Data Privacy Data Governance Manager

Summary

Join Rubrik's data privacy team as a Data Privacy Data Governance Manager and play a key role in supporting and enforcing the company's data governance framework. This position requires a blend of policy knowledge and technical expertise to assess and implement privacy controls within Rubrik's systems and applications. Key responsibilities include conducting technical privacy assessments of products, performing compliance checks on application configurations, assisting with data retention schedule implementation, and contributing to the ongoing monitoring and review of the privacy program. The role involves collaboration with various teams, including legal, compliance, IT, and product development. While remote work is possible, a hybrid schedule may be required for Bay Area candidates. The position offers competitive salary, bonus potential, equity, and benefits.

Requirements

• Demonstrated technical background in data privacy, information security, IT auditing, or a related field, with hands-on experience implementing and auditing privacy or security controls in applications and systems
• 5-7 years of experience in a technical data governance, data privacy, or security specialist role
• Bachelor's degree in Information Systems, Computer Science, Cybersecurity, or a related technical field
• Strong understanding of major data protection regulations (e.g., GDPR, CCPA/CPRA) and deep familiarity with applying technical controls from frameworks like the NIST Privacy Framework and Cybersecurity Framework
• Excellent analytical and problem-solving skills with a keen attention to detail
• Strong written and verbal communication skills, with the ability to effectively translate complex technical concepts for non-technical stakeholders

Responsibilities

• Assess the performance of privacy risk management activities and report on findings to guide strategic adjustments
• Analyze the outcomes of the privacy strategy to inform future direction and recommend improvements
• Ensure the privacy management strategy continues to cover all organizational requirements and address relevant risks
• Conduct deep technical privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) on new and existing products and services to identify and mitigate privacy risks at the design level
• Conduct technical compliance checks on the configuration of internal applications and third-party vendor systems to validate the implementation of privacy-by-design principles and required security controls
• Collaborate with IT and business units to implement and manage the enterprise data retention schedule, ensuring that data is retained and disposed of in accordance with legal and business requirements
• Assist in the development and documentation of data governance policies and procedures; ensure they are kept current with evolving requirements, technologies, and business objectives
• Work closely with legal, compliance, IT, and product development teams to promote a strong culture of privacy awareness and continuous improvement
• Support the development and delivery of training materials to ensure all employees, especially those in key roles, receive appropriate privacy training to perform tasks with privacy risks in mind

Preferred Qualifications

• Experience with data governance platforms, data discovery and classification tools, and privacy-enhancing technologies (PETs) is highly desirable
• Relevant technical or privacy certifications such as CIPP/T, CIPM, CISA, or similar are a strong plus

Benefits

• Bonus potential
• Equity
• Benefits