Privacy Program Manager

Summary

Join Alma, a company simplifying access to affordable mental health care, as their Privacy Program Manager. This role is crucial in developing and executing Alma's privacy and AI governance strategy, aligning with global regulations and business objectives. You will be responsible for responding to privacy incidents and regulatory inquiries, collaborating with various departments to identify and mitigate privacy risks, and fostering a culture of ethical AI use and privacy awareness. The position requires maintaining privacy-related policies and procedures, ensuring HIPAA compliance, managing data subject requests, and staying updated on relevant regulations. Alma offers a remote-first work environment and a comprehensive benefits package.

Requirements

• Has 1-3 years of experience in privacy or regulatory compliance role with either
• Bachelor’s Degree and one or more of the following certifications: CIPP, CIPM, CIPT, CISSP, or other related certifications or relevant experience
• A J.D
• Or 3 to 6 years of related work experience in a highly regulated field such as healthcare or fintech
• Deep understanding of privacy and data protection regulations and frameworks, such as the CCPA, CPRA, HIPAA, NIST, ISO, and emerging AI regulations
• Experience working with privacy regulations to perform privacy assessments and support privacy program implementations
• Ability to communicate with employees at all levels of the organization
• Ability to adapt to a fast paced continually changing business and work environment while managing multiple priorities

Responsibilities

• Help develop and execute a comprehensive privacy and AI governance strategy aligned with global regulations and business objectives
• Assist in the organization’s response to privacy-related incidents, regulatory inquiries, and compliance audits
• Work cross-functionally with the business to identify and evaluate known and suspected privacy risks
• Educate on and help foster a culture of ethical AI use and privacy awareness across the organization
• Maintain privacy-related notices, policies, standards, guidelines, and processes
• Identify and evaluate the company's use and potential uses of protected health information (PHI) for HIPAA compliance
• Assist in managing Alma's response to data subject rights requests and consent preferences
• Communicate with various groups within the company to encourage appropriate data usage
• Work cross-functionally with the business to operationalize privacy-by-design and AI ethics principles
• Stay updated on changes to applicable regulations and communicate relevant updates
• Prepare reporting and metrics

Benefits

• We’re a remote-first company
• Health insurance plans through Aetna (medical and dental) and MetLife (vision), including FSA and HSA plans
• 401K plan (ADP)
• Monthly therapy and wellness stipends
• Monthly co-working space membership stipend
• Monthly work-from-home stipend
• Financial wellness benefits through Northstar
• Pet discount program through United Pet Care
• Financial perks and rewards through BenefitHub
• EAP access through Aetna
• One-time home office stipend to set up your home office
• Comprehensive parental leave plans
• 11 paid holidays, 1 Alma Mental Health Day, and 1 Alma Volunteering Day
• Flexible PTO