Privacy and Data Protection Manager



San Francisco, CA, USA
Posted on Monday, June 3, 2024

Company Description

Square builds common business tools in unconventional ways so more people can start, run, and grow their businesses. When Square started, it was difficult and expensive (or just plain impossible) for some businesses to take credit cards. Square made credit card payments possible for all by turning a mobile phone into a credit card reader. Since then Square has been building an entire business toolkit of both hardware and software products including Square Capital, Square Terminal, Square Payroll, and more. We’re working to find new and better ways to help businesses succeed on their own terms—and we’re looking for people like you to help shape tomorrow at Square.

About Square Financial Services

Our purpose of economic empowerment guides everything we do at Square. With that purpose in mind, we launched Square Financial Services (SFS), an Industrial Loan Company (ILC) chartered Bank in 2021, to offer small business loans and FDIC-insured deposit products. Within this team, you’ll be at the forefront of creating a bank that allows customers to thrive. We can’t wait to see what we can build together.

Job Description

The SFS security team directs and manages the overall cybersecurity and information security programs for the independent banking subsidiary of Block, Inc. We collaborate with teams across the Bank and Block in pursuit of industry-leading controls to manage and mitigate security and technology risks. We are looking for a driven and innovative Privacy and Data Protection Manager to support our program as the bank continues to grow and take on privacy concerns, security challenges and compliance obligations.

You will advance our team’s mission as you develop a deep understanding of our products, technologies, data protection controls, and work with cross-functional teams to measure and evolve our privacy, security and compliance posture.

You will:

  • Manage a privacy and data protection program, including control description documentation, maturity assessments, and improvement roadmaps.
  • Manage cross-functional privacy, security, and compliance evaluation projects, including planning, prioritization, execution, dependency management, and risk analysis.
  • Participate in technical design discussions, evaluate privacy and security properties of systems and services, drive risk decisions, and influence technical architecture to support our regulatory obligations, business goals, and customer expectations.
  • Collaborate on privacy and data protection assessments driven by security and privacy regulations
  • Iterate and improve privacy and data protection documentation including policies, standards, and runbooks.
  • Identify and solve data protection challenges that span multiple teams or areas of ownership.
  • Partner with cross-functional teams to find creative ways to improve our privacy and data protection programs while working to manage and mitigate risk.
  • Support SFS and Block teams by sharing your experience and expertise in pursuit of industry-leading privacy and data protection management.


You have:

  • 5+ years of experience with privacy- and/or security-related regulatory compliance for financial services or equivalent.
  • Relevant certifications (e.g. CISA, CISM, CIPP, CISSP) or equivalent demonstrable expertise.
  • Experience with privacy- and security-related program management or GRC program management
  • Familiarity with the Gramm-Leach-Bliley Act (GLBA) and related regulations
  • Familiarity with a broad range of enterprise security controls including, but not limited to, asset management, identity/access control, vulnerability management, and zero trust architecture.

Additional Information

Block takes a market-based approach to pay, and pay may vary depending on your location. U.S. locations are categorized into one of four zones based on a cost of labor index for that geographic area. The successful candidate’s starting pay will be determined based on job-related skills, experience, qualifications, work location, and market conditions. These ranges may be modified in the future.

Zone A: USD $148,700 - USD $223,100
Zone B: USD $141,300 - USD $211,900
Zone C: USD $133,800 - USD $200,800
Zone D: USD $126,400 - USD $189,600

To find a location’s zone designation, please refer to this resource. If a location of interest is not listed, please speak with a recruiter for additional information.

Full-time employee benefits include the following:

  • Healthcare coverage (Medical, Vision and Dental insurance)
  • Health Savings Account and Flexible Spending Account
  • Retirement Plans including company match
  • Employee Stock Purchase Program
  • Wellness programs, including access to mental health, 1:1 financial planners, and a monthly wellness allowance
  • Paid parental and caregiving leave
  • Paid time off (including 12 paid holidays)
  • Paid sick leave (1 hour per 26 hours worked (max 80 hours per calendar year to the extent legally permissible) for non-exempt employees and covered by our Flexible Time Off policy for exempt employees)
  • Learning and Development resources
  • Paid Life insurance, AD&D, and disability benefits

These benefits are further detailed in Block's policies. This role is also eligible to participate in Block's equity plan subject to the terms of the applicable plans and policies, and may be eligible for a sign-on bonus. Sales roles may be eligible to participate in a commission plan subject to the terms of the applicable plans and policies. Pay and benefits are subject to change at any time, consistent with the terms of any applicable compensation or benefit plans.

We’re working to build a more inclusive economy where our customers have equal access to opportunity, and we strive to live by these same values in building our workplace. Block is a proud equal opportunity employer. We work hard to evaluate all employees and job applicants consistently, without regard to race, color, religion, gender, national origin, age, disability, veteran status, pregnancy, gender expression or identity, sexual orientation, citizenship, or any other legally protected class.

We believe in being fair, and are committed to an inclusive interview experience, including providing reasonable accommodations to disabled applicants throughout the recruitment process. We encourage applicants to share any needed accommodations with their recruiter, who will treat these requests as confidentially as possible. Want to learn more about what we’re doing to build a workplace that is fair and square? Check out our I+D page.

Additionally, we consider qualified applicants with criminal histories for employment on our team, assessing candidates in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance.

Block, Inc. (NYSE: SQ) is a global technology company with a focus on financial services. Made up of Square, Cash App, Spiral, TIDAL, and TBD, we build tools to help more people access the economy. Square helps sellers run and grow their businesses with its integrated ecosystem of commerce solutions, business software, and banking services. With Cash App, anyone can easily send, spend, or invest their money in stocks or Bitcoin. Spiral (formerly Square Crypto) builds and funds free, open-source Bitcoin projects. Artists use TIDAL to help them succeed as entrepreneurs and connect more deeply with fans. TBD is building an open developer platform to make it easier to access Bitcoin and other blockchain technologies without having to go through an institution.

While there is no specific deadline to apply for this role, on average, U.S. open roles are posted for 70 days before being filled by a successful candidate.