FreeHire

Grant Thornton (US)

Associate Director - Privacy Technologies

Show

Assistant Director – Privacy

Role Overview

The Assistant Director role will embed privacy principles into the design, development and deployment of Grant Thornton Advisors LLC technologies and initiatives. Activities include global privacy program management activities, identifying and mitigating privacy risks in built or bought technologies, directing the implementation of privacy controls into all technologies, as well as identifying, recommending and directing the development and implementation of technical safeguards, policy changes and relevant training.

This Privacy Team role sits in Global Risk and Compliance group in the Legal vertical and is led by the Chief Risk and Compliance Officer. The Associate Director reports to the Sr. Director of Privacy and partners closely with global business units, technology and data governance teams to identify and mitigate privacy and data risks generally and specifically associated with regulatory compliance, certifications held by the business (e.g. ISO) client obligations, and strategic initiatives (including AI, data migration, and advanced analytics). This role will also audit the implementation and performance of risk mitigation technologies for effectiveness.

Key Responsibilities

Privacy Program& Global Enablement, Assistant Director

  • Experienced Privacy program generalist in global (EMEA) Privacy operations.
  • Develop, implement, and maintain privacy policies, procedures and governance frameworks aligned to legal requirements.
  • Create or modify required policy-based controls and assist in providing training content for the Privacy team.
  • Identifying privacy risks in GT technologies and articulating and directing configuration of data platforms and tools to mitigate identified risks, support compliance with applicable privacy laws and other obligations. May define and execute standardised frameworks and controls.
  • Audit implementation and performance of privacy risk mitigation technologies for effectiveness.
  • Direct appropriate teams to enable controls that embed privacy-by-design controls (data minimisation, purpose controls, access limitations, audit and logging capabilities) into enterprise platforms (e.g., data lakes, data warehouses, analytics environments, AI/GenAI tools) and projects.
  • Interface with developers and architects in implementing data solutions that enable the business to be data driven while protecting the data assets.
  • Identify and minimise privacy risks involved when using artificial intelligence, machine learning and deep learning. Direct implementation of controls for safe deployment of AI.
  • Develop reporting dashboards and metrics for leadership.
  • Identify and implement efficiency improvements across workflows and systems.

Qualifications And Experience

  • 8–12+ years in privacy, data governance, data science or technology roles within a professional services or regulated environment.
  • Azure Foundry (and similar), RAG model, agent workflows.
  • ML/GENAI models and LLM.
  • Privacy enhancing technologies implementation (anonymization, differential privacy, IAM).

Technical & Functional Expertise

  • Strong understanding of:
    • Data ecosystems (data lakes, warehouses, analytics platforms)
    • Data discovery, classification, and lineage tools
    • Privacy engineering and control implementation
    • Information security frameworks
  • Familiarity with responsible AI controls and emerging technologies.
  • Experience or understanding of software applications design tools and languages.
  • Understanding of design for software applications running on multiple platforms.
  • Data literacy: finding and managing data, cleansing data, manipulating data.

Regulatory & Risk Knowledge

  • Deep understanding of the technical and policy controls needed to meet the requirements of federal, state and global privacy laws (e.g., HIPAA, CCPA/CPRA, GDPR).
  • Experience with ISO 27001, 27701, 42001, 27559 implementation and audit.
  • Awareness of emerging AI governance and regulatory expectations.

Leadership & Professional Skills

  • Ability to translate legal/regulatory requirements into practical, scalable technical solutions.
  • Strong stakeholder management across a matrixed, global organisation.
  • Experience influencing leadership and driving cross-functional initiatives.
  • Strong communication skills.
  • Excellent analytical and problem-solving skills.
  • Excellent communication skills (verbal and written)
  • Demonstrated teamwork and collaboration skills, in particular leading or contributing to global and multi-functional teams.

Preferred Qualifications

  • Certifications: CIPP/E, CIPM, CIPT or equivalent
  • Experience within a global professional services network (e.g., Big Four or similar)

  • Familiarity with enterprise tools and platforms commonly used in GT environments (e.g., data exchange platforms, analytics environments, compliance tools)

    #LI-KS1