Manager, Privacy

Coinbase is looking for a privacy subject matter expert to lead our Privacy operations. In this role, you will work cross-functionally across Legal, Engineering and Product teams to manage complex privacy and data protection projects. You will be encouraged to ideate on how Coinbase approaches privacy topics, while equipping the privacy team to craft roadmaps with their partners and increase privacy maturity.

What you’ll be doing (ie. job duties):

Conducting gap assessments against GDPR and other relevant Americas/EMEA/ APAC regulations and tracking issues to remediation
Independently perform privacy assessments, data reviews, maturity benchmarking, and operational effectiveness testing against Coinbase’s common controls including:
Oversight and support integration of Privacy enabling solutions at Coinbase (e.g. Tooling for Automated data discovery and classification, ROPA, Data Subject Rights)
Partnering with Platform and Security to implement technology controls to safeguard sensitive data
Oversight into DPIA’s and auditing Coinbase Inc.’s privacy program
Developing, implementing, and scaling Coinbase’s data protection program and governance model in partnership with Privacy Legal including: cross-functional projects focused on issues like user rights and data protection impact assessments, and developing and establishing of data protection safeguards (e.g. for purpose-use limitation, data retention/deletion, etc)
Collaborating closely with DPO and with data protection authorities in Americas as necessary
Partner with Privacy Legal to develop durable, scalable frameworks for addressing data-related incidents, regulatory inquiries, law enforcement demands, user information requests
Support efforts related to user-facing privacy notices, disclosures, and privacy controls/settings, to address product and regulatory developments
Collaborate with product teams to implement privacy-forward, secure, and customer-centric product design
Oversee Privacy Incident Management program including managing privacy incidents and program uplifts

What we look for in you (ie. job requirements):

7+ years of experience in Data Protection / Privacy experience
2+ years of experience working within Financial Services or FinTech
Fluency in performing risk assessments and compliance gap assessments against relevant regulatory requirements and driving issues to remediation
Experience in implementing/rolling out privacy tooling at enterprise level
Experience in implementing data protection technical controls
Knowledgeable about privacy by design framework and applying it to complex and rapidly changing products
Articulate the importance of privacy to technical and non-technical stakeholders and deliver training
Experience with developing security/privacy reporting and recommendations that are meaningful, defensible and practical for a variety of audiences
Experience developing and submitting audit and compliance reports to governing bodies, legal entities, and/or external authorities
Experience tracking privacy gaps to remediation
Excellent project management skills
Managing Data Protection requirements across America/EU / UK entities taking into account difference in governance processes
Demonstrates the ability to responsibly use generative AI tools and copilots (e.g., LibreChat, Gemini, Glean) in daily workflows, continuously learn as tools evolve, and apply human-in-the-loop practices to deliver business-ready outputs and drive measurable improvements in efficiency, cost, and quality

Nice to haves:

CIPP/E and other certifications
Experience working within Cloud native environments
You have a relevant BA/BS degree in a technical field or equivalent experience
Experience working within a global company with a complex regulated entity structure

Job ID: P76249

#LI-Remote

Details

Location

Remote

What you’ll be doing (ie. job duties):

Conducting gap assessments against GDPR and other relevant Americas/EMEA/ APAC regulations and tracking issues to remediation
Independently perform privacy assessments, data reviews, maturity benchmarking, and operational effectiveness testing against Coinbase’s common controls including:
Oversight and support integration of Privacy enabling solutions at Coinbase (e.g. Tooling for Automated data discovery and classification, ROPA, Data Subject Rights)
Partnering with Platform and Security to implement technology controls to safeguard sensitive data
Oversight into DPIA’s and auditing Coinbase Inc.’s privacy program
Developing, implementing, and scaling Coinbase’s data protection program and governance model in partnership with Privacy Legal including: cross-functional projects focused on issues like user rights and data protection impact assessments, and developing and establishing of data protection safeguards (e.g. for purpose-use limitation, data retention/deletion, etc)
Collaborating closely with DPO and with data protection authorities in Americas as necessary
Partner with Privacy Legal to develop durable, scalable frameworks for addressing data-related incidents, regulatory inquiries, law enforcement demands, user information requests
Support efforts related to user-facing privacy notices, disclosures, and privacy controls/settings, to address product and regulatory developments
Collaborate with product teams to implement privacy-forward, secure, and customer-centric product design
Oversee Privacy Incident Management program including managing privacy incidents and program uplifts

What we look for in you (ie. job requirements):

7+ years of experience in Data Protection / Privacy experience
2+ years of experience working within Financial Services or FinTech
Fluency in performing risk assessments and compliance gap assessments against relevant regulatory requirements and driving issues to remediation
Experience in implementing/rolling out privacy tooling at enterprise level
Experience in implementing data protection technical controls
Knowledgeable about privacy by design framework and applying it to complex and rapidly changing products
Articulate the importance of privacy to technical and non-technical stakeholders and deliver training
Experience with developing security/privacy reporting and recommendations that are meaningful, defensible and practical for a variety of audiences
Experience developing and submitting audit and compliance reports to governing bodies, legal entities, and/or external authorities
Experience tracking privacy gaps to remediation
Excellent project management skills
Managing Data Protection requirements across America/EU / UK entities taking into account difference in governance processes
Demonstrates the ability to responsibly use generative AI tools and copilots (e.g., LibreChat, Gemini, Glean) in daily workflows, continuously learn as tools evolve, and apply human-in-the-loop practices to deliver business-ready outputs and drive measurable improvements in efficiency, cost, and quality

Nice to haves:

CIPP/E and other certifications
Experience working within Cloud native environments
You have a relevant BA/BS degree in a technical field or equivalent experience
Experience working within a global company with a complex regulated entity structure

Job ID: P76249

#LI-Remote