In this role, you will lead a team of attorneys and legal professionals scaling a global privacy program. In doing so, you will assist in managing our compliance with global privacy laws, regulations, and commitments, while applying leading compliance and risk management best practices to our most critical privacy program focus areas, including risk assessments, monitoring, assurance, testing, training and awareness initiatives across Facebook.
- Lead a team of attorneys and legal professionals tasked with developing and evolving a globally comprehensive privacy program, focused on assessing risks, designing and updating controls, monitoring and evidencing compliance, and evolving the program over time
- Work with cross-functional partners across the organization to identify requirements, obligations and best practices, and translate them into executable technical and operational safeguards that can be implemented and tested
- Work on other global privacy initiatives in furtherance of Facebook’s legal obligations related to protecting personal data of users, employees, non-employees and other third parties
- Manage discussions with third parties related to Facebook’s privacy program controls, including auditors and regulators
- Support privacy monitoring and assurance efforts, identifying risks and gaps, and developing and implementing critical mitigation and remediation efforts
- J.D. degree (or foreign equivalent) and membership in at least one U.S. state bar
- 12+ years of experience on privacy legal and/or privacy program design, oversight and management for internal/external clients
- Experience building and implementing global privacy compliance, operations and risk management programs
- Experience testing, monitoring and assessing privacy programs
- Experience working with external auditors and/or regulatory inquiries involving privacy or information security
- Experience managing teams
- Experience working with management across functions critical to a privacy organization
- Experience prioritizing and managing multiple projects with varying deadlines
- Experience with program management practices, tools, and methodology
- Privacy and data protection, Information technology/information security experience (e.g. GDPR, CCPA, LGPD, FTC Act, data breach laws, etc.)
- Experience with emerging technologies and devices
- Knowledge of Facebook products
- Consulting or advisory experience on privacy matters
- Privacy certification (e.g. CIPP or CIPM or similar)