Senior Privacy Program Manager

We are looking for a Senior Privacy Program Manager to join EA's Legal Privacy team and help shape our global privacy program. This is a senior, builder's role for someone who can own a multi-year roadmap, and influence across legal, engineering, product, and corporate functions. You are in your element turning complex global requirements into operational systems that teams can actually use. You will report to EA's Senior Privacy Counsel based in Los Angeles. We will consider candidates who can work at least three days per week on-site at our offices in Los Angeles, Redwood City, Kirkland, Vancouver, or Austin. Role Responsibilities Program Strategy & Leadership Maintain EA's global privacy program roadmap, including annual and multi-year priorities, milestones, and success metrics. Define and report program success metrics to legal leadership. Mentor junior team members and build a culture that enables the business through promoting privacy and data across the company. Privacy by Design & Product Engagement Operate and improve EA's PIA/DPIA program by including relevant touchpoints into the software development lifecycle and product launch governance. Establish review and risk-flagging workflows for new and changing products, including AI/ML systems, automated decisioning, and ad-tech. Operationalize children's and age-appropriate privacy requirements, including age assurance, verifiable parental consent flows, and parental notices. Data Governance & Cross-Border Data Evolve EA's data mapping and Records of Processing Activities (RoPAs) processes. Lead EA's data retention program, documenting purposes, retention periods, and deletion workflows for each category of personal information. Partner with enterprise data governance, data catalog, and engineering teams on intake workflows, tooling, and metadata. Design and operate risk-based compliance programs governing how data flows across the business, to third parties, and across geographic borders. Partner with security, IT, and engineering on aligning compliance programs with technical controls. Develop technology control plans and information governance procedures that restrict access to defined categories of sensitive data meeting heightened security and oversight expectations from regulators, auditors, and government counterparties. Operational Compliance & Player Rights Lead data subject and parental rights operations (access, deletion, opt-outs, parental review and revocation). Manage EA's cookie and web tracking compliance program, including consent and preference management platforms. Support vendor and third-party diligence, contracts, and ongoing monitoring. Incident Response, Audits & Continuous Improvement Contribute to incident response readiness and execution, and support responses to regulator inquiries, government oversight requests, and third-party audits. Promote automation and continuous improvement of program processes, including PIAs/DPIAs, intake workflows, and recordkeeping. Develop training, playbooks, and guidance. General Qualifications Bachelor's degree and 7+ years of progressive experience in privacy program management, privacy operations, or data protection compliance. Demonstrated experience designing and operating risk-based compliance programs and control frameworks that withstand third-party audit and regulator scrutiny. Knowledge of global privacy laws (e.g., GDPR, U.S. state privacy laws) and online safety frameworks (e.g., EU Digital Services Act, UK Online Safety Act). Familiarity with U.S. regulatory regimes that impose heightened controls on access to sensitive personal data, cross-border data transfers, or specific data categories. Experience designing or operating access governance programs, including role-based access, personnel restrictions, monitoring, and audit logging. Experience with data mapping, data flow analysis, and "know-your-data" practices. Experience designing and operating data retention and deletion programs at scale. Experience assessing privacy risks in AI/ML systems, including automated decisioning and profiling. Program and project management skills, with experience defining success metrics, building dashboards, and managing work that span multiple teams and disciplines. Technical fluency in web architecture, IT systems, and data flows. Excellent communication skills, with experience translating between legal, technical, and business audiences and influencing without direct authority. Preferred Hands-on experience operationalizing children's privacy (such as COPPA) and age-appropriate design requirements, including verifiable parental consent flows and parental access rights. Familiarity with data governance concepts beyond privacy compliance, including data quality, lineage, metadata, and data catalogs. Hands-on experience with privacy and data management platforms such as OneTrust, TrustArc, or Alation. Experience supporting digital products in consumer technology, gaming, or entertainment. Professional certifications such as CIPP/US, CIPP/E, CIPM, AIGP, or PMP. Background or coursework in computer science, engineering, or information security.