Optional, Jira, Confluence
About the project, We are looking for a well-organized Information Privacy Manager to manage our privacy strategy, policies, and compliance with privacy regulations. As a fully remote SaaS company, we store data outside and use online services for daily work., , If you are looking for a remote job that offers the excitement of working for a start-up, a high level of autonomy, respect for your personal life, and a supportive environment, then HeroCoders might be the company for you., , Note:, The conversation will be conducted in Polish and English., , You will work with a team in Europe and North America time zones. We work synchronously, so a minimum 4h overlap with UTC +1 is necessary regardless of where you live.
Your responsibilities, 1.Develop and Implement Privacy Strategies and Programs:, •Develop, implement, and maintain the organization’s privacy program, policies, and procedures., •Lead the development of a comprehensive privacy strategy aligned with the company’s objectives., •Collaborate with Data Privacy Officer (DPO), technical teams, and external consultants (e.g., Perfect Info) to ensure alignment and compliance., 2.Policy Development and Compliance:, •Ensure the organization complies with privacy regulations, including GDPR and European Standard Contractual Clauses., •Conduct regular assessments to identify and mitigate privacy risks., •Maintain, own, and supervise PII (Personal Identifiable Information) in both internal and external services., 3.Documentation and Training:, •Document all internal processes, keep them up to date, and enforce compliance., •Develop and deliver privacy training and awareness programs., •Teach, assist, and mentor other employees regarding privacy practices., 4.Privacy Assessments and Incident Management:, •Support DPO in conducting privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for ongoing and new projects., •Manage current and future PIAs and DPIAs., •Develop and maintain an incident response plan for privacy incidents and data breaches., •Lead incident response efforts, including investigation, containment, notification, and reporting as required by law., 5.Data Management and Security:, •Stay current with security standards and good practices., •Implement privacy by design principles and ensure privacy considerations are integrated into projects and processes., •Control the creation of PII storages or systems accessing them., •Establish and maintain processes for data mapping and classification to identify and protect sensitive data., 6.Third-Party and Vendor Management:, •Oversee the assessment of third-party vendors for privacy compliance., •Ensure that workflows and documentation standards are developed effectively and maintained according to the highest standards., 7.Communication and Reporting:, •Provide updates to the company to keep everyone informed about privacy-related developments., •Consult with DPO and respond to requests for access, correction, or deletion of personal data., •Build and maintain a Company Trust Center to centralize privacy information., 8.Strategic and Administrative Responsibilities:, •Free up time for team members currently handling privacy and legal tasks by taking over these responsibilities., •Work closely with service owners, consult, and coach them, 9.Other skills needed:, •Openness and readiness to build a team,, •Excellent communication skills, •Independence and openness to finding solutions, •High work organization skills
Bachelor’s degree in Information Security, Privacy, Legal, or a related field., 5+ years of experience in privacy management and regulatory compliance., Strong understanding of data protection principles, risk assessment, and mitigation., Knowledge of Polish personal data protection acts., Proven ability to lead and influence cross-functional teams.
Optional, Experience with maintaining SOC2 within the Company., Certifications such as ISO27001 (e.g. Internal Auditor or Lead Implementer Certification), CISSP, CISM, CISA, Comptia Security+, etc., Knowledge of Atlassian software e.g. Jira and Confluence., Knowledge of Atlassian Privacy Policy and privacy requirements and expectations Atlassian sets for Partners., Experience in working in SaaS Company.
This is how we work, in house, you have influence on the choice of tools and technologies, you have influence on the technological solutions applied, you have influence on the product
What we offer, Be part of a small, growing company and participate in business decisions., Long-term B2B contract., Salary: 25k-32k net PLN + VAT monthly., 30 days of paid, annual leave., Completely remote position., Annual profit-sharing program., One-week-long hackathon event each quarter., 20% time on side projects and activities., Annual Retreat to spend quality time together.
Benefits, remote work opportunities, flexible working time
Recruitment stages, Recruitment Interview, Final Meeting
What you can expect from us:, Be part of the solution – We are looking for someone who has knowledge and will develop, implement, and maintain the organization’s privacy program, policies, and procedures as a leader in this area. Thanks to this, the company will be able to develop other areas of activity., Team over ego – You will be working with highly motivated and opinionated individuals. Everyone on our team is encouraged to speak their mind, be bold, challenge others, and be willing to be challenged by others. Then use the best arguments, real data, and experience to shape the best decisions together., Work remotely – We didn’t need a pandemic to teach us what remote work is. We’ve been a fully remote company since day one. That being said, you will work with a team in Europe, Canada, and central Africa. We work synchronously, so regardless of where you live, a minimum 4h overlap with UTC +1 is necessary., No crazy hours – We believe working smarter is better than working harder. We’re in this for the long haul and don’t want our team members to burn out. There may be rare occasions when things get crazy and extra hours are needed, but when that happens, you can take time off to compensate., Retreat – It’s great to have a fully remote team, but we also believe it’s great to meet and have fun together. We organize at least one annual retreat to spend quality time together, eat great food, have a drink, and talk about life.
HEROCODERS SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, At HeroCoders, we help people manage their work by creating great apps for everyday tasks. As a Platinum Atlassian Partner, we make SaaS tools that are used by over 50,000 companies worldwide. We have a million active users and ~50% annual growth. While we are proud of those accomplishments, much remains to be done, not only in product development.
Jira Confluence CompTIA Security+ Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP)