Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior GRC Analyst, Privacy

$98.6k - $135k per year

Benevity

Meet Benevity Benevity is the way the world does good, providing companies (and their employees) with technology to take social action on the issues they care about. Through giving, volunteering, grantmaking, employee resource groups and micro-actions, we help most of the Fortune 100 brands build better cultures and use their power for good. We’re also one of the first B Corporations in Canada, meaning we’re as committed to purpose as we are to profits. We have people working all over the world, including Canada, Spain, Switzerland, the United Kingdom, the United States and more!

Benevity is seeking a Sr. GRC Analyst, Privacy to anchor and advance our data protection program across a complex, multi‑jurisdictional regulatory landscape. In this role, you will own the design, operationalization, and continuous maturity of Benevity’s privacy compliance program, spanning GDPR, UK‑GDPR, CPRA, PIPEDA, CASL, and emerging global frameworks. You will build the foundational infrastructure that keeps Benevity accountable to its regulatory obligations: Records of Processing Activities, Data Subject Access Request workflows, Data Protection Impact Assessments, and subprocessor governance, ensuring the program is not only defensible to regulators but scalable as Benevity grows.

As a trusted privacy advisor embedded across cross‑functional teams, you will work closely with Legal, Security, Engineering, Product, and Data Governance to embed Privacy by Design into the business. You will support the DPO operational function, partner on Data Processing Agreement reviews, and translate complex privacy requirements into practical, business‑aligned controls. Your work will directly protect Benevity’s clients, employees, and the communities they serve, and ensure that trust remains a core competitive advantage.

What You’ll Do

Privacy Program & Governance

  • Own and maintain Benevity’s Records of Processing Activities (ROPA) under both controller and processor regimes, ensuring compliance with GDPR Article 30 and equivalent requirements across applicable jurisdictions.
  • Develop and maintain privacy policies, notices, standards, and control frameworks aligned with GDPR, UK‑GDPR, CPRA/CCPA, PIPEDA, CASL, and emerging global laws (AU Privacy Act, India DPDP, Swiss FADP, and others).
  • Support privacy policy approval, exception management, and attestation processes, actively seeking opportunities for process improvement and automation.

Data Subject Rights & DSAR

  • Build and manage DSAR intake, triage, and response workflows in compliance with statutory deadlines (30 days under GDPR; 45 days under CPRA), including coordination with business and legal stakeholders.
  • Maintain and refresh the subprocessor listing in alignment with client Data Processing Agreement commitments and GDPR Article 28 obligations.

Data Protection Impact & Risk

  • Design, operationalize, and continuously improve the Data Protection Impact Assessment (DPIA) process; embed DPIA requirements into product, data, and business initiative workflows.
  • Support the DPO operational function, including regulatory correspondence readiness, breach notification preparedness, and supervisory authority interface support in coordination with Legal.
  • Partner with Security, Engineering, Product, Legal, and Data Governance teams to embed privacy by design and by default into key business initiatives.

Regulatory Compliance & Monitoring

  • Review and support the negotiation of Data Processing Agreements and data transfer mechanisms (SCCs, UK IDTAs) in collaboration with Legal.
  • Monitor the global privacy regulatory landscape and assess the impact of new and evolving requirements on Benevity’s operations and client commitments.
  • Support multi‑entity privacy obligations across Benevity’s partner ecosystem, including jurisdiction‑specific compliance requirements and data processing documentation.

Tooling & Operational Delivery

  • Maintain and enhance privacy workflows in GRC platforms (e.g., OneTrust Privacy module) to automate and streamline compliance operations at scale.
  • Deliver executive‑ready privacy reports, risk insights, and dashboards to inform leadership decision‑making.
  • Leverage AI tools and automation as a force multiplier, accelerating DSAR triage, regulatory horizon scanning, policy drafting, and evidence workflows to scale program output without scaling headcount.

Advisory & Awareness

  • Design and deliver privacy awareness and training programs to build a culture of data protection across Benevity.
  • Serve as a cross‑functional privacy advisor, partnering with teams across the organization to embed privacy requirements into products, services, and operational decisions.

