The global privacy regulatory landscape is not static, and the product and technical landscape at Meta changes multiple times daily to continue to meet and meet the needs of our more than 3.5 billion daily users on our platform. The Compliance Assurance Program Manager (CAPM) works at the center of privacy regulation, legal, business, product, and engineering to put our users’ privacy at the center of everything we do. The Exams and Audit team is part of Meta’s Regulatory Compliance Program and establishes, diagnoses, improves, and manages privacy compliance for better user outcomes. The team is responsible for creating, maintaining, and improving our company-wide privacy processes to enhance the reliability and maturity of our privacy practices. We are looking for an individual contributor who brings operational scale and privacy and/or compliance expertise to serve as a trusted advisor and develop and further mature the posture of an comprehensive privacy program. As well as an individual contributor who tackles privacy complexities head-on, to help design and build an comprehensive privacy compliance program, while keeping our users and their privacy at the forefront of everything that we do. While this role is not technical, it requires a keen interest in and aptitude for understanding how our platform is constructed, and the ability to dive deep into a technical feature in order to educate the right parties. Similarly, the person in this role will also be intellectually curious and build familiarity and fluency with legal requirements in the areas of privacy, data protection, and security.
Compliance Assurance Program Manager Responsibilities
- Provide strategic guidance and second line of defense oversight to improve company-wide operational processes to establish, measure, and improve privacy practices
- Support Meta's commitment to protect users' privacy by enabling and advising privacy domains to navigate the complex landscape of global and data privacy regulations
- Become a trusted partner to product, business, legal, and engineering teams across the company to develop deep insights and drive improvements into the mechanics of how teams incorporate compliance and privacy-by-design into operations and product life cycles
- Provide a second line of defense guidance and oversight to ensure Meta’s compliance with global privacy regulations and obligations across all new and modified products, services, and practices. Consult with legal partners to ensure that products and practices comply with global privacy laws and regulations
- Serve as a subject-matter expert with a deep understanding of the end-to-end (E2E) privacy compliance processes, including timelines and stakeholder involvement/expectations
- Manage the successful delivery of the external regulatory audit, ensuring all requirements are met, documentation is complete, and findings are addressed in a timely manner
- Provide compliance advisories and reviews for new safeguards, issues, remediation plans, monitors, and safeguard changes, ensuring alignment with regulatory expectations and internal standards
- Provide independent oversight to proactively identify issues, ensure visibility, and help prioritize remediation efforts within assigned safeguard domains, acting as a key escalation point and advocate for risk mitigation
- Develop long-term objectives for how we will evolve our privacy program operating model with well-documented roadmaps, goals, and objectives while delivering on immediate priorities
- Provide guidance to product, business, and engineering teams on complying with the Privacy Program and its day-to-day objectives
- Anticipate bottlenecks, provide escalation management, and ensure user privacy is not compromised
Minimum Qualifications
- 7+ years of work experience in GRC, consulting, business operations, technical program management or other operational disciplines with specialization in data privacy and cyber security either in the Tech industry, Financial Services, or Healthcare
- Prior to working knowledge of GDPR, CCPA, and familiarity with similar privacy data protection legislation and security regulations
- Experience running project management or program management initiatives (e.g., organization-wide initiatives, large-scale integration management)
- Experience in communicating with technical and business stakeholders
- Experience in responding to or supporting external audits, examinations, or regulatory inquiries
- Communications experience with simplifying concepts and developing outputs
- Track record of collaborating with cross-functional teams to drive results
- Experience identifying and resolving operational or compliance challenges in cross-functional environments
Preferred Qualifications
- Demonstrated ability to integrate AI tools to optimize/redesign workflows and drive measurable impact (e.g., efficiency gains, quality improvements)
- Experience adhering to and implementing responsible, ethical AI practices (e.g., risk assessment, bias mitigation, quality and accuracy reviews)
- Demonstrated ongoing AI skill development (e.g., prompt/context engineering, agent orchestration) and staying current with emerging AI technologies
- Experience adhering to and implementing responsible, ethical AI practices (e.g., risk assessment, bias mitigation, quality and accuracy reviews)
- Demonstrated experience orienting towards solutions in the context of competing perspectives
- Demonstrated ongoing AI skill development (e.g., prompt/context engineering, agent orchestration) and staying current with emerging AI technologies
- Demonstrated ability to integrate AI tools to optimize/redesign workflows and drive measurable impact (e.g., efficiency gains, quality improvements)
- 10+ years of work experience in GRC, consulting, business operations, program management, or other operational disciplines with specialization in data privacy and cyber security, either in the Tech industry, Financial Services, or Healthcare
- Master's in business administration or a related field, or equivalent experience
About Meta
Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving beyond 2D screens toward immersive experiences like augmented and virtual reality to help build the next evolution in social technology. People who choose to build their careers by building with us at Meta help shape a future that will take us beyond what digital connection makes possible today—beyond the constraints of screens, the limits of distance, and even the rules of physics.
For those who live in or expect to work from California if hired for this position, please click here for additional information.
United States of America: $147,000/year to $210,000/year + bonus + equity + benefits
Individual compensation is determined by skills, qualifications, experience, and location. Compensation details listed in this posting reflect the base hourly rate, monthly rate, or annual salary only, and do not include bonus, equity or sales incentives, if applicable. In addition to base compensation, Meta offers benefits. Learn more about benefits at Meta.
Equal Employment Opportunity
Meta is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. You may view our Equal Employment Opportunity notice here.
Meta is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, fill out the Accommodations request form.