Job Description

We’re looking for a Senior Privacy Analyst to help mature our privacy program and close operational and compliance gaps across our SaaS platform and vendor ecosystem. This role will be key in building centralized visibility into personal and AI data usage, ensuring compliance with global privacy regulations, and improving documentation, transparency, and vendor governance. The candidate will lead the design and implementation of a privacy-by-design program, ensuring alignment with frameworks such as GDPR, CCPA, and emerging AI governance requirements. They will also assess ongoing privacy compliance gaps in the product and partner with engineering teams to define remediation plans, collaborating with cross-functional teams to operationalize privacy requirements through documental, controls, and process improvement. The role includes leading full-cycle cyber and privacy assessments including Privacy Impact Assessments (PIA), GDPR assessments, and NIST Privacy Assessment, as well as building and maintaining Records of Processing Activities (ROPA). The candidate should have 4-6 years of experience in privacy, compliance, or GRC functions, a strong understanding of global privacy laws, and familiarity with SaaS platforms and/or AI data governance.

About Canto

Canto is a leader in DAM, empowering businesses to organize, manage, and distribute their digital assets seamlessly.

Apply for This Position