The globalPrivacy Team is responsible for ensuring compliance with global privacyrequirements for all of our products and data processing activities. Wecontribute to company certifications, product development, support the salesprocess, and can assist our customers with privacy enquiries.

　　We are aseasoned team of passioned privacy experts, passionate about using the data inthe right way, especially in HR and AI fields. The team was founded 10 yearsago, and as the company continues growing, we are expanding our complianceprograms and certifications - we were among the first companies to obtain ISO27701 certification, and our DPO, based out of France, was of the 10 firstcertified DPOs in France.

　　In this role,you will run several of our compliance programs across our different productlines, in very close coordination with IT Security, Risk, and Compliance,strongly contributing to our PIMS (Privacy Information Management System).

　　We are lookingfor an experienced compliance program manager with privacy experience, however,if you would rather have strong IT security compliance experience, we willconsider your application too. This is a very hands-on role.

　　In this role you will...

　　Be responsible for several of our privacy compliance programs within our PIMS (ISO 27701), and deploy them additional products of our portfolio.Perform internal compliance audits.Contribute to the privacy compliance strategy.Contribute to vendor and third party management.Contribute to global business impact assessments and risk assessment programsWork closely with the global Security and Compliance TeamInterface and partner with cross functional leaders from product, legal, engineering, Cloud Operations, IT and other functions on designing effective controls to improve privacy compliance and manage riskIdentify business, privacy, cybersecurity and technology risks, evaluate internal controls to treat risks, and develop opportunities to continuously improve internal controlsWork with control owners to ensure control objectives and activities meet compliance standards for effectiveness and evidence, and ensuring operational efficienciesWork with Cornerstone's external audit partners and cross functional teams to schedule appropriate internal audit testing and/or risk assessmentsRecommend updates to privacy and security policies, standards and procedures to address new industry practices, requirements and standards based on security and compliance requirements

　　You've got what it takes if youhave...

　　Degree in Information Technology, Computer Science, or related fieldsAlternatively, legal or relate degree with strong IT and compliance knowledge7 to 10 years total experience5+ years in IT or privacy certifications compliance program management (ISO 27001, 27701)3-4 year in project and process management and improvement3-4 year experience in multi-country/global Information Technology organization (preferably SaaS)Knowledge, understanding and appetite for privacyExperience in third-party compliance management processesExperience management project portfolios and programsExperienced in metrics, maintaining dashboards and executive reportingMulti year working experience with managing ISMS (ISO 27001) and/or PIMS (ISO 27701)Adequate knowledge of latest security tools, technologies and control best practices for I&AM, encryption, system hardening, anti-malware, data leakage prevention, IDS/IPS, network architecture security, vulnerability management, etc.Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalismExcellent data analysis, documentation and articulation skillsExcellent communication, presentation and collaboration skillsExcellent English language skills (written and oral)

　　And extra dose of awesome if youhave...

　　Several years of experience in privacyExperience with GDPRExperience with security and privacy contractual agreements negotiationsOther languages in addition to English