OneTrust Data Privacy Specialist

Who You'll Work With

As a modern technology company, our Slalom Technologists are disrupting the market and bringing to life the art of the possible for our clients. We have passion for building strategies, solutions, and creative products to help our clients solve their most complex and interesting business problems. We surround our technologists with interesting challenges, innovative minds, and emerging technologies. We are currently looking for a Senior Consultant or Principal level Security strategist with deep technical and functional expertise in Business Continuity and Disaster Recovery.

What You'll Do

Platform Ownership & Architecture Strategy

• Serve as end-to-end technical owner for OneTrust (Consent, Preference, DSAR, GRC, AI Governance) and associated privacy platforms
• Evaluate current consent flows, identity/token usage, MDM integrations, and data pipelines
• Identify architectural, privacy, and security gaps including exposed tokens, misaligned identifiers, and consent misconfiguration risks
• Define and maintain standardized, compliant future-state consent and data architecture models
• Establish OneTrust as the authoritative system of record for consent and preference data

Privacy, Consent & Identity Architecture

• Design consent-aligned identity and data flow architectures across:CMS platforms (AEM, Salesforce Experience Cloud, etc.)Marketing automation platforms (Salesforce Marketing Cloud, etc.)Data warehouses and analytics platforms (Snowflake, etc.)
• Ensure all pipelines enforce consent, lawful basis, minimization, and purpose limitation principles
• Implement privacy-by-design and compliance-by-architecture across digital ecosystems

Risk, Remediation & Governance Leadership

• Lead remediation strategies for consent, privacy, and data integrity risks
• Partner with Legal, Security, Compliance, and Marketing stakeholders on corrective actions
• Define governance standards, operating models, and platform control frameworks
• Translate regulatory requirements into technical control architectures (GDPR, CPRA/CCPA, global privacy laws)

Delivery & Program Leadership

• Own privacy architecture deliverables, roadmaps, and technical documentation
• Lead stand-ups, working sessions, architecture reviews, and executive-level status reporting
• Serve as the central coordination point between Legal, Security, Data, and Marketing teams

What You'll Bring

6+ years of experience in Privacy Engineering, Cybersecurity, Data Governance, or GRC architecture

Hands-on ownership of OneTrust implementations (Consent, Preference, DSAR, GRC, AI Governance)

Deep experience designing consent-aligned MarTech and data architectures

Proven ability to remediate privacy, identity, and consent architecture risks

Strong executive communication, program leadership, and cross-functional coordination skills

Technical Domains

• Consent & Preference Modeling
• Identity Resolution & Tokenization
• Salesforce Marketing Cloud & Experience Cloud
• Data Minimization & Purpose Limitation Controls
• Cookie Consent
• Consent & Preference Management
• TPRM
• Data Discovery
• Privacy Impact Assessments (PIA/DPIA)
• DSAR Automation

Regulatory Expertise

• GDPR
• CPRA / CCPA
• Global privacy regulations
• Privacy-by-Design frameworks

Certifications (Preferred)

• OneTrust Certified Privacy Professional
• Privacy Rights Automation
• Cookie Consent & PIA Expert
• BBA or equivalent in MIS, Cybersecurity, or Information Systems

Key skills/competency

• OneTrust
• Data Privacy
• GRC Architecture
• Consent Management
• Privacy-by-Design
• GDPR
• CPRA/CCPA
• MarTech Integration
• Identity Resolution
• Data Governance