GRC Analyst, Privacy

Join our innovative team at Clay Labs as a GRC Analyst specializing in Privacy. In this pivotal role, you will be responsible for ensuring that our privacy practices align with industry standards and regulations. You will play a key role in assessing risks, developing policies, and implementing controls to safeguard sensitive information.Your analytical skil…

About AtlasAt Atlas Privacy, we believe in a world where individuals have control over their personal information. Every day, your home address, phone number, and family details can be easily accessed and misused by data brokers operating with minimal oversight.We are on a mission to revolutionize privacy enforcement in America, shielding citizens from data exploitation and surveillance capitalism. Our diverse team combines expertise in law, cybersecurity, consumer technology, and policy to tackle these pressing issues.In just three years, we have developed the most sophisticated consumer privacy platform available, empowering individuals to take action against data brokers. We are also leading groundbreaking legal initiatives, having filed over 180 lawsuits in accordance with New Jersey’s Daniel’s Law to protect the privacy rights of judges, prosecutors, and law enforcement professionals.Our impactful work has garnered attention from prestigious outlets such as Bloomberg Law, Law360, and Wired. We are proud to be backed by renowned investors like Y Combinator and Lightspeed Venture Partners, and to collaborate with top law firms such as Boies Schiller Flexner and Bird Marella.Why Join Atlas?Joining Atlas means engaging in work that is not only mission-driven but profoundly impactful for society as a whole. We tackle privacy issues that resonate across the political spectrum, advocating for the fundamental right to privacy and safety for everyone. Our initiatives to protect vulnerable individuals from data misuse are not just partisan; they are a civic responsibility.As a rapidly growing startup, we offer you the opportunity to contribute to transformative technologies and legal frameworks, playing a crucial role in reshaping the landscape of personal data protection.

Join ElevenLabs as a Privacy Counsel and play a pivotal role in safeguarding our users' data privacy. You will lead our legal efforts in ensuring compliance with privacy laws and regulations, providing strategic advice to our teams, and shaping our privacy policies.We are looking for a passionate individual who thrives in a fast-paced environment and possesses a deep understanding of privacy frameworks.

FanDuel Group is seeking a Privacy Compliance Manager to join its Legal and Compliance division in New York City. Reporting to the Corporate Compliance Senior Manager, this role plays a key part in upholding data privacy standards across the company’s global operations. Key responsibilities Develop and refine the privacy compliance framework to address evolving legal, regulatory, and internal requirements in multiple jurisdictions. Lead privacy initiatives, including conducting Privacy Impact Assessments and managing privacy rights requests. Oversee third-party risk management as it relates to privacy concerns. Maintain partnerships with privacy management platform providers. Collaborate with Legal, Technology, Procurement, Flutter Group teams, and other stakeholders to embed privacy-by-design principles into FanDuel products. Encourage responsible data use and foster a culture of privacy throughout the organization. Handle additional tasks as business needs change. Requirements Proven experience building and managing privacy programs, with a focus on operational execution and stakeholder engagement. Strong analytical, communication, and problem-solving abilities. Keen attention to detail and adaptability within a highly regulated setting. Collaboration This position works closely with Legal, Compliance, Technology, Product, and business teams to advance FanDuel’s privacy efforts.

BitGo stands as the premier provider of digital asset infrastructure solutions, offering services including custody, wallets, staking, trading, financing, and settlement from our highly regulated cold storage. Established in 2013, we have been dedicated to empowering our clients to navigate the digital asset landscape securely. With our global footprint and multiple Trust companies, BitGo caters to thousands of institutions, including many of the industry's leading brands, exchanges, and platforms, as well as millions of retail investors across the globe. As an essential part of the digital economy, BitGo processes a significant share of Bitcoin network transactions and proudly holds the title of the world's largest independent custodian and staking provider. To learn more, visit www.bitgo.com.In collaboration with the BitGo Legal Department, you will spearhead the development and implementation of a comprehensive global privacy program to address all internal and external privacy requirements and requests. Given the global scale of BitGo, it is crucial to have a single accountable leader to operationalize privacy, lessen dependence on contractors, and ensure compliance with regulatory mandates.

