Senior Security Software Engineer – onsite

Job Description

Onsite contract opportunity in Culver City, CA, San Jose, CA, or New York, NY for a  Senior Software Engineer (Privacy)  who collaborate with legal and compliance teams to maintain and improve privacy policies and procedures. Works closely with development and product teams to incorporate privacy best practices into the design and development of new products and features.

Location :  Onsite.  Culver City, CA. San Jose, CA. or New York, NY

Client Location :  PST or EST

Role Responsibilities :

• Privacy Detection : Develop robust detection methods to continuously assess and monitor for gaps in our privacy posture.
• Incident Response and Data Breach Management : Assist in privacy-related incident and inquiry response related efforts. Perform technical investigations on privacy incidents, identify root causes, and recommend mitigation and remediation actions to prevent future occurrences.
• Data Protection Compliance : Stay up-to-date with global privacy regulations, such as GDPR, CCPA, or other relevant data protection laws. Ensure our organization’s practices align with applicable privacy laws and standards. Advocate for “privacy by design” principles to embed privacy considerations throughout the product development lifecycle.
• Documentation and Reporting : Maintain detailed records of privacy assessments, testing, detections, and related activities. Generate regular reports for management and stakeholders, providing insights on privacy risks.

Qualifications :

Familiarity with core privacy concepts such as data minimization, purpose limitation, data sovereignty, transparency, and data retention.

Proven software development experience involving large scale data environments with an emphasis on building detection systems.

Experience using Go to build scalable services capable of handling large volumes of data. Experience using SQL and / or Python to develop large scale data pipelines.

Proven experience in privacy assessments, data protection, and compliance.

In-depth knowledge of global privacy regulations and standards, including GDPR, CCPA, etc.

Self-starter who thrives in ambiguity, able to find creative solutions to complex problems with minimal guidance or direction.

Preferred :

Familiarity with privacy-enhancing technologies and data anonymization techniques.

Strong offensive security & privacy testing skills with a focus on privacy concerns.

Familiarity with web and mobile security concepts, including OWASP Top 10.

Excellent understanding of data handling processes, data flows, and data lifecycle management.

Strong commitment to ethics and confidentiality in dealing with sensitive data.

Relevant certifications in privacy and data protection (., CIPP / E, CIPM, CIPT, OSCP) are a plus.

Job ID : 1013051