CareerRiver

Privacy Operations Specialist

Thomson Reuters

via workday
Apply on company site ↗
CareerRiver pulls this listing straight from the employer's hiring system — no recruiter middleman, no reposts. Applying takes you directly to Thomson Reuters.
Thomson Reuters is seeking an experienced Privacy Operations Specialist to join our General Counsel's Office. Reporting to the Chief Privacy Officer, this role presents an exciting opportunity to operationalize our global privacy program across Thomson Reuters. This role will be responsible for implementing privacy policies, managing day-to-day privacy operations, and ensuring compliance with global data protection regulations including regional (GDPR), federal (PIPEDA, UK GDPR), U.S. State (CCPA), provincial (Quebec’s Law 25) and sectoral (HIPAA, GLBA,FedRamp, CJIS, etc) privacy regulation, and other applicable privacy laws. The ideal candidate will bridge the gap between privacy law, technology and strategy, working cross-functionally to embed privacy practices throughout the organization and drive automation, leveraging the use of AI and other tools to operationalize privacy compliance across products, services and functions. About the Role In this opportunity as a Privacy Operations Manager, you will lead: Privacy Program Management Oversee the day-to-day operations of Thomson Reuters' global privacy program Implement privacy policies, procedures, and operational frameworks Conduct or facilitate the conduct of risk assessments, including - privacy impact assessments (PIAs) data protection impact assessments (DPIAs), transfer impact assessments (TIAs) Coordinate responses to data subject access requests (DSARs) and ensure timely resolution Track and report on privacy program metrics and KPIs Privacy Compliance & Risk Management Track and report changes in new/existing privacy regulation and monitor compliance with key regulations including GDPR, CCPA, PIPEDA, among others Build out and maintain data inventory, and data mapping initiatives Identify privacy risks and work with stakeholders to implement mitigation strategies Support privacy incident response and breach notification processes Conduct privacy audits and assessments of internal processes and third-party vendors Cross-Functional Collaboration Partner with Legal, Information Security, IT, Product, and Business teams to integrate privacy by design principles Serve as a privacy subject matter expert and advisor to business units Facilitate privacy training and awareness programs for employees Work with vendors and partners to ensure contractual privacy obligations are met Identify current subprocessor's and updating contractual documentation to reflect current state Documentation & Reporting Maintain records of processing activities (ROPA) and privacy documentation Prepare privacy reports for leadership and relevant stakeholders Document privacy procedures and create operational playbooks Support regulatory inquiries and audits About you Required: Bachelor’s degree in law, Information Systems, Computer Science, Cybersecurity, or related legal or technical field 4-6 years of experience in a technical privacy, cybersecurity, or compliance role, preferably in a SaaS environment. Relevant privacy certification, such as IAPP’s Certified Information Privacy Professional credential (CIPM, CIPPT), Certified Information Systems Security Professional (CISSP). Experience with privacy risk assessments from a technical perspective. Advanced skills (2-4+ years) configuring and managing OneTrust privacy management software, including assessment automation, data inventory management, and DSAR workflow and consent management. Strong knowledge of global privacy regulations (GDPR, CCPA, PIPEDA, etc.) Ability to interpret legal and regulatory requirements into system-level controls. Experience in advising product and technology teams on privacy obligations relating to the processing of sensitive data, including implementing privacy by design requirements. Knowledge of data classification, retention, and lifecycle management. Experience managing privacy operations in a large, complex organization Proven ability to manage multiple projects and priorities simultaneously Excellent communication skills with ability to explain complex privacy concepts to non-technical audiences Strong analytical and problem-solving capabilities Experience with privacy management tools and technologies Preferred: Experience with automation tools (e.g., PowerBI, PowerAutomate) and AI/ML frameworks for compliance. Experience with data governance tools, SIEM systems, and privacy-enhancing technologies (PETs). Expert skills (4+ years) configuring and managing OneTrust privacy management software, including assessment automation, data inventory management, and DSAR workflow and consent management. Proficiency in scripting and automation for compliance tasks/ privacy automation tools and technologies . Knowledge of information security frameworks and practices Project management certification or experience Master's degree or J.D. Skills & Competencies Strategic thinking with operational execution capabilities Strong attention to detail and organizational skills Ability to work independently and collaboratively across global teams Adaptability to changing regulatory landscapes Cultural sensitivity for working in a global environment Technical aptitude for understanding data flows and systems #LI-KK1 What’s in it For You? Hybrid Work Model: We’ve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, empowering employees to achieve a better work-life balance. Career Development and Growt

Browse all locations