Our MissionAt Reflection AI, our mission is to create open superintelligence that is accessible to everyone. We are pioneering open weight models designed for individuals, organizations, and even nations. Our diverse team comprises former experts from DeepMind, OpenAI, Google Brain, Meta, Character.AI, Anthropic, and more.Role Overview:We are on the lookout for a dedicated Privacy Compliance Counsel to establish and lead our global privacy framework. This role transcends traditional compliance; you will be at the cutting edge of AI law, translating intricate global regulations into tangible product strategies. As a strategic partner, you will collaborate with cross-functional teams in our rapidly expanding AI lab, ensuring our innovative open foundation models are built with a robust 'privacy-by-design' approach.You will work in close partnership with our product, research, engineering, and safety teams, as well as other operational units, to develop and execute a comprehensive global privacy program that balances innovation with responsible data practices.What You’ll Do:Privacy Program Architecture & ManagementDesign and oversee a global privacy program that complies with GDPR, CCPA/CPRA, and emerging AI regulations (such as the EU AI Act).Manage the lifecycle of compliance initiatives, including data mapping, Records of Processing Activities (RoPA), and Data Protection Impact Assessments (DPIAs).Draft and maintain both internal and external privacy policies, such as Privacy Notices, Data Retention policies, and Employee Privacy Handbooks.Product Counseling & Strategic GuidanceServe as the primary legal advisor for product and engineering teams, providing timely guidance on data ingestion, model training, and feature launches.Guide on the intersection of privacy law and AI ethics, advising on bias mitigation, data provenance, and the legal aspects of synthetic data.Oversee privacy considerations in vendor relationships, including drafting and negotiating Data Processing Agreements (DPAs).Operational Response & Rights ManagementCreate and implement tools for automating privacy-related operational responses.

The City of New York is seeking a visionary and dynamic Executive Director for the Office of Information Privacy. This pivotal role will involve overseeing the development and implementation of strategies to ensure the privacy of personal information in compliance with applicable laws and regulations. The successful candidate will lead initiatives to enhance transparency and accountability in data governance, ensuring that the City remains at the forefront of data protection and privacy practices.

Rent the Runway seeks a Privacy Manager to oversee privacy policies and practices at its Brooklyn headquarters. This position centers on maintaining high standards for customer data protection and supporting compliance across the organization. Key responsibilities Lead efforts to strengthen data protection strategies and processes Conduct privacy impact assessments to identify and address risks Monitor and ensure compliance with relevant privacy laws and regulations Help shape the company’s approach to customer data privacy, with a focus on building trust and transparency Location This role is based at Rent the Runway’s headquarters in Brooklyn, NY.

About Atlas PrivacyIn an age where personal information is readily accessible, Atlas Privacy is at the forefront of the movement to protect individuals from data exploitation. Every day, countless data brokers trade private details—like home addresses and phone numbers—often without consent or oversight. Atlas Privacy seeks to change this narrative, championing the right to privacy and establishing stronger regulations in the United States.Our mission is to safeguard Americans against the encroachments of surveillance capitalism and privacy violations. Our diverse team of experts encompasses fields such as law, cybersecurity, consumer technology, computer engineering, and policy.Over the last three years, we have developed the most sophisticated consumer privacy platform available, empowering individuals to reclaim their rights against numerous data brokers. We have also spearheaded groundbreaking legal actions, including over 180 lawsuits under New Jersey's Daniel's Law, protecting the rights of judges, prosecutors, and law enforcement officials.Our impactful work has garnered attention from leading media outlets, including Bloomberg Law, Law360, and Wired. Our investors include renowned firms such as Y Combinator and Lightspeed Venture Partners, and we collaborate with prestigious law firms like Boies Schiller Flexner and Bird Marella.Why Join Atlas?Joining Atlas offers a unique opportunity to engage in meaningful, mission-driven work that resonates with individuals from all walks of life. Our focus on the essential right to privacy transcends political boundaries, addressing a civic need for safety and security against data misuse.As a rapidly growing startup, we empower our employees to innovate and shape transformative technology and legal frameworks from the ground up. When you join us, you are not merely taking on a job; you are becoming part of a vital movement to redefine how personal data is protected in today's digital landscape.

