Bring all your photos, docs, and videos anywhere, and share them easily.
Dropbox supports hundreds of millions of creators and innovators around the world. Our mission is to simplify the way people work together. Dropbox Business is trusted by over 200,000 companies to safeguard their most important information. As we continue to build the best place to create, share, and work with others, there’s a perfect spot for you to grow with us.
Our Legal, Policy, Trust & Security teams help keep users and their stuff safe, protect Dropbox, counsel Dropboxers on challenging problems, and are always synced with the Dropbox teams they work with. We deal with novel issues every day while standing up for users and helping the company and product grow.
Protecting Dropbox and our users is critical to being worthy of trust. We’re looking for a Senior Analyst, Privacy to join the Risk & Compliance team within Legal. In this role, you will work closely with counterparts in Data Security, Product & Privacy Counsel, and Engineering teams to help us manage and maintain the privacy of our users’ data. You will own the development and management of our privacy program’s internal controls, including those around privacy impact assessments (PIAs), data mapping, data retention and disposal, and much more. You will also contribute to our Privacy Shield self-certification process. Finally, you will be involved in our team’s risk assessments and compliance audits to help demonstrate to our users how Dropbox is worthy of trust.
The Senior Analyst, Privacy role operates and executes key components of the Dropbox Privacy Program.
Core responsibilities include:
Engaging within the legal department to understand the privacy risks of products and business processes
Collaborating with cross-functional teams to operate, validate, and remediate privacy controls, such as data flow mappings and Privacy Impact Assessments (PIAs)
Tracking internal controls and promoting privacy best practices for customer, employee, partner, and vendor personal information
Participating in Privacy Shield certification processes and self-assessments
Assisting in research for further privacy certifications as needed — BCR, APEC CBPR, EU “certifications & seals”, etc.
Responding to regulatory audits, investigations, or inquiries
4+ years of overall experience in a privacy, security, audit, or IT experience
2+ years of experience directly in a privacy or data protection-related role
Thorough and comprehensive working knowledge of global privacy regulations, standards, and frameworks
Proven ability to interpret regulatory requirements into actionable internal controls
Possesses a high degree of comfort interacting and consulting with both lawyers and engineers
Understanding and willingness to learn about diverse business functions
Passion for technology and desire to tackle complex problems with creative solutions
Great interpersonal skills and ability to work well in fast-paced team environment
Process-focused with a consistent track record of creating processes that scale
CIPP, CISA, CISSP, CCSK, or other professional certifications/associations a plus
Benefits and Perks
100% company paid individual medical, dental, & vision insurance coverage
401k + company match
Market competitive total compensation package
Free Dropbox space for your friends and family
Generous vacation policy
10 company paid holidays
Volunteer time off
Company sponsored tech talks (technology and other relevant professional topics)
Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).