Elastic Privacy Program Manager 

Spain 

539642329

• Lead privacy assessments (PIAs, LIAs, DPIAs, TIAs). Conduct and coordinate privacy risk reviews related to product development, business processes and the use of third parties.
• Respond to privacy questions and compliance inquiries, e.g., data subject access requests.
• Team up with fellow privacy professionals to map Elastic’s privacy practices to current and emerging laws and regulations worldwide. Document compliance, identify gaps, and help craft durable and scalable remediations.
• Engineer continuous improvements to privacy processes, tools and workflow automations. Enhance and expand internal privacy and AI compliance review processes.
• Support cookie compliance on Elastic’s public facing web properties and applications. Supervise cookie consent mechanisms and curate cookie policies and notices.
• Help internal privacy champions identify departmental privacy needs and assist with their privacy roadmaps, data maps, flow diagrams, records of processing activities, risk assessments, etc.
• Partner with Legal Operations, IT, Information Security and Engineering to embed relevant privacy-enhancing solutions into products and business processes.
• Support and dashboard the Privacy Team's strategic projects to maintain and advance privacy compliance.
• Develop and strengthen measurable and scalable processes for demonstrating the privacy program’s progress and performance.
• Assist with privacy-related communications within the organization, such as writing for executive presentations, newsletters, team updates.
• Help the team maintain and develop the privacy intranet and web contents.

• Bachelor's degree in Law, Information Technology, Business Administration, or equivalent experience. Familiar with global privacy laws and well versed in regulatory horizon scanning. Professional certifications such as CIPP, CIPM, CIPT are a plus.
• 3-5 years of experience in privacy programs and operations, data protection or adjacent areas, preferably in the field of business software / SaaS.
• Experience in performing various types of privacy assessments and risk reviews, delivering timely, actionable, business-friendly advice to mitigate risk pragmatically. Confidence in handling and fulfilling data subject requests at scale.
• Strong organizational, prioritization and time management skills, comfortable handling multiple projects simultaneously and consistently across functions.
• Strong analytical and creative problem-solving skills, with high attention to detail to ensure accuracy in compliance analysis, documentation, and reporting.
• Expertise in privacy-enhancing technologies, familiarity with cybersecurity, data governance knowledge, AI/GenAI literacy, experience in using AI for compliance will be highly appreciated.
• Proficiency in written and spoken English, eagerness to work cross-functionally and to build strong relationships.

We strive to have parity of benefits across regions, and while regulations differ from place to place, we believe taking care of our people is the right thing to do.

• Competitive pay based on the work you do here and not your previous salary
• Health coverage for you and your family in many locations
• Ability to craft your calendar with flexible locations and schedules for many roles
• Generous number of vacation days each year
• Increase your impact - We match up to $2000 (or local currency equivalent) for financial donations and service
• Up to 40 hours each year to use toward volunteer projects you love
• Embracing parenthood with a minimum of 16 weeks of parental leave

Applicants have rights under Federal Employment Laws and can view the following posters linked below:

Elasticsearch develops and distributes technology and information that is subject to U.S. and other country export controls and licensing requirements for individuals who are located in or are nationals of the following sanctioned countries and regions: Belarus, Cuba, Iran, North Korea, Russia, Syria, the Crimea Region of Ukraine, the Donetsk People’s Republic (“DNR”), and the Luhansk People’s Republic (“LNR”). If you are located in or are a national of one of the listed countries or regions, an export license may be required as a condition of your employment in this role. Please note that national origin and/or nationality do not affect eligibility for employment with Elastic