Privacy and AI Governance Resources

Summary

The Chief Privacy Officer and Director of Open Government maintains responsibility for the overall development and maintenance of privacy policies, procedures, and guidance essential to the effective and efficient implementation of these activities. Serves as the key advisor on issues related to compliance with the Privacy Act of 1974 and Federal Information Security Management Act (FISMA) provisions on privacy.

Duties

The Chief Privacy Officer and Director of Open Government (OPOG) develops and implements DOC's Open Government efforts through leading and participating in interagency initiatives, in-person and online public engagements and internal programs that include training, collaboration, and modification of existing internal processes. The incumbent ensures that Departmental programs comply with the President's principles of transparent and open government, aligning programs and initiatives to the mission and fostering continued program improvements. The Privacy Officer and Director of Open Government responsibilities include: Assures that personal information contained in Privacy Act systems of records is handled in full compliance with fair information practices as defined in the Privacy Act of 1974. Responsible for policy development, administrative regulations, and implementation of programmatic matters related to the Privacy Act and FOIA for the department. Communicates the privacy vision, principles, and policies internally and externally. Evaluates the processing, identifies deficiencies, and takes necessary steps to rectify or eliminate issues relevant to the privacy related policies, legislation, and regulations Advocates strategies related to data collection, the use of privacy enhancing technologies, and the processing and dissemination of information, and ensures program privacy policies and principles are reflected in all operations. Manages and oversees the department's FOIA activities and implements the department's FOIA policy concerning the development of programs required by the FOIA for public access to departmental information. Communicates FOIA policy to the Department bureaus and assists bureaus in applying FOIA policy to specific situations. Develops and implements the process for receiving, reviewing, commenting, and approving Privacy Impact Assessments in connection with E-Government Act requirements and the Homeland Security Act. Ensures privacy impact assessments are conducted according to proposed rules of the Department on the privacy of information in an identifiable form, including the type of personally identifiable information collected and the number of people affected.

Job Requirements

Must be a U.S. citizen or national. May be subject to pre-employment and random drug tests. Initial Senior Executive Service (SES) career appointee is subject to a one-year probationary period. Complete a Declaration for Federal Employment to determine your suitability for federal employment at the time requested by the agency. If you are a male applicant born after December 31, 1959, certify that you have registered with the Selective Service System or are exempt from having to do so. File a Confidential Financial Disclosure Report OGE-278e within 30 days of appointment and annually from then on. You may be required to obtain and maintain an interim and/or final security clearance prior to entrance on duty. Failure to obtain and maintain the required level of clearance may result in the withdrawal of a job offer or removal. There are three key documents that contain important information about your rights and obligations. Please read and retain these documents: Noncriminal Justice Applicant's Privacy Rights, for those who undergo an FBI fingerprint-based criminal history record check for personnel vetting, which includes Rap Back, FD-258 Privacy Act Statement - FBI (this is the same statement used when your fingerprints are submitted as part of your background investigation), and SEAD-3-Reporting-U.pdf (dni.gov), (applicable to those who hold a sensitive position or have eligibility for access to classified information)

