Director, Data Privacy and Security - remote

Illuminate Education - Minneapolis, Minnesota or Remote - Full time


Remote; Minneapolis, MN preferred.

Position Overview

This role plays a critical and proactive role in leading the company’s Security Governance, Risk, and Compliance team to maintain the confidentiality, integrity and availability of sensitive company and customer information. This champion of security will design and develop programs to improve security & privacy standards, processes, procedures, training, and solutions and readily share knowledge with other Security Team Members.

Key Responsibilities

  • Drives the planning, implementation, training, administration and communication of data privacy and compliance across the company.
  • Leads Illuminate’s internal Security Governance, Risk, and Compliance team.
  • Collaborate with product, engineering, & IT to drive business applications, product applications, and technology solutions compliance with corporate and regulatory policies/standards & industry best practices.
  • Design and develop programs to improve security standards, processes, procedures and training; transfer knowledge to other security team members.
  • Accountable for the development of the Illuminate Education privacy policy and a compliance framework across the infrastructure for the collection, storage, use, distribution and disposal of customer and employee data to ensure it meets customer and industry requirements while tracking internal compliance.
  • Works cross-functionally with stakeholders in product, engineering, services, marketing, sales, IT and other businesses as applicable to ensure effective processes and compliance.
  • Identifies risks around data security and privacy and works with functional leaders on mitigation plans.
  • Investigates and responds to data privacy and sensitivity/bias inquiries and incidents.
  • Lead and coordinate data privacy compliance audits and other related project tasks with large work streams.
  • On point for responding to specific inquiries for existing and potentially new customers as it relates to Privacy and Security inquiries.
  • Collaborate with Research & Development and Legal in developing the company’s data sharing processes, tools, and reporting to ensure compliance with data privacy laws when working with de-identified student data.
  • Participate in K-12 industry working groups to stay current on data privacy trends, standards, & practices.

Minimum Experience & Qualifications

  • Working knowledge of K-12 privacy laws (FERPA, HIPAA, COPPA, CCPA).
  • An ability to assist in transforming external privacy laws into concrete policy & procedures.
  • A proven ability to formulate & execute tactical actions across company & culture when provided a strategic direction concerning privacy.
  • BS Degree, JD or experience in similar skilled capacity a plus.
  • Well developed verbal and written communication skills.
  • Ability to influence without direct reports.
  • Solid meeting facilitation skills.
  • Ability to prioritize work for self and others to meet aggressive deadlines.
  • Skilled in relationship/project management.

Desired Experience & Qualifications

  • Preferred IAPP Certification.
  • Strong SaaS product expertise.
  • Previous experience in the K-12 and education technology industry is strongly preferred.
  • Experience working with vendors, auditors, assessors, 3rd party partners, affiliate and subsidiary organizations.
  • One or more industry certifications desired - CISSP, CISM, CISA, CCFE, GIAC, CCIE, CCSP, ABCP, MBCP, ISA, PCIP.


Apply for this job

Apply for this job



Experience Level

Mid Level

Illuminate Education

Illuminate Education partners with educators to reach new levels of student performance, empowering teachers with data to serve the whole child. Our solution brings together holistic data and collaborative instructional tools, and puts them in the hands of educators.
Share this job
Get our email newsletterSign me up
Keep up to date with our email newsletterSign me up