Staff Privacy Program Manager

Summary 

The Privacy Program Manager is the architect of trust and the champion of user data integrity at Topstep. In a dynamic financial environment where sensitive personal and trading data is paramount, this role is critical to maintaining our status as the most trusted platform. You will be responsible for building, executing, and maturing a world-class privacy program from the ground up, ensuring we satisfy global regulatory obligations (e.g., GDPR, CCPA, etc.). By seamlessly integrating Privacy by Design principles into our products and operations, you will not only ensure compliance but actively enhance the security and confidence of our global community of traders. 

This role is foundational to scaling Topstep responsibly and defending our hard-earned reputation.

Key Responsibilities 

Privacy Program Establishment & Governance

• Program Strategy: Design, implement, and maintain the comprehensive enterprise-wide privacy program, including developing the core governance framework, policies, standards, and procedures.
• Data Classification System: Lead the implementation and operationalization of a clear data classification system (e.g., Public, Internal, Confidential, Restricted). Partner with engineering and business teams to ensure consistent classification, labeling, and handling of data throughout its lifecycle.
• Documentation & Mapping: Develop and maintain the Records of Processing Activities (RoPA) and conduct data flow mapping to visualize and document how personal data is collected, used, stored, and disposed of across the organization.

Privacy Operations & Incident Response

• Data Subject Rights (DSAR) Management: Own the end-to-end process for receiving, validating, tracking, and responding to Data Subject Access Requests (DSARs) and other privacy requests (e.g., requests for deletion or correction) in compliance with applicable laws.
• Privacy Incident Management: Act as a key responder in privacy incidents and data breaches. Assist the Security and Legal teams in investigation, containment, remediation, notification, and documentation processes according to regulatory timelines.

Strategic Integration & Due Diligence

• Privacy by Design (PbD): Serve as the primary privacy resource for Product Management and Engineering teams. Guide them in adopting privacy-first design and development concepts, ensuring privacy requirements are embedded into new products, services, and features before launch.
• Third-Party Risk Management: Collaborate with Procurement and Vendor Management to assist in third-party due diligence reviews. Assess vendor compliance with Topstep’s privacy standards and relevant regulations, ensuring that data processing agreements (DPAs) are in place and adhered to.
• Training & Awareness: Develop and deliver engaging, role-specific privacy training and awareness campaigns across the firm to foster a culture of privacy responsibility.

Required Qualifications and Key Competencies

• 8+ years of experience managing, implementing, or auditing privacy and data protection programs in a regulated environment, preferably financial services or technology.
• Strong working knowledge of major global privacy regulations (e.g., GDPR, CCPA/CPRA, etc.).
• Demonstrated experience operationalizing complex requirements into repeatable business and technology processes (e.g., managing DSAR workflows).
• Exceptional ability to translate complex legal and technical requirements into practical business guidance for non-experts.
• Excellent written and verbal communication skills, with the ability to effectively interact with all levels of management, including C-suite executives.

Company Culture & Perks

• Topstep is an engaging working environment which ranges from fully remote to hybrid. We foster a culture of collaboration with cameras on during meetings and a robust Slack environment for communication. 
• 10 Company paid Holidays and generous Family Leave. Paid time off is accrued monthly.
• Competitive 401(k) matching, health, dental, and vision insurance is offered for full time employees 
• Vacations are encouraged with a bonus for taking 5 consecutive days. Employee referrals are bonused. Topstep offers a food and groceries budget and contributes towards health and wellness.

New Hire Base Salary Range

• $180,000-$220,000
• Bonus: This position is eligible for a performance-based bonus as provided by the plan terms and governing documents.
• The compensation offered will take into account internal compensation structure and may vary depending on the candidate's geographic region, job-related knowledge, skills, and experience among other factors.

Equal Opportunity Employer

Topstep is an Equal Opportunity Employer. We are committed to fostering an inclusive environment where all employees and applicants are valued. All qualified candidates will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, age, disability, or veteran status, in compliance with applicable federal, state, and local laws.

Interested in the role? Apply today with your resume and cover letter!

At this time immigration sponsorship is not available for this position (including H-1B, STEM OPT training plans, etc.).