privacy Framework and additional regulatory frameworks as requested by the business (e.g., FedRAMP, FIPS, HIPAA). Ensures compliance with the company's responsible AI principles, governance mechanisms, and company policies on AI and aligns relevant program initiatives to the NIST Risk Management Framework and evolving AI regulations. • Collaborates with teams in Legal, Information Security, and Information Technology to identify, document, and mitigate privacy and compliance risks through the implementation and maintenance of a centralized risk register.Develops and leads awareness mechanisms and initiatives aimed at addressing identified risks. • Assists with maintaining and, where needed, developing internal or external facing documentation of privacy, security, product, and AI programs, including, but not limited to, AI Fact Sheets, SBOMs, third-party credits, and content housed on the company's Trust webpage and Trust Center; develops and populates content for the Trust webpage and Trust Center as needed. • Provides direction and creates awareness of key privacy and AI concepts for cross-functional initiatives; acts as a lead stakeholder in initiatives aimed at compliance with regulations and industry best practices, such as those pertaining to data retention, data use, appropriate access controls, and data governance.• Maintains an inventory of third parties that handle personal data on behalf of the company (i.e., data processors) or supplies personal data to the company (i.e., data brokers), including the appropriate contractual obligations with such third parties, and supports due diligence reviews and periodic audits of vendors and partners for compliance with data protection obligations. • Regularly develops and delivers targeted trainings and awareness campaigns aimed at educating the company about the team's programs and initiatives, requirements pertaining to completion of assessments, risk mitigation measures, and the like.• Develops and maintains materials aimed at enabling key functions to self-service common programmatic requirements (e.g., completion of AI Risk Assessments, vetting of data brokers), FAQs and one-pagers on privacy and AI topics, and other content pertaining to compliance with privacy, responsible AI, or data governance regulations, policies, and procedures. • Develops and reports out metrics for the team, as needed, including the development of reports and dashboards. • Participates in continued education on topics pertaining to the role, including privacy, AI, and data governance, and updates leadership on related risks and regulatory or industry developments.• Lead, support, and enable initiatives, ensuring effective alignment between senior leadership and cross-functional teams in project planning and execution. • Develops and maintains documentation of project risks, actions items, and resolutions as well as standard operating procedures moving forward. • Track initiative and project progress, ensure deliverable accountability, monitor implementation, and provide regular updates to relevant stakeholders, including but not limited to, the company's AI Governance Board, its Public Policy and Risk and Compliance Committees, and the Executive Leadership Team.• Provide post-mitigation and implementation analyses to assess effectiveness and recommend improvements based on lessons learned. Where needed, lead cross-functional teams in identifying and documenting gap assessments or other post-incident debriefs. • Performs other duties and projects as assigned. Requirements• Bachelor's degree and a minimum of ten (10) years' direct experience working in one or more disciplines related to the role (e.g., policy, law, compliance, information security, operational risk management, audit, records management, program, and project management).• IAPP Certified Information Privacy Manager (CIPM), Certified Information Privacy Technologist (CIPT), or Certified Information Security Manager (CISM) or willingness to complete such certification within a reasonable time following hire. • Minimum of ten (10) years' direct experience in either project management or records management and implementing and using project and records management tools and concepts. Nice-to-haves• Project management certification (PMP) preferred, with demonstrated experience managing complex initiatives.• Change management certification (CCMP) strongly preferred to ensure effective adoption and stakeholder engagement. • Advanced understanding of core privacy and data protection principles under the GDPR and/or CCPA, direct marketing techniques, online privacy, or information security. • Hands-on experience working across teams on initiatives aimed at responsible AI principles or implementation of industry best practices within the realm of AI development and use. • Strong skills and experience utilizing AI tools for business, such as creating operational efficiencies using OpenAI's ChatGPT, or the willingness to learn and deploy AI technologies.• Experience deploying data privacy tool sets, such as implementing and working within Mine.OS. • Experience directly using the Alteryx suite of products to drive business processes and efficiencies. Benefits• Compensation 183,000-212,000 plus bonus+ equity• Amazing benefits for all Associates Apply tot his job