What You’ll Bring

  • 5+ years of experience in privacy, data protection, GRC, or a closely related field, ideally within a SaaS or high‑growth technology environment.
  • Deep, practical knowledge of global privacy frameworks, including GDPR, UK‑GDPR, CPRA/CCPA, PIPEDA, and CASL, with working familiarity of emerging regimes (India DPDP, Swiss FADP, AU Privacy Act reforms).
  • Hands‑on experience building and maintaining ROPAs under both controller and processor regimes, managing DSAR workflows, conducting DPIAs, and maintaining subprocessor inventories.
  • Experience supporting or operating within a DPO function, including regulatory interface and breach notification processes.
  • Proven ability to review and support the negotiation of Data Processing Agreements and data transfer mechanisms in collaboration with Legal.
  • Hands‑on experience with privacy or GRC tooling (e.g., OneTrust Privacy module, Hyperproof, or equivalent) to operationalize compliance workflows at scale.
  • Ability to communicate complex privacy and regulatory concepts clearly to technical, legal, and business audiences.
  • A demonstrated interest and track record in leveraging AI and automation as a force multiplier, streamlining privacy operations, accelerating routine workflows and expanding program capacity without proportional headcount growth.
  • Certifications such as CIPP/E, CIPP/US, or CIPM are highly valued; CIPT, CISM, or CRISC are also welcomed.

Candidates with disabilities who may require accommodations throughout the hiring or assessment process are encouraged to reach out to View email address on ca.talent.com.

Compensation Range: CA$98.6K - CA$135K

#J-18808-Ljbffr
Vacancy posted 7 days ago
Similar jobs that could be interesting for youBased on the Senior GRC Analyst, Privacy in Toronto, ON vacancy
  • $136k - $170k per year

     ...personal information and travel details to get where they are going and expect us to keep that data safe. Lyft’s Privacy team is comprised of engineers and analysts dedicated to ensuring that appropriate data protections are applied at all times. We conduct privacy risk... 
    Senior
    Hourly pay
    Work at office
    Flexible hours
    3 days per week

    Socotra, Inc.

    Toronto, ON
    7 days ago
  • Join Docebo as a Governance, Risk, and Compliance Analyst, where you will play a vital role in enhancing security compliance. Collaborate...  ...Assist in drafting and updating cybersecurity and privacy policies Engage in cybersecurity risk assessments while documenting... 
    Suggested

    Docebo

    Toronto, ON
    5 hours ago
  • $80k - $95k per year

    Introduction ICES is seeking a Privacy Analyst to join our Privacy and Legal Office (PLO) department. Reporting to the Managing Privacy Counsel, Manager Privacy Services, and situated within the PLO, the Privacy Analyst will provide advice and guidance to different teams... 
    Suggested
    Full time
    Work at office
    Remote work

    ICES: Data, Discovery, Better Health

    Toronto, ON
    7 days ago
  • Become a pivotal Privacy Analyst dedicated to ensuring effective data protection measures. Work collaboratively to analyze privacy risks and empower teams in product development while embracing a hybrid work approach. You will play an essential role in shaping privacy considerations... 
    Suggested

    Lyft

    Toronto, ON
    7 days ago
  • Join Lyft's Privacy team as a Privacy Risk Analyst, focusing on data safety and compliance in a hybrid operating model. Your expertise will shape Lyft’s data protection strategies and foster collaboration across teams. In this role, you will conduct privacy risk assessments... 
    Suggested

    Socotra, Inc.

    Toronto, ON
    3 days ago
  • Elevate company privacy practices as a Senior Privacy Impact Assessment Specialist at Manulife in Toronto. This role focuses on managing privacy risks and leading compliance initiatives. In this temporary six-month role, you will leverage over eight years of compliance experience... 
    Senior
    Temporary work

    Manulife

    Toronto, ON
    5 hours ago
  • $88k - $132k per year

    Senior Consultant - Oracle Application Security & GRC Location: Toronto Date: Apr 14, 2026 The Opportunity EY is looking for dynamic individuals in the Oracle Applications Security and GRC space for on‑premise and cloud applications. These professionals will know how to... 
    Senior