Role Overview Datadog seeks a Privacy Counsel to join the Privacy Legal team in New York. This role focuses on supporting global data privacy and AI governance efforts. The position involves advising on a wide range of data protection, cybersecurity, and AI topics. Key Responsibilities Advise on data privacy, cybersecurity, and AI-related legal issues Work closely with teams across legal, product, engineering, information security, employment, and marketing Support the development and implementation of privacy and AI governance initiatives Navigate challenges at the intersection of privacy, security, and SaaS product innovation Work Location and Culture This is a hybrid role based in Datadog’s New York office. The company values in-person collaboration and creativity, while offering flexibility to support work-life balance.

P-1125 Summary At Databricks, we are dedicated to empowering data teams to tackle the most challenging issues facing the world today, from detecting security threats to developing cancer treatments. Our mission is to create and maintain the premier data and AI infrastructure platform, allowing our clients to concentrate on the critical challenges central to their objectives. Our engineering teams are at the forefront of innovation, delivering highly sophisticated products that meet significant global demands. We relentlessly push the limits of data and AI technology while ensuring the resilience, security, and scalability essential for our customers’ success on our platform. Trust is paramount at Databricks, and our Trust & Safety initiative is dedicated to establishing the most reliable data analytics and machine learning platform globally. Security Engineering plays a crucial role in protecting customer data from malicious threats. We seek experienced leaders like you to craft the vision and outline the strategy in this vital area.

Join our dynamic legal team as a Payments & Privacy Counsel at rain, where you will play a pivotal role in navigating the complexities of financial regulations and privacy laws. This is an exciting opportunity to influence our compliance strategies and ensure that our payment systems align with legal standards.

modal is hiring a Security GRC Specialist to build on our governance, risk, and compliance efforts. The role centers on identifying risks, reducing vulnerabilities, and helping the company meet regulatory standards. This work shapes both our overall security posture and our approach to accountability. Key Responsibilities Identify and assess security risks across the company Support strategies to mitigate those risks Monitor compliance with relevant regulatory requirements Encourage cybersecurity best practices throughout all teams and departments Location This position is based in New York.

Who We AreAt Justworks, we foster a friendly and relaxed work atmosphere, complemented by excellent benefits, wellness initiatives, company retreats, and opportunities to engage with and learn from leaders in the startup ecosystem. Our commitment to our most valuable asset—our people—drives our efforts.We empower businesses to thrive by allowing them to concentrate on what they do best. Our approach tackles HR challenges with a data-driven mindset and continuous improvement. If you seek a nurturing, entrepreneurial environment and are passionate about contributing to something impactful while enjoying the journey, we would love to connect with you.At Justworks, we are united by common goals and motivations, encapsulated in our core values, which are evident in our products and our team.Explore Our ValuesIf this resonates with you, you'll fit right in.Your Success ProfileWhat You Will Work OnOversee high-volume privacy operations, ensuring the fulfillment of Data Subject Rights (DSRs) and the execution of Privacy Impact Assessments (PIAs) and Transfer Impact Assessments (TIAs).Maintain essential compliance documentation, including Records of Processing Activities (RoPA) and comprehensive system/asset inventories.Support privacy remediation initiatives by drafting and implementing privacy policies and procedures, ensuring robust data management practices.Collaborate with cross-functional teams to embed Privacy by Design principles throughout the product development lifecycle.Assist in the implementation, configuration, and ongoing technical maintenance of privacy automation tools.Perform additional related duties as required.How You Will Do Your WorkAs a Privacy Program Manager, the approach to achieving results is crucial for both your success and that of our organization. Your foundational knowledge, skills, and personal attributes will be rooted in the following:Detail-oriented: You possess an acute attention to detail, ensuring thoroughness, accuracy, and organization while seeking to understand the technical intricacies of data flows.