Qualifications

Candidates should be committed to improving the efficiency of the federal government, passionate about the ideals of our American republic, and committed to upholding the rule of law and the United States Constitution. Candidates will not be hired based on their race, sex, color, religion, or national origin. To meet the minimum qualification requirements for this position, you must show that you possess the Executive Core Qualifications (ECQ) and Professional Technical Qualifications (PTQ) related to this position within your resume-NOT TO EXCEED 2 PAGES. Resumes over the 2-page limit will not be reviewed and will be disqualified. Your resume should be 2 pages or fewer and must not include images or graphics. Your resumes should include examples of experience, education, and accomplishments applicable to the qualification(s). If your resume does not reflect demonstrated evidence of these qualifications, you may not receive consideration for the position. There is NO requirement to prepare a narrative statement specifically addressing the Executive Core Qualifications (ECQs) or the Professional Technical Qualifications (PTQs). PROFESSIONAL/TECHNICAL QUALIFICATIONS (PTQs): Your resume should demonstrate accomplishments that would satisfy the technical qualifications. Demonstrated executive-level expertise in federal privacy and confidentiality laws, policies, regulations, and precedents sufficient to serve as the departmental authority on the Privacy Act and other privacy-related matters. This includes the ability to provide executive-level advisor services and to plan, manage, and oversee the implementation of Privacy Act standards and safeguards governing data collection, dissemination, and protection with Department IT systems. Demonstrated ability to lead and institutionalize a comprehensive privacy and information management program across a complex organization. This includes the ability to convey complex and detailed information to guide the department in handling unique privacy and information management issues and the ability to manage the implementation of policies and procedures among a diverse range of stakeholders. EXECUTIVE CORE QUALIFICATIONS (ECQs): In addition to the Technical Qualification Requirements listed above, all new entrants into the Senior Executive Service (SES) under a career appointment will be assessed for executive competency against the following five mandatory ECQs. If your 2-page resume does not reflect demonstrated evidence of the ECQs and TQs, you may not receive further consideration for the position. ECQ 1: Commitment to the Rule of Law and the Principles of the American Founding - This core qualification requires a demonstrated knowledge of the American system of government, commitment to uphold the Constitution and the rule of law, and commitment to serve the American people. ECQ 2: Driving Efficiency - This core qualification involves the demonstrated ability to strategically and efficiently manage resources, budget effectively, cut wasteful spending, and pursue efficiency through process and technological upgrades. ECQ 3: Merit and Competence - This core qualification involves the demonstrated knowledge, ability and technical competence to effectively and reliably produce work that is of exceptional quality. ECQ 4: Leading People - This core qualification involves the demonstrated ability to lead and inspire a group toward meeting the organization's vision, mission, and goals, and to drive a high-performance, high-accountability culture. This includes, when necessary, the ability to lead people through change and to hold individuals accountable. ECQ 5: Achieving Results - This core qualification involves the demonstrated ability to achieve both individual and organizational results and to align results to stated goals from superiors. Note: If you are a member of the SES or have been certified through successful participation in an OPM approved SES Candidate Development Program (SESCDP), or have SES reinstatement eligibility, you do not need to respond to the ECQs. Instead, you should attach proof [e.g., SF-50, Certification by OPM's SES Qualifications Review Board (QRB)] of your eligibility for noncompetitive appointment to the SES.

Education

This position does not have a positive education requirement.

RESPONSIBILITIES

• Respond to inquiries and requests from business and engineering teams as part of our privacy-by-design processes
• Understand the business use cases, identify applicable data protection law(s) and corresponding obligations, and conduct privacy risk assessment to determine risk treatment plans for our services and products
• Independently manage privacy-related projects or workstreams (for example: specific PIAs, data mapping exercises, or privacy notice updates), ensuring that outputs align with business objectives and operational efficiency
• Maintain clear, transparent documentation to keep stakeholders aligned on status, decisions, and responsibilities
• Develop, operate and improve different modules of our privacy program, including internal privacy policies, procedures and processes such as data mapping, PIA (Privacy Impact Assessment), and data breach management
• Draft, amend, and improve privacy notices
• Review privacy related contracts such as data processing agreements (DPAs) and standard contractual clauses (SCCs)
• Align with other Toyota group companies to implement group-wide privacy controls

MINIMUM QUALIFICATIONS

• Fluency in English (both spoken and written)
• At least 2 years of work experience in the privacy domain, or other relevant experience (e.g. compliance, data governance, information security)
• Understanding of laws, regulations, policies and industry standards relevant to privacy
• Communication skills allowing you to explain privacy topics in an easy manner
• Interpersonal soft skills to work with diverse stakeholders
• Ability to independently conduct most privacy-by-design reviews for products and services, seeking guidance from your supervisor or other team members for more complex or novel cases

NICE TO HAVES

• Proficiency in Japanese
• Privacy certifications such as CIPP, CIPM, and/or CDPSE
• Work experience in an international, diverse and dynamic environment
• Understanding of technology, such as information security, cloud computing, machine learning, etc
• Experience dealing with regulatory authorities

Legal, Privacy & Risk Intern – Help Protect, Analyze & Strengthen MEMIC

This internship is perfect for someone who loves digging into details, analyzing information, and learning how legal, privacy, and risk functions support a modern insurance company. You’ll work closely with our Director, Legal, Privacy & Risk and gain hands‑on experience in contract review, data privacy compliance, risk assessment, and enterprise governance.

