Massachusetts Green Jobs

MassHire JobQuest Logo

Job Information

Under Armour, Inc. Manager, Global Privacy and Cyber Risk (Remote) in Boston, Massachusetts

Manager, Global Privacy and Cyber Risk (Remote)

Date: Apr 29, 2022

Location: Remote, US

Company: Under Armour

Under Armour has one mission: to make you better. We have a commitment to innovation that lies at the heart of everything we do, not just for our athletes but also for our teammates. As a global organization, our teams around the world push boundaries and think beyond what is expected. Together our teammates are unified by our values and are grounded in our vision to inspire you with performance solutions you never knew you needed but can’t imagine living without.

Position Summary

As part of Under Armour’s Privacy Office, the Global Privacy & Cyber Risk Manager is responsible for managing Under Armour’s Third-Party Privacy and Cybersecurity’s Risk Management program, which seeks to align vendor management processes with privacy and security assessments of third-party vendor risks. One of the main responsibilities will be to oversee third-party data transfers, due diligence, and associated third-party privacy risks. This position reports to the Head of Global Privacy and collaborates with Procurement, eCommerce, Retail, Human Resources, and Information Technology to deliver on our promise to Make All Athletes Better in a privacy-conscious way. Your success will require interpersonal savvy, the ability to execute and collaborate within a hybrid working environment, innovative thinking, project management skills, and the desire to be part of a high-growth, diverse environment. This role is ideal for a team player with a cooperative spirit, great communication skills, a sense of humor, and a will to succeed.

Essential Duties & Responsibilities

  • Serve as Privacy lead for the Third-Party Risk Management program

  • Review Security/Privacy Impact Assessments (S/PIAs), Transfer Impact Assessments (TIAs), and Data Protection Impact Assessments (DPIAs) for internal and external operations, and manage S/PIA, TIA & DPIA review assignments within the UA Privacy/Cybersecurity team

  • Ability to review, set up, and maintain automated controls to ensure the continuity of privacy compliance and security due diligence

  • Manage ongoing operational compliance reviews in coordination with the Head of Global Privacy

  • Manage Under Armour’s ongoing data mapping efforts, and coordination with cross-functional teams and related initiatives to ensure accuracy, including Article 30 obligations under the General Data Protection Regulation (GDPR)

  • Serve as the Privacy representative on the Architecture Review Board, providing privacy feedback and guidance on new technologies in the Under Armour environment

  • Provide Privacy guidance and support for global technology initiatives

  • Coordinate with Cybersecurity partners on the evaluation on new and enhanced technology solutions

Qualifications (Knowledge, Skills & Abilities)

  • Ability to evaluate cyber/privacy risks and communicate to cross-functional teams

  • Ability to leverage technology to coordinate with teams across multiple sites, functional areas, and time zones

  • Comfortable working in a global organization and successfully managing a large project portfolio

  • Familiarity with U.S. and global data privacy requirements

  • Familiarity of 3rd Party attestations such as SSAE-18 and certifications such as NIST 800/ISO 27001

Education And / Or Experience

  • Bachelor's degree or 10 years of related work experience

  • 5+ years of related experience, of which at least 3+ years of experience analyzing cyber/privacy related risk

  • B2C Privacy experience

  • Familiarity with third-party privacy & security risk management platforms and tools including but not limited to: ServiceNow, Archer, OneTrust, BitSight, SecurityScorecard, Ariba

  • Familiarity with Agile framework

Other Requirements

  • Location: This position is fully remote

  • Travel: 5-10% of the year, limited travel may be required for this role

  • Privacy certifications such as CIPP, CIPM, CIPT, ISEB, CDPSE and/or Cybersecurity certifications such as CISSP, CISM, or CISA a plus

Relocation

  • No relocation provided

#LI-Remote

At Under Armour, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. Under Armour believes that diversity and inclusion among our teammates is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool.

Learn more about Under Armour’s COVID-19 response and Teammate vaccination policies here .

DirectEmployers