Saviynt's AI-powered identity platform manages and governs human and non-human access to all of an organization's applications, data, and business processes. Customers trust Saviynt to safeguard their digital assets, drive operational efficiency, and reduce compliance costs. Built for the AI age, Saviynt is today helping organizations safely accelerate their deployment and usage of AI. Saviynt is recognized as the leader in identity security, with solutions that protect and empower the world’s leading brands, Fortune 500 companies and government institutions. For more information, please visit www.saviynt.com.
We are seeking a highly motivated and detail-oriented Global Privacy Leader to serve as our Data Protection Officer. The candidate will lead a modern data privacy program across AI infrastructure, cloud and SaaS platforms. The candidate will lead the development, implementation, and maintenance of the data privacy framework.
This role is critical in ensuring the organization remains compliant with global and regional data protection regulations, while fostering a culture of privacy excellence across all operations.
What you'll do
Lead a modern data privacy program across AI infrastructure, cloud and SaaS platforms
Design, implement, and evolve a scalable global data privacy framework based on ISO 27701 and other international standards.
Serve as the subject matter expert on current and emerging global and regional privacy regulations such as GDPR, CCPA/CPRA, LGPD, DPDP, PDPA, and APPI.
Oversee and maintain certification and compliance with the EU-US Data Privacy
Framework (DPF).
Conduct and oversee Data Protection Impact Assessments (DPIAs) for new and existing high-risk products, vendors, and internal processes.
Collaborate with Engineering, Product and other cross-functional teams to ensure that privacy controls are appropriately incorporated into the Product or other business applications.
Lead the privacy component of external audits (SOC2, ISO) and represent Saviynt’s privacy posture during customer-facing due diligence and security reviews.
Partner with the Legal team to draft, review, and negotiate Data Processing Agreements (DPAs) and privacy related clauses in vendor and customer contracts.
Evaluate the privacy practices of third-party processors to ensure they meet Saviynt’s data protection requirements.
Participate in Incident Response efforts and Team and drive privacy related impact assessments, and other related response actions.
Ability to translate complex regulations and legal mandates into clear, actionable guidance for product managers and engineers to consume.
Establish and operate a Privacy Incident Reporting and Response process to address any Privacy incidents that might occur in various geographic regions.
Oversee the end-to-end process for Data Subject Access Requests (DSARs) and the "Right to be Forgotten" across all jurisdictions.
Build and deliver high-impact privacy awareness programs tailored to different
departments.
What you'll bring
Bachelor’s or Master’s degree in Law, Information Security, Data Protection, or a related field.
Extensive progressive experience in data privacy, data protection, or legal compliance or related areas.
Multiple years in a senior leadership role managing global privacy programs preferably in a SaaS or high-growth tech environment.
Proven track record of managing cross-border data transfer mechanisms and navigating conflicting regional privacy laws.
Ability to translate complex regulations and legal mandates into clear, actionable guidance for product managers and engineers to consume.
Experience presenting privacy roadmaps and security postures to enterprise- level customers and stakeholders.Exceptional problem-solving skills with the ability to assess risk appetite versus regulatory requirements.