If you’re analytical, eager to learn, and excited to explore the intersection of law, business, and risk — this is your opportunity.

What You’ll Do

You’ll support a wide range of legal and risk‑related projects, including:

• Reviewing contracts to ensure alignment with data privacy laws and regulations
• Assisting legal matters such as incident response, breach response planning, and privacy‑related inquiries
• Legal research
• Attending meetings
• Assisting with the Record Retention initiative
• Assisting with regulatory and compliance documentation
• Helping ensure MEMIC remains compliant with evolving privacy laws and industry standards
• Supporting vendor management matters
• Assist with other legal and regulatory matters as the business requires

This internship offers meaningful exposure to legal operations, corporate governance, and enterprise risk — a rare combination for students interested in law, or business.

What You Bring

• Currently pursuing an associate degree or higher, 1L or 2L preferred
• Strong attention to detail and analytical thinking
• Interest in legal, privacy, or risk‑related work
• Ability to work independently and communicate clearly

Why You’ll Love This Internship

• You’ll gain meaningful, hands‑on experience in legal, privacy, and risk work while building real‑world skills that strengthen your résumé and help you explore future career paths. It’s a supportive environment where you can learn, grow, and make an impact.

___________________________________________________________________________________________________________________________________________________________________________________________________________

MEMIC is committed to a policy of nondiscrimination and equal opportunity for all employees and qualified applicants without regard to race, color, religious creed, national origin, ancestry, age, disability, genetics, gender identity, veteran's status, sexual orientation, or any other characteristic protected by law. MEMIC is an equal opportunity employer encouraging diversity in the workplace.

#IND2022

MEMIC's Job Applicant Privacy Notice

Privacy Counsel

The Privacy Counsel will play an essential role in supporting and advancing our global privacy and AI governance program. Based in Paris and working closely with our Senior Privacy Counsel, you will advise on complex data protection and AI-related matters across our SaaS business.

You will partner closely with product, commercial legal, marketing, HR and other teams to provide pragmatic, risk-based guidance that enables innovation while ensuring compliance with the GDPR and other global data protection laws.

We are looking for a collaborative and commercially minded privacy lawyer who is comfortable navigating regulatory complexity and translating legal requirements into clear, actionable solutions. This role offers meaningful exposure to cutting-edge technologies, including AI and machine learning, in a fast-evolving international environment.

Datadog operates as a hybrid workplace, and this role is based in our Paris office.

What You’ll Do:

• Negotiate and review complex data processing agreements (DPAs) with enterprise customers and vendors, including handling sophisticated redlines.
• Provide practical, actionable privacy guidance to cross-functional stakeholders, including product, engineering, marketing, and business teams to ensure compliance with the GDPR and other global data protection laws.
• Advise on AI-related legal and regulatory matters, including product analysis under the EU AI Act, and contribute to the development of Datadog’s AI governance framework and privacy-by-design reviews for new products and features.
• Review, draft, and maintain privacy-related contracts, templates, policies, and processes to support business operations and meet regulatory requirements.
• Support the review and management of data subject access requests (DSARs), ensuring timely and compliant responses.
• Monitor emerging data protection, cybersecurity, and AI regulations, and conduct gap analyses to ensure Datadog's practices remain aligned with applicable laws.

Who You Are:

• Qualified lawyer with 3 to 5 years of relevant experience in data protection, gained at a top-tier law firm or in-house at a technology company.
• Deep expertise in GDPR including cross-border data transfer mechanisms, and DPA negotiation, with demonstrated experience handling complex customer redlines autonomously.
• Solid understanding of AI-related regulations, including the EU AI Act and comfort advising product teams on privacy principles.
• Commercially minded and pragmatic, able to translate complex legal requirements into clear, actionable guidance that enables the business to move forward.
• Strong organizational skills and sound judgment, with the ability to manage competing priorities, work with appropriate autonomy, and escalate effectively when needed.
• Excellent communicator, comfortable engaging with both legal and non-legal stakeholders across functions and geographies.
• Fluent in English (mandatory) and French.
• CIPP/E and/or AIGP certification is a strong asset.

