Privacy and Compliance Specialist

Role Overview

• Administer, configure, and optimize the OneTrust platform on client engagements across modules including Privacy Management, Consent & Preferences, Third-Party Risk, Data Discovery, and GRC, depending on client need
• Build and maintain assessments, workflows, data inventories, and Records of Processing Activities (ROPAs) within OneTrust, applying consistent design patterns across engagements
• Support Data Protection Impact Assessments (DPIAs), Transfer Impact Assessments (TIAs), and Legitimate Interest Assessments (LIAs) through platform configuration and stakeholder coordination
• Manage cookie consent banners, preference centers, and consent lifecycle workflows across client digital properties, ensuring alignment with applicable jurisdictional requirements
• Configure and operate Data Subject Access Request (DSAR) intake, fulfillment, and reporting workflows, partnering with client privacy and legal teams on response coordination
• Translate privacy, legal, and regulatory requirements into platform configuration, workflows, assessment templates, and reporting that are testable, traceable, and audit-ready
• Onboard new client business units and users onto the platform, including role-based access design, training delivery, and operational documentation
• Partner with Solution Architects, BAs, QA, and client stakeholders to align OneTrust configuration with broader compliance, security, and IT landscape decisions
• Support integrations between OneTrust and adjacent enterprise systems including Salesforce, Veeva, identity providers, ticketing systems, and data discovery tools
• Apply life sciences privacy context to platform scope decisions, including HCP and patient engagement, clinical and research data considerations, sample management, MLR/PRC review, field tools, and consent and privacy obligations across commercial, medical, and clinical remits
• Support audit readiness and regulatory inquiry response, including evidence collection, traceability, change history, and platform documentation
• Monitor and apply OneTrust platform updates, new modules, and roadmap changes, advising clients on adoption and impact
• Establish and contribute to Slipstreams OneTrust delivery assets, including reusable configuration patterns, assessment templates, workflow libraries, and implementation playbooks
• Generate dashboards, reports, and quality metrics for client compliance tracking and Slipstream leadership visibility, including DSAR cycle time, assessment completion, consent performance, and third-party risk posture
• Support presales and SOW development for OneTrust scope, including effort estimation, configuration level-of-effort, and articulation of Slipstreams OneTrust capabilities to prospective clients
• Mentor junior analysts and contribute to peer reviews of platform configuration, assessment design, and client deliverables

Requirements

• 24 years of experience in privacy, compliance, data governance, or a related field within a consulting, systems integrator, or in-house environment
• Required pharma, biotech, healthcare, or life sciences industry experience
• Hands-on experience administering or configuring the OneTrust platform across one or more modules (Privacy Management, Consent & Preferences, Third-Party Risk, GRC, or Data Discovery)
• Working knowledge of global privacy regulations including GDPR, CCPA/CPRA, and other US state privacy laws, with awareness of HIPAA and emerging international frameworks
• Experience configuring assessments, workflows, data inventories, and DSAR processes within OneTrust or a comparable privacy management platform
• Experience supporting cookie consent and preference management implementations across digital properties
• Strong ability to translate privacy, legal, and regulatory requirements into platform configuration and operational workflows
• Experience working in client-facing or cross-functional delivery environments, including coordination across Legal, IT, Security, and business stakeholders
• Strong analytical, problem-solving, and documentation skills, with the ability to communicate technical concepts to non-technical stakeholders
• Excellent written and verbal communication skills, including the ability to lead working sessions, present platform configuration approach, and represent Slipstream in client forums
• OneTrust certifications (Privacy Management Professional, Consent & Preferences, Third-Party Risk, GRC, or Data Discovery)

Benefits

• 401k match
• Comprehensive group health, dental, vision benefits
• Life insurance/LTD
• Discretionary PTO