Privacy and Compliance Specialist
Posted May 10
This is a fully remote position, open to applicants in United States.
📋 Description
• Oversee, set up, and enhance the OneTrust platform for client projects across various modules, including Privacy Management, Consent & Preferences, Third-Party Risk, Data Discovery, and GRC, tailored to client requirements.
• Develop and sustain assessments, workflows, data inventories, and Records of Processing Activities (ROPAs) within OneTrust, ensuring consistent design patterns are applied across projects.
• Assist with Data Protection Impact Assessments (DPIAs), Transfer Impact Assessments (TIAs), and Legitimate Interest Assessments (LIAs) through platform setup and coordination with stakeholders.
• Administer cookie consent banners, preference centers, and consent lifecycle workflows across client digital platforms, ensuring compliance with relevant jurisdictional regulations.
• Configure and manage Data Subject Access Request (DSAR) intake, fulfillment, and reporting workflows, collaborating with client privacy and legal teams for response coordination.
• Convert privacy, legal, and regulatory requirements into platform configurations, workflows, assessment templates, and reporting mechanisms that are testable, traceable, and ready for audits.
• Onboard new client business units and users onto the platform, including designing role-based access, delivering training, and creating operational documentation.
• Collaborate with Solution Architects, Business Analysts, Quality Assurance, and client stakeholders to ensure OneTrust configurations align with broader compliance, security, and IT strategies.
• Facilitate integrations between OneTrust and other enterprise systems such as Salesforce, Veeva, identity providers, ticketing systems, and data discovery tools.
• Incorporate life sciences privacy context into platform scope decisions, addressing HCP and patient engagement, clinical and research data considerations, sample management, MLR/PRC review, field tools, and consent and privacy obligations across commercial, medical, and clinical areas.
• Assist in audit preparedness and regulatory inquiry responses, including evidence collection, maintaining traceability, tracking change history, and documenting platform usage.
• Stay updated on OneTrust platform enhancements, new modules, and roadmap changes, advising clients on implementation and implications.
• Establish and enhance Slipstreams OneTrust delivery resources, including reusable configuration patterns, assessment templates, workflow libraries, and implementation guides.
• Create dashboards, reports, and quality metrics for client compliance monitoring and Slipstream leadership visibility, including DSAR cycle times, assessment completions, consent performance, and third-party risk posture.
• Assist in presales activities and Statement of Work (SOW) development for OneTrust projects, including effort estimation, configuration level-of-effort, and articulating Slipstreams OneTrust capabilities to potential clients.
• Mentor junior analysts and participate in peer reviews of platform configurations, assessment designs, and client deliverables.
⛳️ Requirements
• Minimum of 4 years of experience in privacy, compliance, data governance, or a related field, preferably within a consulting, systems integration, or in-house setting.
• Essential experience in the pharma, biotech, healthcare, or life sciences sectors.
• Practical experience in administering or configuring the OneTrust platform across one or more modules (Privacy Management, Consent & Preferences, Third-Party Risk, GRC, or Data Discovery).
• Familiarity with global privacy regulations, including GDPR, CCPA/CPRA, and other US state privacy laws, with knowledge of HIPAA and emerging international frameworks.
• Experience in configuring assessments, workflows, data inventories, and DSAR processes within OneTrust or a similar privacy management platform.
• Background in supporting cookie consent and preference management implementations across digital platforms.
• Strong capability to interpret privacy, legal, and regulatory requirements into platform configurations and operational workflows.
• Experience in client-facing or cross-functional delivery environments, coordinating efforts across Legal, IT, Security, and business stakeholders.
• Excellent analytical, problem-solving, and documentation skills, with the ability to articulate technical concepts to non-technical audiences.
• Superior written and verbal communication skills, including the ability to lead working sessions, present platform configuration approaches, and represent Slipstream in client meetings.
• OneTrust certifications (Privacy Management Professional, Consent & Preferences, Third-Party Risk, GRC, or Data Discovery).
🏝️ Benefits
• 401k matching program.
• Comprehensive health, dental, and vision insurance.
• Life insurance and long-term disability coverage.
• Flexible paid time off (PTO).
People also viewed
Crypto.com2 hours ago
Crypto.com
Director, US Broker-Dealer Compliance
United States OnlyFull-timeCompliance$230k – $280k/yearBD2 hours ago
BD
International Regulatory Affairs Specialist
Maryland OnlyFull-timeCompliance$75.8k – $121.3k/yearWorkstreet2 hours ago
Workstreet
Senior GRC Engineer – Government
United States OnlyFull-timeComplianceThe Duckhorn Portfolio2 hours ago
The Duckhorn Portfolio
Manager, Regulatory Compliance
United States OnlyFull-timeCompliance$87k – $110k/year
Never miss a great job!
Get handpicked remote jobs straight to your inbox weekly.
Trusted by 7,400+ designers
