Privacy Analyst, TPRM Review

About Ford Motor Company

We are the movers of the world and the makers of the future. We get up every day, roll up our sleeves and build a better world -- together. At Ford, we’re all a part of something bigger than ourselves. Our outstanding team of legal professionals helps us navigate the continually changing legal and regulatory landscape within the Office of General Counsel. Here, you’ll collaborate with outside counsel to deliver world-class legal, tax, and audit services globally.

About the Privacy Analyst, TPRM Review Role

Shape the future of privacy at Ford by protecting global data and maintaining consumer trust. In this dual-impact role, you will manage third-party privacy risks and conduct Privacy Impact Assessments (PIAs), bridging the gap between legal, technology, and business units. You will gain invaluable experience navigating complex regulations and ensuring high compliance standards, building an in-demand skill set within an iconic brand that prioritizes responsible data management.

Responsibilities

• You will lead the initial screening of third-party vendors, proactively identifying potential privacy risks and determining the scope for more comprehensive compliance evaluations.
• You will conduct in-depth privacy assessments with key vendors, analyzing their data handling practices and critically evaluating their privacy risk posture.
• You will drive ongoing risk management efforts for third-party engagements, continuously monitoring and addressing evolving privacy concerns to maintain robust data protection standards.
• You will review and validate Privacy Impact Assessments (PIAs) submitted by business units, ensuring all data processing activities align with company policies and regulatory requirements.
• You will serve as a critical resource and advisor to internal teams and external partners, translating complex privacy regulations into actionable guidance and fostering best practices.

Qualifications

• Bachelor's degree preferred, or equivalent professional experience.
• 5+ years of experience in third-party and vendor risk management.

Preferred Qualifications

• Professional privacy certifications, such as CIPP (Certified Information Privacy Professional) or CIPM (Certified Information Privacy Manager).
• Prior experience working within a large, multinational organization, navigating complex data ecosystems and diverse business units.
• Experience with GRC (Governance, Risk, and Compliance) platforms or other privacy management tools used for tracking and managing privacy obligations.
• Understanding of information security principles and how they intersect with data privacy practices.

What Ford Offers

As an established global company, we offer the benefit of choice. No matter what you choose, we offer a work life that works for you, including:

• Immediate medical, dental, vision, and prescription drug coverage.
• Flexible family care days, paid parental leave, new parent ramp-up programs, subsidized back-up child care, and more.
• Family building benefits including adoption and surrogacy expense reimbursement, fertility treatments, and more.
• Vehicle discount program for employees and family members and management leases.
• Tuition assistance.
• Established and active employee resource groups.
• Paid time off for individual and team community service.
• A generous schedule of paid holidays, including the week between Christmas and New Year’s Day.
• Paid time off and the option to purchase additional vacation time.

Visa sponsorship is not available for this position. Candidates must be legally authorized to work in the United States. Ford Motor Company is an Equal Opportunity Employer.

Key skills/competency

• Third-party risk management
• Privacy Impact Assessments (PIA)
• Data protection
• Compliance and regulatory requirements
• Vendor risk management
• Information security principles
• Governance, Risk, and Compliance (GRC) platforms
• Data handling practices
• CIPP/CIPM certifications
• Advisory and guidance