About AtlasIn today's digital age, individuals' personal information is often at risk, with numerous data brokers profiting from the sale of private details such as home addresses and phone numbers. Atlas Privacy is dedicated to revolutionizing privacy enforcement across America.We stand at the forefront of protecting Americans from data misuse, surveillance capitalism, and privacy infringements. Our team comprises experts in law, cybersecurity, consumer technology, computer engineering, and policy.Over the past three years, we have developed the most sophisticated consumer privacy platform available, empowering Americans to assert their rights against countless data brokers. We are also pioneering influential legal actions, including over 180 lawsuits under New Jersey's Daniel’s Law on behalf of thousands of judges, prosecutors, and law enforcement personnel.Our groundbreaking work has garnered attention from major outlets like Bloomberg Law, Law360, and Wired. We are backed by prestigious investors such as Y Combinator and Lightspeed Venture Partners, and we collaborate with renowned law firms including Boies Schiller Flexner and Bird Marella.Why Atlas?Joining Atlas is a unique opportunity to engage in mission-driven work that truly impacts society. Our organization addresses a critical issue relevant to all: the essential right to privacy and security. Our mission resonates beyond political affiliations, advocating for the protection of judges, public officials, and other at-risk individuals from data misuse and surveillance. At Atlas, we are leading the charge in defining how personal data is safeguarded in a world where these threats are increasingly prevalent.As a rapidly expanding startup, Atlas offers employees a chance to create transformative technologies and legal frameworks from the ground up. You won't just be joining a workplace; you will be part of a movement to build a new sector.

About UsAt Rillet, we empower accounting and finance teams to achieve unparalleled speed, accuracy, and insight in their operations. Our innovative AI-native ERP solution is designed to facilitate a zero-day close, combining a unified data model with numerous top-tier integrations, automated workflows, and an ever-evolving suite of specialized AI agents. This approach has led to exceptional customer satisfaction, with industry leaders such as Mercer, Windsurf, and Function Health relying on our rapid deployment capabilities to scale their financial operations.We have successfully secured $100 million in funding from prestigious investors like Sequoia and a16z, reinforcing our mission to revolutionize the financial landscape with AI-driven tools.Our CultureRillet's fast-paced environment is all about empowerment and agility. We seek individuals who take initiative, embrace challenges, and consistently deliver outstanding results. Our focus is always on our customers, and we foster a culture where the most critical tasks are prioritized, even if they deviate from the original plan.This role does not require accounting expertise but demands a genuine appreciation for how our solutions enhance our customers' financial capabilities. Ideal candidates are those who are passionate about fueling the financial backbone of high-growth companies.Your RoleAs our inaugural Senior GRC Analyst, you will have the unique opportunity to construct Rillet's governance, risk, and compliance framework from the ground up. You will play a pivotal role in establishing the security and compliance protocols necessary for a rapidly growing fintech company handling sensitive financial data. This includes managing our SOC 2 Type II certification, leading customer security evaluations, and developing scalable compliance processes that support, rather than hinder, our product development pace. You will collaborate closely with engineering and sales leadership to integrate security within our development lifecycle and promote trust and transparency in enterprise relationships.

Laurel develops AI-powered time platforms designed for professional services firms. By automating the capture of work time and connecting time data to business outcomes, Laurel helps firms improve profitability, client service, and strategic decision-making. Clients include organizations such as EY, Aprio, Crowell & Moring, and Frost Brown Todd. Laurel’s systems process over 1 billion previously untracked work activities each year. The team includes experts in AI, product, and engineering, all working to rethink productivity in the knowledge economy. Laurel’s mission centers on helping employees accomplish more in less time, creating space for creativity and impact. Role overview The Lead Counsel for AI & Privacy is Laurel’s first legal hire, based in San Francisco, Los Angeles, or New York. This position focuses on product, data, and AI strategy, setting the foundation for legal guidance as the company grows. Key focus areas Provide direction on how Laurel builds, deploys, and scales AI responsibly for enterprise clients. Collaborate with Product, Engineering, Security, and Sales to influence data use, AI system design, and customer trust. Tackle legal and ethical questions where AI, privacy, and data intersect. Establish foundational practices and policies for Laurel’s technology and business operations. Collaboration This role works closely with cross-functional teams, including Product, Legal, and Go-To-Market, to influence both strategy and day-to-day execution. Location San Francisco, Los Angeles, or New York.