    Ernst & Young Advisory Services Sdn Bhd

    Toronto, ON
    7 days ago
  • Drive data privacy initiatives as a Senior BigID Data Privacy Technical Architect at Capgemini. Leverage your expertise in data governance and privacy solutions to maintain compliance with global regulations. As a seasoned architect, you will lead the design and implementation... 
    Senior

    Capgemini

    Toronto, ON
    5 hours ago
  • $80k - $130k per year

    Intermediate/Senior Business Analyst (GRC) Position Description This role is hybrid and requires you to be at our downtown Toronto and/or Client office (downtown) at a minimum 4 days per week subject to change at any time.  We are seeking an experienced Business Analyst... 
    Senior
    Manual labor
    Work at office
    Toronto, ON
    5 days ago
  • A leading privacy consultancy in Toronto is seeking a Senior Privacy Impact Assessment (PIA) Specialist. The role involves leading the development of privacy assessments to evaluate compliance with Ontario privacy laws. Ideal candidates will have substantial knowledge of privacy... 
    Senior

    Rubicon Path

    Toronto, ON
    7 days ago
  • RQ09522 - Privacy Impact Assessment (PIA) Specialist - Senior Job Openings RQ09522 - Privacy Impact Assessment (PIA) Specialist - Senior About the job RQ09522 - Privacy Impact Assessment (PIA) Specialist - Senior Description Interpret and apply Ontario Freedom of Information... 
    Senior
    Contract work
    Remote work

    Rubicon Path

    Toronto, ON
    7 days ago
  • A public sector consulting firm in Toronto is seeking an experienced Privacy Impact Assessment (PIA) Specialist. This role requires expertise in developing privacy impact assessments, leading stakeholder discussions related to privacy, and ensuring compliance with best practices... 
    Senior

    Rubicon Path

    Toronto, ON
    7 days ago
  • $180k per year

    Senior Privacy & Commercial Counsel Location: Remote (Canada) Department: Legal Reports to: Co-Founders Type: Full-time, Permanent Salary: CA$180,000 Website: About Prospeo Prospeo is a B2B SaaS sales intelligence platform used by over 2,000 companies... 
    Senior
    Permanent employment
    Full time
    Contract work
    Work at office
    Remote work
    Work from home
    Worldwide
    Flexible hours

    Ρrοѕреο

    Toronto, ON
    5 hours ago
  • A leading staffing agency is seeking a Senior Privacy Impact Assessment (PIA) Specialist for a strategic 3-month contract in Toronto. You will lead the development of PIAs for new technologies and ensure compliance with stringent privacy requirements. The ideal candidate should... 
    Senior
    Contract work

    Randstad Canada

    Toronto, ON
    7 days ago
  • Join a significant SAP S/4HANA upgrade project as a GRC Consultant with remote flexibility. You'll play a key role in ensuring security compliance and smooth transition throughout the upgrade. The client is seeking a seasoned consultant to support their SAP S/4HANA upgrade... 
    Remote work

    S.i. Systems

    Toronto, ON
    5 hours ago
  •  ...Reporting to the Director, Corporate Finance and Analytics, the Senior Data Analyst plays a critical role in supporting decision-making processes...  ...information. Please click the link here to review our Privacy Policy.Privacy Statement | Haventree Bank Haventree Bank embraces... 
    Senior
    Flexible hours

    Haventreebank

    Toronto, ON
    7 days ago
  •  ...seeking an experienced leader to join their team as Director, Compliance & Privacy to drive their privacy, AI governance, and data use programs across Canada. This strategic role will partner with senior business leaders to ensure responsible data use, regulatory compliance,... 
    Senior

    The Heller Group Legal and Executive Search

    Toronto, ON
    5 hours ago
  • $129.06k - $140.11k per year

     ...Hiring Salary Range: $129,061 - $140,106 (FTE annual) Purpose Responsible for ensuring university compliance with FIPPA, and other privacy legislation (including GDPR and other applicable developments), copyright and Canada’s Anti‑Spam Legislation (CASL). Coordinate and oversee... 
    Long term contract
    Permanent employment
    Full time
    Work at office

    MDA

    Toronto, ON
    6 days ago
  • $140k - $160k per year

    Our client, a leading Canadian healthcare organization, is seeking a Privacy and Compliance Counsel to join their growing Compliance and Risk Management team. This role supports enterprise privacy and regulatory compliance with a strong focus on Canadian federal and provincial... 

