Paradox

Job Description

Are you a data detective, eager to identify and mitigate privacy risks?

Is your superpower navigating the ever-changing landscape of data privacy regulations?

Are you energized by finding creative solutions to complex privacy challenges?

At Paradox, we believe when you get the people thing right, you can build teams that can change the world. We’re helping organizations around the globe reimagine hiring with our first-of-its-kind recruitment technology. From our Conversational ATS to our best-in-class hiring assessments, Paradox is laser focused on building world class products and a team that our clients love. Our high-performance culture and triple-digit growth have been recognized on Deloitte’s "Fast 500" technology companies, the Inc 5000 list of fastest-growing private companies, and as a Forbes Best Startup Employers. And we’re just getting started. We are looking for top performers who have a track record of success and want to build a company and create the future together. 

We’re seeking an experienced, business-minded Data Privacy Specialist to help meet the demands of our internal and external stakeholders and evolving governmental regulations. Reporting to the VP, Privacy and Security, you will have the opportunity to make a significant impact at Paradox, collaborating cross-functionally with Product, Engineering, Legal, and Information Security teams to advise on various privacy matters, help safeguard against privacy risk and ensure compliance with privacy rights and obligations.

Sound like your perfect fit? We want to hear from you! 

As a Data Privacy Specialist, you will be responsible for advancing, executing and maintaining Paradox’s data privacy strategy and compliance framework. In this role, you will: 

• Manage Paradox’s policies and procedures on data privacy, including, but not limited to: processing of personal information; data mapping and processing; data and records handling and retention/deletion
• Assist in managing regulatory change management processes to monitor and address changes in applicable privacy-related laws, rules, regulations and contracts
• Assist in managing privacy-related inquiries and privacy rights requests
• Support security and/or privacy incident management, including maintenance of response program, policies and procedures to address privacy incidents, procedures to detect and report the unauthorized access, use or disclosure of personal information
• Assist in due diligence and management of vendors and subprocessors, including review and analysis of data categories being processed, relevant activities, sensitivity of activities, agreements, diligence and compliance documentation, location of processing, and TIAs/PIAs
• Conduct, review, and document privacy impact assessments (PIAs) / data protection impact assessments (DPIAs) in accordance with privacy best practices
• Assist in establishing, managing and monitoring appropriate privacy controls
• Assist in managing annual privacy risk assessments and process for mitigating/remediating risks, as well as management of ISO 27701 certification and renewal processes
• Assist with internal and external audits and develop remediation and corrective action plans driven by audit results.
• Manage client-related privacy requests, questionnaires, due diligence, document reviews (e.g., DPAs) and subprocessor updates
• Assist in receiving, digesting, and completing required operational and product updates resulting from the passage of new legislation, regulation, or regulatory guidance and counsel relevant stakeholders regarding the same
• Provide guidance, consultation, subject matter expertise and thought leadership in the data privacy space by sharing best practices throughout the organization
• Monitor and advise on global regulatory developments in conjunction with product, security and legal teams to assist internal operational and product compliance
• Partner with leaders to review and analyze privacy laws, regulations, and emerging risks
• Conduct periodic privacy training to enhance privacy awareness and compliance within the organization

Required Qualifications:

• 5+ years of demonstrated experience working with privacy, risk and compliance both in and with global organizations
• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field or equivalent experience
• Familiarity with and understanding of privacy regulations (e.g., GDPR, CCPA, etc.) and frameworks (e.g., GAPP, FIPS, NIST)
• Business-minded, with an ability to anticipate issues, evaluate risks, and weigh costs and benefits to the company to help drive the business forward while managing privacy-related risks
• Strong communication and collaboration skills to work effectively with cross-functional teams and stakeholders, with proven experience working with senior stakeholders and in client engagements
• Attention to detail and ability to prioritize tasks in a fast-paced environment
• Ability to work from our Scottsdale, AZ headquarters
• Authorization to work in the United States

Preferred Qualifications: 

• Professional privacy or security certifications: CIPP (A/C/E/US), CIPM, CIPT, CISA, CISM, etc.
• Experience supporting privacy compliance in a technical environment
• Experience in AI-related privacy issues 

Why you should work at Paradox: 

• Work side by side with passionate, purposeful people - Talent is our DNA and we pride ourselves on having the best!
• Ability to make a big impact on a growing organization and drive your own growth
• The opportunity to be part of the team building the next big thing in recruiting technology
• Internal and external professional development, coaching, and continuous education opportunities