Sr. Privacy Compliance Specialist

Category

Information Technology

Position Type

Full-Time Regular

Remote

Yes

As a Senior Privacy Compliance Specialist, where you will play a critical role in ensuring our organization’s compliance with privacy regulations and effective management of privacy concerns with third-party vendors. You will help safeguard sensitive data, mitigate risks, and drive continuous improvement in our compliance programs. This role combines subject-matter expertise in privacy compliance with strong project management and cross-functional collaboration skills to ensure consistent and effective implementation of privacy requirements across EBSCO.

• Lead and coordinate privacy compliance programs and initiatives, ensuring adherence to global and U.S. privacy laws and internal policies.
• Develop, implement, and maintain privacy policies, procedures, and controls.
• Collaborate with cross-functional teams (Legal, IT, Procurement, Security Operations, Compliance, and Governance Teams) to address privacy and vendor-related risks.
• Conduct privacy impact assessments, answer customer questionnaires, and support vendor risk reviews for new and existing relationships.
• Monitor regulatory developments and advise stakeholders on compliance requirements.
• Participate in privacy incident responses and related investigations, remediation, and reporting.
• Contribute to training and awareness programs on privacy regulations and best practices in a SaaS software development environment.
• Prepare reports and metrics for leadership on compliance status, risks, and improvement opportunities.

Your Team:

As a key member of the Security and Privacy Compliance Team, you will work closely

with Legal, Information Security, Procurement, and other teams across the company to ensure robust privacy and vendor management practices

• Bachelor’s degree.
• 5+ years of experience in privacy compliance or related areas.
• Strong knowledge of privacy regulations, both global (e.g. GDPR, PIPEDA, LGPD, DPDP) and U.S. (e.g. COPPA, FERPA, CCPA, VCDPA), as well as risk management frameworks.
• Experience conducting privacy impact assessments and risk assessments.
• Professional certifications (CIPP, CRVPM, etc.).

• What sets you apart:
• Demonstrated experience in driving compliance initiatives and influencing organizational change.
• Strong problem-solving abilities and a focus on continuous improvement.
• Skilled at managing multiple priorities and meeting tight deadlines.
• Knowledgeable in contract negotiation and vendor performance monitoring.
• Solid background in project management.
• Detail-oriented, analytical, and proactive in identifying and addressing compliance risks.
• Capable of working independently and resourcefully, while also contributing effectively as part of a team.
• Clear communicator with effective cross-team collaboration skills.
• Comfortable in fast-paced environments and adaptable to regulatory changes