VP, Global Privacy - Data Protection Officer

Saviynt's AI-powered identity platform manages and governs human and non-human access to all of an organization's applications, data, and business processes. Customers trust Saviynt to safeguard their digital assets, drive operational efficiency, and reduce compliance costs. Built for the AI age, Saviynt is today helping organizations safely accelerate their deployment and usage of AI. Saviynt is recognized as the leader in identity security, with solutions that protect and empower the world’s leading brands, Fortune 500 companies and government institutions. For more information, please visit www.saviynt.com. If required for this role, you will: - Complete security & privacy literacy and awareness training during onboarding and annually thereafter - Review (initially and annually thereafter), understand, and adhere to Information Security/Privacy Policies and Procedures such as (but not limited to): > Data Classification, Retention & Handling Policy > Incident Response Policy/Procedures > Business Continuity/Disaster Recovery Policy/Procedures > Mobile Device Policy > Account Management Policy > Access Control Policy > Personnel Security Policy > Privacy Policy Saviynt is an amazing place to work. We are a high-growth, Platform as a Service company focused on Identity Authority to power and protect the world at work. You will experience tremendous growth and learning opportunities through challenging yet rewarding work which directly impacts our customers, all within a welcoming and positive work environment. If you're resilient and enjoy working in a dynamic environment you belong with us! Saviynt is an equal opportunity employer and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. country: GB all locations: [Remote UK] commitment: Full-Time department: InfoSec location: Remote UK team: Information Security What you'll do: Lead a modern data privacy program across AI infrastructure, cloud and SaaS platforms Design, implement, and evolve a scalable global data privacy framework based on ISO 27701 and other international standards. Serve as the subject matter expert on current and emerging global and regional privacy regulations such as GDPR, CCPA/CPRA, LGPD, DPDP, PDPA, and APPI. Oversee and maintain certification and compliance with the EU-US Data PrivacyFramework (DPF). Conduct and oversee Data Protection Impact Assessments (DPIAs) for new and existing high-risk products, vendors, and internal processes. Collaborate with Engineering, Product and other cross-functional teams to ensure that privacy controls are appropriately incorporated into the Product or other business applications. Lead the privacy component of external audits (SOC2, ISO) and represent Saviynt’s privacy posture during customer-facing due diligence and security reviews. Partner with the Legal team to draft, review, and negotiate Data Processing Agreements (DPAs) and privacy related clauses in vendor and customer contracts. Evaluate the privacy practices of third-party processors to ensure they meet Saviynt’s data protection requirements. Participate in Incident Response efforts and Team and drive privacy related impact assessments, and other related response actions. Ability to translate complex regulations and legal mandates into clear, actionable guidance for product managers and engineers to consume. Establish and operate a Privacy Incident Reporting and Response process to address any Privacy incidents that might occur in various geographic regions. Oversee the end-to-end process for Data Subject Access Requests (DSARs) and the "Right to be Forgotten" across all jurisdictions. Build and deliver high-impact privacy awareness programs tailored to differentdepartments. What you'll bring: Bachelor’s or Master’s degree in Law, Information Security, Data Protection, or a related field. Extensive progressive experience in data privacy, data protection, or legal compliance or related areas. Multiple years in a senior leadership role managing global privacy programs preferably in a SaaS or high-growth tech environment. Proven track record of managing cross-border data transfer mechanisms and navigating conflicting regional privacy laws. Ability to translate complex regulations and legal mandates into clear, actionable guidance for product managers and engineers to consume. Experience presenting privacy roadmaps and security postures to enterprise- level customers and stakeholders.Exceptional problem-solving skills with the ability to assess risk appetite versus regulatory requirements.