Sr. Data Privacy Manager

Overview

At Kia, we’re creating award-winning products and redefining value in the automotive industry. Our culture is fast-paced, collaborative, and innovative. We focus on learning and opportunities, so you can help Kia achieve big things and feel passionate and connected to your work every day.

$/yr - $/yr

• 1st Priority (20%):
  Operational Privacy Oversight — Manage day-to-day data privacy operations, including recordkeeping and compliance monitoring; ensure proper handling of data subject requests (e.g., access, deletion, modification).
• 2nd Priority (20%):
  Policy Implementation — Implement data protection strategies and compliance frameworks; monitor adherence to privacy policies across departments; establish internal controls to prevent leakage and misuse of personal information.
• 3rd Priority (20%):
  Training & Documentation — Develop and deliver privacy training for employees; maintain records of processing activities and ensure documentation accuracy.
• 4th Priority (20%):
  Audits & Assessments — Conduct internal privacy audits; support Data Protection Impact Assessments (DPIAs) for new projects; monitor IT projects for privacy compliance and review system architecture against the PII lifecycle.
• 5th Priority (10%):
  Vendor & Contract Review — Review vendor agreements to include data privacy clauses; oversee outsourcing and delegation of PII processing; monitor third-party compliance.
• 6th Priority (10%):
  Privacy Program Support — Collaborate with IT, Information Security, Legal, and HR to implement security measures; support regulatory inquiries and investigations; assist Customer Care in handling PII-related complaints and developing processes for handling them.

• Bachelor’s degree in law, computer science, information technology or security, business administration, or related field required; advanced degree preferred.
• Privacy certification (e.g., CIPP/E, CIPM) preferred.
• One or more cybersecurity certifications highly desired (e.g., CISSP, CISM, CRISC).
• Minimum of 8 years of experience in privacy, data protection, or compliance roles; proven track record in developing and implementing privacy strategies; deep knowledge of US/privacy laws (CCPA, CPRA, HIPAA) and international standards (GDPR, ISO 27701); familiarity with Canadian and Mexican privacy laws preferred.
• Strong ability to interpret and apply privacy regulations in a business context; excellent written and verbal communication; strong organizational and project management skills.

• Employment type:
  
  Full-time
• Seniority level:
  Mid-Senior level
• Industries:
  Motor Vehicle Manufacturing
• Job function:
  Engineering and Information Technology

KUS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex, pregnancy and childbirth or related medical conditions, gender identity or expression, age, disability, marital status, sexual orientation, veteran status, genetic information, or any other characteristic protected by applicable law. KUS complies with applicable law governing non-discrimination in employment in every location in which KUS has offices.

Disclaimer:
The above information indicates the general nature and level of work performed; it is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required.