The Privacy Program Manager, (GRC) Governance, Risk, and Compliance, will play a critical role in ensuring that our organization adheres to both privacy and competition requirements, manages risks effectively, and maintains strong governance practices. This role will involve implementing GRC initiatives, policies, and procedures, executing oversight and governance activities to safeguard the integrity and reputation of our organization. The Privacy Program Manager will be responsible for developing and maintaining stakeholder relationships both internally and externally. A successful candidate will thrive in an ambiguous, high paced cross-functional environment where they are able to understand different perspectives and provide discussion frameworks to enable trade-offs and decisions. They should excel in knowing when to lead or support a cross-functional team and bring out views from all disciplines to inform one strategic plan.

• Identify, assess, and prioritize potential risks and develop mitigation plans to minimize their impact on the organization.
• Ensure the organization complies with relevant laws, regulations, and industry standards by continuously monitoring and updating compliance programs.
• Design and execute to complete internal oversight and governance activities.
• Support the coordination of internal and external audits, ensuring compliance with audit requirements, and driving corrective actions when needed.
• Drive greater consistency of process, practices, and execution across privacy and competition monitoring-related workstreams
• Serve as a subject-matter expert with a deep understanding of the End to End (E2E) Privacy & Competition Compliance Processes, including timelines and stakeholder involvement/expectations
• Engage cross-functional stakeholders and provide support in developing and strategizing mitigation plans to resolve potential issues
• Provide Second Line of Defense (2LOD) guidance and oversight to ensure Meta's compliance with global privacy and competition regulations and obligations across all new, and modified products, services, and practices
• Drive consensus across stakeholder groups whose interests may not always align
• Develop long-term objectives of how we will evolve our privacy and competition program operating model with well-documented roadmaps, goals, and objectives while delivering on immediate priorities
• Project manage and prioritize work based on urgency and complexity while building operational cadences across technical and operational teams to coordinate work
• Set priorities, multi-task, and work independently in a dynamic, rapidly changing workplace

• 4+ years of work experience in consulting, audit or compliance operations, with 1+ years in designing and implementing cross functional programs.
• Deep knowledge of privacy and competition regulations GDPR, DMA, DSA
• Experience running project management or program management initiatives (e.g. organization-wide initiatives, large scale integration management projects).
• Communications experience with simplifying concepts and developing outputs.
• Track record of collaborating with cross-functional teams to drive results.
• Knowledge and aptitude for problem solving.
• 4+ years of work experience in consulting, audits and assessments, business operations, program management, or other operational disciplines.
• 4+ years of work experience designing Risk and Controls frameworks, evaluating control effectiveness, and monitoring compliance.
• Hands-on experience in implementing or auditing privacy compliance programs.
• Industry standard certifications like CISA, CISM, CRISC, CDPSE, CIPP/E, ISO27001, and others are desirable

• Industry standard certifications like CISA, CISM, CRISC, CDPSE, CIPP/E, ISO27001, and others are desirable