Privacy Program Manager

Job Summary:

Viking is seeking a Privacy Manager to join its growing Data Privacy Team in Woodland Hills, CA. Reporting up to the Vice President, Internal Audit within the Internal Audit & Compliance department, this role will support the implementation and ongoing operation of Viking’s global privacy program and work cross-functionally with stakeholders across the organization. The Privacy Manager will primarily focus on privacy rights management, privacy incident response, and privacy program operations, while also supporting broader program initiatives, including policies and procedures, training, data mapping, privacy impact assessments, metrics and reporting, and privacy-related contractual support as needed.

This is a hybrid position based in our Woodland Hills, CA office. In accordance with Viking’s hybrid work policy, this role is expected to work from the office on Monday, Wednesday, and Thursday each week.

Job Responsibilities: 

\n
• Manage and continually improve Viking’s privacy rights management process to support compliance with applicable privacy laws; provide guidance, process support, and awareness materials to internal stakeholders to ensure privacy requests are handled in accordance with local and global requirements.
\n
• Monitor and manage Viking’s privacy inbox, triage and process data subject rights requests in accordance with Viking’s established procedures, and identify, escalate, and coordinate follow-up on inquiries or issues requiring legal or leadership review.
\n
• Support the management of privacy incidents by coordinating fact gathering, facilitating cross-functional response activities, tracking remediation, and escalating matters to the Privacy Director and other stakeholders, as appropriate.
\n
• Develop and maintain reports, dashboards, and metrics for key areas of responsibility to track compliance activities, identify trends, risks, and process gaps, and support continuous improvement and mitigation planning.
\n
• Stay current on federal, state, and international privacy law developments, regulatory expectations, and leading practices to support privacy operations, guidance, and program enhancements.
\n
• Develop, maintain, and enhance privacy procedures, guidelines, templates, knowledge resources, and training materials to support consistent privacy practices across the organization.
\n
• Support the review, preparation, and coordination of privacy-related contractual provisions, including data protection terms and related documentation, in partnership with legal and business stakeholders.
\n
• Support internal stakeholders in privacy impact assessments, data mapping, and related privacy-by-design activities.
\n
• Support the Privacy Director in the execution of broader privacy program initiatives and special projects, as needed.
\n

Required Qualifications:

\n
• Bachelor’s degree required. Preferred areas of study include law, public policy, business administration, information governance, or a related discipline that supports interpretation and application of regulatory frameworks in a corporate environment.
\n
• 5–8 years of hands-on experience supporting privacy, data protection, or compliance programs, with a demonstrated track record of contributing to or operating within a global, in-house privacy function (not solely advisory or consulting-based experience).
\n
• Practical, working knowledge of U.S. and international privacy laws (including GDPR and CCPA/CPRA), with the ability to apply those requirements in real business scenarios (e.g., intake processes, data use reviews, or operational remediation), rather than theoretical familiarity.
\n
• Proven ability to translate legal and regulatory requirements into clear, actionable guidance for non-legal stakeholders. This includes experience advising business partners on how to operationalize privacy requirements within existing processes, systems, or product workflows.
\n
• Demonstrated experience managing multiple concurrent initiatives with competing priorities, including coordinating cross-functional stakeholders and driving work to completion with minimal oversight.
\n
• Strong written communication skills, specifically in drafting structured materials such as internal procedures, training content, stakeholder communications, and executive-level summaries that reflect both accuracy and business practicality.
\n
• Experience using privacy management or workflow tools (e.g., for DSARs, PIAs, or incident tracking), with an understanding of how systems support scalable program operations.
\n
• Direct involvement in at least two of the following program components within a global organization:
\n

·         Privacy rights request intake and fulfillment (e.g., DSARs)

·         Privacy impact or risk assessments (PIAs/DPIAs)

·         Data mapping or records of processing activities

·         Incident response or breach coordination

\n
• Results-oriented mindset with a demonstrated ability to prioritize work, meet deadlines, and maintain quality in a fast-paced environment.
\n
• Ability to build effective working relationships across functions such as Legal, Compliance, Information Security, Technology, and HR, with a collaborative approach to resolving ambiguity and driving alignment.
\n
• Proficiency in preparing professional business materials, including presentations, reports, and formal correspondence for leadership audiences.
\n
• Willingness to travel up to 10%, as needed.
\n

Preferred Qualifications:

\n
• J.D. or equivalent legal/privacy training preferred.
\n
•  Relevant privacy certifications such as CIPP/US, CIPP/E, CIPM, or similar credentials preferred.
\n
• Experience developing privacy metrics, dashboards, and reporting.
\n
• Experience supporting privacy training, privacy-by-design initiatives, and cross-functional process improvements.
\n

What We Offer You:

\n
• Highly competitive compensation plan.
\n
\n
• Salary range $125,000-$140,000 annually determined by a myriad of factors including, but not limited to, years of experience, depth of experience, individual qualifications and other relevant business considerations.
\n
• Employees are eligible for annual discretionary bonus.
\n
• 401(k) plan with company match.
\n
\n
• Full benefits including medical, dental, vision, life and disability insurance at a highly subsidized rate (some plans are fully paid by Viking).
\n
• Accrue 15 paid vacation days, sick time accrual by state, and 6 paid holidays per year.
\n
• Opportunity to take a free and/or discounted cruise.
\n
• Highly subsidized gym membership.
\n
• Discounts on theatres, theme parks, movie tickets, travel discounts through IATA membership and too many more discounts to name.
\n

Viking is a certified Great Place to Work company. This certification is a result of our commitment to excellence, integrity and our teams’ outstanding contributions.

About Viking

Viking (NYSE: VIK) is a global leader in experiential travel with a fleet of more than 100 ships, exploring 21 rivers, five oceans and all seven continents. Designed for curious travelers with interests in science, history, culture and cuisine, Chairman and CEO Torstein Hagen often says Viking offers experiences For The Thinking Person™. Viking has more than 450 awards to its name, including being rated #1 for Rivers and #1 for Oceans five years in a row by\u202FCondé Nast Traveler\u202Fin the 2025 Readers’ Choice Awards. Viking is also rated a “World’s Best” by\u202FTravel + Leisure—no other travel company has simultaneously received such honors by both publications.