Job description
SpyCloud is on a mission to make the internet a safer place by disrupting the criminal underground. SpyCloud’s solutions thwart cyberattacks and protect more than 4 billion accounts worldwide. Cybersecurity is an exciting, evolving space, and being at the forefront of the fight to disrupt cybercrime makes SpyCloud a special place to work. If you’re driven to align your career with a fantastic mission, look no further!
Led by our General Counsel, SpyCloud’s Legal & Compliance team partners with the business to move fast and stay smart—turning rules into action, risks into strategy, and complexity into clarity.
We’re on the hunt for a detail-oriented Privacy Operations Manager to help us take our privacy and risk governance programs to the next level. In this role, you’ll be instrumental in keeping our privacy & compliance programs sharp, streamlined, and audit-ready—ensuring key components are clearly defined, effectively implemented, and aligned with the latest standards and frameworks.
What You’ll Do:
- Manage the daily operations of SpyCloud’s global privacy program—keeping records of processing activities up to date, running privacy and data transfer impact assessments, responding to data subject requests, and documenting and tracking our data inventory.
- Partner with the GRC team to implement a privacy risk-based monitoring and testing program—identifying gaps, recommending practical solutions, and following through on remediation efforts.
- Help shape and maintain internal privacy procedures and support company-wide privacy awareness through clear guidance, resources, and collaboration.
- Track global privacy developments by helping the Legal team maintain a legislative and enforcement action tracker—ensuring we stay ahead of emerging laws, trends, and regulator expectations.
- Work closely with the Legal & GRC teams and product stakeholders to embed privacy by design into our development process—so privacy is built in, not bolted on.
- Build and maintain privacy metrics and KPIs that support ongoing program assessment and drive informed reporting to leadership and our board.
- Jump into cross-functional initiatives with the Legal and GRC teams—bringing a privacy-forward mindset to team projects, working groups, and evolving priorities.
Requirements:
- At least 3 years of experience in data privacy, data protection, or a related compliance role, ideally within the tech or cybersecurity industry
- Strong working knowledge of global privacy laws and regulations (e.g., GDPR, CCPA/CPRA, etc.)
- Experience conducting or managing privacy impact assessments (PIAs) and data transfer impact assessments (TIAs)
- Familiarity with data subject rights handling, incident tracking, and privacy documentation best practices
- Excellent organizational skills and attention to detail, with experience managing privacy operations or workflows
- Strong communication skills with the ability to translate privacy requirements into practical guidance for cross-functional teams
- Ability to manage multiple tasks and priorities in a fast-paced, high-growth environment
- Comfortable working independently as well as collaboratively across legal, product, engineering, and compliance teams
- Genuine intellectual curiosity and a drive to make an impact—always looking for smarter ways to solve problems, level up processes, and contribute to a mission-driven team
Nice to Have
- CIPP/E, CIPP/US, CIPM, or other relevant IAPP certifications
- Experience working with privacy and compliance management tools (e.g., Vanta, Osano, or similar)
- Knowledge of privacy by design practices and experience working with product teams or engineers to integrate privacy into the development lifecycle
- Experience building or contributing to privacy training, documentation, or awareness programs
- Familiarity with AI and cybersecurity frameworks (e.g., NIST, ISO 27001) and how they intersect with privacy, data protection, and ethical use of data
- Experience with defining and measuring privacy KPIs and metrics
SpyCloud is not sponsoring visas at this time.
U.S.-Based Benefits + Perks (for Full Time Employees):
At SpyCloud, we are committed to working alongside individuals who are equally passionate about preventing cybercrime, regardless of their department or role. Guided by our core values in all business decisions, we prioritize unity in our mission and ensure all SpyCloud employees have the support and benefits they need to stay focused on our goals. In addition to our engaging workspace in South Austin, flexible and remote-friendly work options, and competitive salary package, we offer our employees a comprehensive benefits package that includes:
- 401(k) with Employer Contribution
- Health, Vision, and Dental Insurance
- Health Savings Account (HSA) available with Employer Contribution
- Employer Paid Life, Short-term, and Long-term Disability Insurance
- Generous PTO Plan and 16 paid holidays per year
U.K.-Based Benefits + Perks (for Full Time Employees):
- Retirement Savings Plan with Employer Contribution
- Employer Provided Private Health Insurance and Healthcare Cashplan
- Employer Paid Life Insurance and Income Replacement
- Generous Holiday Plan and 14 paid holidays per year
About SpyCloud:
SpyCloud is on a mission to disrupt the cycle of cybercrime. As the leader in Cybercrime Analytics, our solutions thwart cyberattacks that originate from the use of stolen data, including account takeover, ransomware, and online fraud. More than 550 customers and partners trust SpyCloud to protect users’ identities, prevent targeted attacks, and unmask adversaries attempting to harm businesses and their customers.
To learn more and see insights on your company’s exposed data, visit SpyCloud.
Our Mission:
Our mission is to make the internet a safer place by disrupting the criminal underground. Together with our customers and partners, we aim to end criminals’ ability to profit from stolen information.
Who We Are:
SpyCloud is a place for innovative, collaborative, and problem-solvers to thrive. Individually, we’re amazing, but together, we’re unstoppable. We celebrate diversity and various perspectives and aim to create an inclusive and supportive environment for all. We are proud to be an Equal Employment Opportunity and Affirmative Action employer of choice. All aspects of employment decisions will be based on merit, performance, and business needs. We do not discriminate on the basis of any status protected under federal, state, or local law. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Women, minorities, individuals with disabilities, and protected veterans are encouraged to apply. SpyCloud complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.
SpyCloud expressly prohibits any form of workplace harassment. Improper interference with the ability of SpyCloud’s employees to perform their job duties may result in discipline up to and including discharge. SpyCloud shares the right to work and participates in the E-Verify program in all locations.
If you need assistance or accommodation due to a disability, you may contact us.
Our Culture:
Our culture is something really special. We’re all driven to disrupt the cybercriminal economy as we keep customer accounts safe from compromise. We support a truly worthy and serious mission, but we have fun doing it together. If you are driven, inventive, and collaborative, you’ll fit right in.
SpyCloud’s Recruitment Policy:
We will never ask an applicant for sensitive or personal financial information during the recruitment process. We advise all applicants seeking employment with SpyCloud to review available information on recruitment fraud. Anyone who suspects that they have been contacted by someone falsely representing SpyCloud should email [email protected].
Compensation Transparency Policy:
At SpyCloud, we believe in transparency and fairness in compensation. We strive to ensure that all employees are fairly compensated for their contributions, and we openly discuss our compensation philosophy and structure. We are committed to providing competitive salaries and benefits packages to attract and retain top talent, and we encourage open dialogue and feedback regarding compensation matters.
Learn more and apply: SpyCloud Careers