Oscar Health builds technology-driven health insurance with a focus on personal, supportive experiences. Since 2012, the company has aimed to make insurance feel as approachable as working with a trusted family doctor. Role overview The Senior Security Engineer I, GRC joins Oscar’s Security Team to design and operate systems that deliver ongoing security assurance, actionable risk insights, and scalable compliance. This position focuses on engineering infrastructure and automation that enable the organization to demonstrate security and compliance in practice, not just through documentation or audit preparation. What you will do Design and maintain systems that automate security assurance and compliance processes Integrate governance and control validation into system architecture Connect operational telemetry, engineering workflows, and risk signals to create a feedback loop for security intelligence Identify patterns and relationships that traditional GRC programs may overlook Collaborate closely with the Senior Manager of GRC Requirements Background in security engineering, platform engineering, risk management, and regulatory assurance Ability to combine technical and compliance expertise to create scalable solutions Experience with automation, telemetry, and self-evidencing controls Work location This role is based in Oscar’s New York City office. The hybrid schedule requires three days per week in the office. Thursdays are mandatory in-office days for team meetings and events; the other two days are flexible. Compensation and benefits Base salary: $163,944 to $215,176 per year Eligibility for equity grants and annual performance bonuses Access to Oscar’s unlimited vacation program Comprehensive employee benefits

Join NBCUniversal as an IT Governance, Risk, and Compliance (GRC) Contract Analyst where you will play a pivotal role in ensuring compliance and managing risks associated with IT operations. In this full-time position, you will have the opportunity to work with a talented team dedicated to upholding high standards of security and governance.Your expertise will directly contribute to safeguarding our IT infrastructure and adhering to regulatory requirements. You'll engage with various stakeholders to assess risks, develop compliance strategies, and implement best practices.

About GameChanger:At GameChanger, we are passionate about the transformative power of youth sports. We believe that participating in sports fosters essential life skills such as leadership, teamwork, responsibility, and self-confidence—qualities that pave the way for brighter futures. We understand that the heartbeat of organized youth sports lies in the dedication of coaches, parents, and volunteers. By creating an exceptional platform for families to celebrate their youth sports experiences, we empower the next generation to thrive.If you share our enthusiasm for sports and their role in community building, or if you are excited about developing innovative products, you’ll find your place with us. As a remote-first tech company based in New York City, we are tackling significant challenges in the youth sports sector today.The Role:We are seeking a talented Program Manager, Compliance & Privacy Operations to effectively translate legal and regulatory standards into scalable processes that integrate seamlessly into our product and business operations. You will closely collaborate with our Legal, Product, Engineering, and Operations teams to embed compliance into our product lifecycle, facilitating swift movement while appropriately managing risk. Positioned at the crossroads of legal, product, and operations, you will play a critical role in guiding how GameChanger scales responsibly. You will report directly to the Sr. Director, Assistant General Counsel at DICK’S Sporting Goods while working onsite at our New York City office.Key Responsibilities:Interpret legal and regulatory obligations (including privacy, platform safety, and marketing compliance) to create transparent workflows, controls, and operational procedures.Collaborate with Product and Engineering teams to integrate compliance into product development, focusing on data management practices.Develop and enhance repeatable compliance systems, including policies, documentation, and frameworks that ensure consistent execution.Assist in risk assessment and decision-making, guiding teams through tradeoffs with clear recommendations.Foster cross-functional alignment among Legal, Product, Engineering, Marketing, and Operations to promote a shared understanding and implementation of compliance strategies.Stay informed on evolving regulations (e.g., privacy, youth safety) to ensure compliance practices remain up-to-date.