Datadog values people from all walks of life. We understand not everyone will meet all the above qualifications on day one. That's okay. If you’re passionate about technology and want to grow your skills, we encourage you to apply.

Benefits and Growth:

• Generous and competitive benefits package
• New hire stock equity (RSUs) and employee stock purchase plan
• Continuous career development and pathing opportunities
• Product training to develop an in-depth understanding of our product and space
• Best in breed onboarding
• Internal mentor and buddy program cross-departmentally
• Friendly and inclusive workplace culture

Benefits and Growth listed above may vary based on the country of your employment and the nature of your employment with Datadog.

Let's start with the role

As a Senior AI Data Governance Analyst, you will be a key member of the Data/AI Governance team, supporting the design and implementation of a robust AI governance framework across the organization. You will work closely with both business and technical stakeholders to ensure the quality, consistency, availability, and compliance of AI models/apps, critical in the highly regulated betting and gaming industry.

• Contribute to the development and enforcement of AI governance policies, standards, and procedures;
• Support the implementation of AI metadata management, data lineage, and AI/Data quality frameworks;
• Profile datasets to assess its accuracy, completeness, consistency, integrity, etc in order to be usable for AI implementations;
• Identify and document AI quality issues and propose corrective actions;
• Monitor and analyze AI quality KPIs and support AI remediation initiatives;
• Update and maintain AI quality dashboards or reports to monitor KPIs and communicate trends to stakeholders;
• Participate in cross-functional meetings to align on AI governance priorities;
• Maintain and enhance AI business glossaries, AI data dictionaries, and AI catalogs;
• Collaborate with AI/Data owners, AI/Data stewards, and AI custodians to promote AI governance best practices;
• Assist with compliance-related AI & Data initiatives (e.g., EU AI Act, GDPR, AML, Responsible Gaming reporting);
• Evaluate and support AI/Data governance tools (e.g., Atlan, Collibra, Informatica, Microsoft Purview);
• Contribute to the evolution of the AI Governance framework and best practices.

What you’ll bring:

• Bachelor’s or Master’s degree in a quantitative field such as Data Science, Computer Science, Statistics, Mathematics, Economics, Engineering, or Operations Research. Specialization or demonstrated experience in Artificial Intelligence will be considered a strong plus;
• 4+ years of experience in a data quality, data management, reporting, statistical or quantitative role. Experience in data governance roles will be considered a plus;
• Strong working knowledge of AI frameworks and dimensions;
• Understanding of core AI & Data governance concepts and regulatory requirements;
• Ability to clearly document technical and business concepts;
• Relevant experience with BI/analytics tools (e.g., Power BI, Tableau) and AI/Data Governance or quality tools (e.g. Atlan, Informatica, etc) will be considered a plus;
• Strong SQL skills, highly advanced with MS-Excel (pivot tables, v-lookups) and G Suite experience;
• Strong understanding of AI models/apps, data architecture, especially within cloud data platforms;
• Strong communication skills and the ability to work with cross-functional teams. Experience managing stakeholders at various levels;
• Strong analytical mindset, with attention to detail and a commitment to AI & Data quality;
• Ability to prioritize tasks effectively, meet deadlines and identify opportunities with limited oversight, while aligning with business goal;
• Experience in a regulated industry (e.g. betting, fintech, healthcare, telco) is a strong plus;
• High drive, a can-do attitude, proactiveness and adaptability to changing business demands.

Kaizen Gaming Perks

• 🕑 Hybrid way of working.
• 🏃 A buddy will support you with your onboarding;
• 💸Competitive salary package and bonus scheme;
• 👩‍⚕️ Health and life insurance for you and your family;
• 📚 Unlimited access to Udemy & continuous training for all your learning and development needs;
• 💰 Monthly allowance for lunch expenses;
• 🌱Family Support Allowance;
• ⭐Clear career paths & a developmental 360° feedback framework.

#LI-GP2