    ZSA Canada

    Toronto, ON
    7 days ago
  •  ...Elevate compliance practices with RBC as a Senior Compliance Analyst in Toronto. Focus on executing compliance testing protocols and maintaining regulatory...  ...multiple regulatory frameworks Proficiency in enterprise GRC tools like Archer Robust communication skills for diverse... 
    Senior

    0000050007 Royal Bank of Canada

    Toronto, ON
    5 hours ago
  • $102.64k - $153.96k per year

     ...firm that businesses trust with their most complex legal matters. GRC Analyst, Information security The Role The information security...  ...metrics, and reports as required for the team, the IT Department and senior management. Making suggestions and improving existing... 
    Senior
    Full time

    Bennett Jones

    Toronto, ON
    22 days ago
  • Become a vital part of TD's Finance GRC in Toronto as a Senior Risk Management Analyst focused on governance and compliance oversight. Your insights will lead to improved risk management strategies. This senior analyst position emphasizes a robust understanding of finance... 
    Senior

    TD Bank

    Toronto, ON
    7 days ago
  •  ...Nice to have: Previous OPS / Public sector experience. Business Analyst Experience Experience and actual deliverables with a Service‑...  ...public sector, industry and international standards on security, privacy and accessibility. Ability to assess security and privacy issues... 
    Senior

    Maarut

    Toronto, ON
    7 days ago
  •  ...Position Senior Business Analyst – Contract Location Toronto, ON Experience 8–10 years of experience in business analysis with a...  ..., Ethics & Compliance Ensure AI solutions comply with data privacy regulations (GDPR, CCPA) and ethical AI principles. Assist... 
    Senior
    Contract work

    TEKGENCE

    Toronto, ON
    7 days ago
  • $50.1k - $93k per year

    Application Deadline:07/10/2026Address:33 Dundas Street WestJob Family Group:Customer SolutionsPlease note this role is a temporary assignment with an expected end date of mid-May 2027Provides subject matter expertise to support the management and implementation of the project...
    Senior
    Contract work
    Temporary work
    Part time

    Bank of Montreal

    Toronto, ON
    7 days ago
  • $73.73k - $122.88k per year

     ...platforms, as well as the implementation of new technologies and product enhancements across mobile and digital channels. The Business Analyst will work under the guidance of the Product Owner and collaborate closely with engineering, product, and business teams to deliver... 
    Senior
    Long term contract
    Temporary work
    Local area
    Flexible hours

    Manulife

    Toronto, ON
    1 day ago
  • $90k - $95k per year

    Senior Data Analyst (BBBH11907) Toronto, Canada Salary: CAD 90,000 - 95,000 per year Permanent Job title: Senior SQL Data Analyst Our client: A well-established Canadian professional services organization with a national presence and a strong reputation within... 
    Senior
    Long term contract
    Permanent employment

    ISG Search Inc

    Toronto, ON
    4 days ago
  • TEHORA est présentement à la recherche d’un(e) Technicien(ne)-analyste senior afin d’intervenir sur des projets complexes. La personne retenue jouera un rôle clé dans la structuration des solutions et la qualité des livrables. Sans être exhaustifs, voici les services... 
    Senior
    Hourly pay
    Contract work
    Apprenticeship
    Remote work
    Flexible hours

    TEHORA

    Toronto, ON
    5 hours ago
  • $65k - $95k per year

     ...curious and eager to keep learning, consider starting or growing your career with us at The Home Depot. Position Overview: As a Senior Financial Analyst, you are the key person influencing decision for key business leaders through financial data and insights, and serve as the... 
    Senior
    Work at office
    Work from home
    Flexible hours

    The Home Depot

    Toronto, ON
    1 day ago
  • Senior Financial Analyst We provide clarity in a world of trade complexity so that businesses can grow further, faster, smarter. Over 30,000 clients trust us with their customs brokerage, trade consulting, global trade management and freight needs. JOB SUMMARY The Senior... 
    Senior

    Livingston International

    Toronto, ON
    7 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior GRC Analyst, Privacy. Be the first to apply!