Under Armour, Inc. Manager, Global Privacy and Cyber Risk (Remote) in Boston, Massachusetts
Manager, Global Privacy and Cyber Risk (Remote)
Date: Apr 29, 2022
Location: Remote, US
Company: Under Armour
Under Armour has one mission: to make you better. We have a commitment to innovation that lies at the heart of everything we do, not just for our athletes but also for our teammates. As a global organization, our teams around the world push boundaries and think beyond what is expected. Together our teammates are unified by our values and are grounded in our vision to inspire you with performance solutions you never knew you needed but can’t imagine living without.
As part of Under Armour’s Privacy Office, the Global Privacy & Cyber Risk Manager is responsible for managing Under Armour’s Third-Party Privacy and Cybersecurity’s Risk Management program, which seeks to align vendor management processes with privacy and security assessments of third-party vendor risks. One of the main responsibilities will be to oversee third-party data transfers, due diligence, and associated third-party privacy risks. This position reports to the Head of Global Privacy and collaborates with Procurement, eCommerce, Retail, Human Resources, and Information Technology to deliver on our promise to Make All Athletes Better in a privacy-conscious way. Your success will require interpersonal savvy, the ability to execute and collaborate within a hybrid working environment, innovative thinking, project management skills, and the desire to be part of a high-growth, diverse environment. This role is ideal for a team player with a cooperative spirit, great communication skills, a sense of humor, and a will to succeed.
Essential Duties & Responsibilities
Serve as Privacy lead for the Third-Party Risk Management program
Review Security/Privacy Impact Assessments (S/PIAs), Transfer Impact Assessments (TIAs), and Data Protection Impact Assessments (DPIAs) for internal and external operations, and manage S/PIA, TIA & DPIA review assignments within the UA Privacy/Cybersecurity team
Ability to review, set up, and maintain automated controls to ensure the continuity of privacy compliance and security due diligence
Manage ongoing operational compliance reviews in coordination with the Head of Global Privacy
Manage Under Armour’s ongoing data mapping efforts, and coordination with cross-functional teams and related initiatives to ensure accuracy, including Article 30 obligations under the General Data Protection Regulation (GDPR)
Serve as the Privacy representative on the Architecture Review Board, providing privacy feedback and guidance on new technologies in the Under Armour environment
Provide Privacy guidance and support for global technology initiatives
Coordinate with Cybersecurity partners on the evaluation on new and enhanced technology solutions
Qualifications (Knowledge, Skills & Abilities)
Ability to evaluate cyber/privacy risks and communicate to cross-functional teams
Ability to leverage technology to coordinate with teams across multiple sites, functional areas, and time zones
Comfortable working in a global organization and successfully managing a large project portfolio
Familiarity with U.S. and global data privacy requirements
Familiarity of 3rd Party attestations such as SSAE-18 and certifications such as NIST 800/ISO 27001
Education And / Or Experience
Bachelor's degree or 10 years of related work experience
5+ years of related experience, of which at least 3+ years of experience analyzing cyber/privacy related risk
B2C Privacy experience
Familiarity with third-party privacy & security risk management platforms and tools including but not limited to: ServiceNow, Archer, OneTrust, BitSight, SecurityScorecard, Ariba
Familiarity with Agile framework
Location: This position is fully remote
Travel: 5-10% of the year, limited travel may be required for this role
Privacy certifications such as CIPP, CIPM, CIPT, ISEB, CDPSE and/or Cybersecurity certifications such as CISSP, CISM, or CISA a plus
- No relocation provided
At Under Armour, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law. Under Armour believes that diversity and inclusion among our teammates is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool.
Learn more about Under Armour’s COVID-19 response and Teammate vaccination policies here .
Under Armour, Inc.
- Under Armour, Inc. Jobs