Plus
Включить Plus
Назад
Company hidden
обновлено 2 месяца назад

Senior GRC Analyst (Privacy)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Portugal
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior GRC Analyst (Privacy): Leading privacy operations and managing security and compliance risk within a SaaS customer engagement platform with an accent on GDPR/CCPA compliance, PIAs, and DPIAs. Focus on operationalizing privacy-by-design, conducting third-party risk reviews, and supporting global audit processes like SOC 2 and ISO 27001.

Location: Hybrid - Lisbon, Portugal

Company

AI-powered customer engagement platform helping brands create individualized experiences at scale.

What you will do

  • Lead privacy operations by developing and maintaining processes for PIAs, DPIAs, ROPA, and data inventories.
  • Manage Data Subject Access Requests (DSARs) in coordination with Legal, HR, and Marketing teams.
  • Embed privacy-by-design into GRC workflows and conduct third-party security and privacy vendor reviews.
  • Maintain the privacy risk register and perform Transfer Impact Assessments (TIAs) and Legitimate Interest Assessments (LIAs).
  • Support internal and external audits, including SOC 2 and ISO 27001, through evidence collection and remediation.
  • Partner with Sales and Customer Success to resolve customer trust and privacy inquiries.

Requirements

  • Strong experience with GDPR and global privacy operations within a SaaS or technology environment.
  • Hands-on experience with PIAs/DPIAs, ROPA, and DSARs.
  • Experience with third-party risk management and supporting customer trust inquiries.
  • Familiarity with SOC 2, ISO 27001, and ISO 27701 audit processes.
  • Location: Must be based in Lisbon, Portugal for a hybrid work arrangement.
  • Strong cross-functional communication skills to explain risks to technical and non-technical audiences.

Nice to have

  • Privacy certifications such as CIPP/E, CIPP/US, or CIPM.
  • Experience with US state privacy laws, including HIPAA and CCPA.
  • Previous experience working at a SaaS company.

Culture & Benefits

  • Competitive salaries and meaningful equity.
  • Private Medical Insurance and Life/Risk Assurance.
  • Meal allowance (8.55€ per day) and Global Lifestyle Reimbursement Account.
  • 22 days of paid annual leave and access to a paid sabbatical.
  • Complete laptop workstation.
  • Community Days for giving back to the community.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →