Snr. Privacy Operations Manager

Apply now »

Date: Jan 23, 2026

Location: Northville, MI, US

Company: Tenneco

At Tenneco, we don’t follow industry standards; we set them, and we don’t settle for being best-in-class because we hustle to be better than best-in-class. Whether it’s our Core Values – radical candor, simplify, organizational velocity, tenacious execution and win – or our Get Stuff Done (GSD) mindset, we’re determined to become the most trusted partner and best manufacturer and distributor to the transportation industry.

With a product portfolio as expansive as it is innovative, an obsessive commitment to quality and excellence, and a global presence, we’re all about getting stuff done, so we can win.

How do we make it happen? Through the Tenneco Way. Fueled by our Core Values, a winning mindset and a relentless commitment to excellence, the Tenneco Way is how we win. It’s what keeps Team Tenneco bold, driven, and unapologetically focused on pushing past limits and redefining success.

Here, you’ll work alongside a team of relentless problem-solvers who are committed to making a tangible impact. If you’re ready to break boundaries, deliver results, and enjoy the ride along the way, you’ll thrive here.

Want to learn more about who we are? Check out our website to discover the Tenneco Way

Tenneco is seeking a Snr. Privacy Operations Manager, to support global privacy operations across multiple jurisdictions.

We are seeking a self-starting, hands-on Privacy Operations Manager who will serve as the subject matter expert (SME) for privacy engineering and operations. This role owns the end-to-end lifecycle of privacy assessments and operational processes including DPIAs, PIAs, LIAs, Records of Processing Activities (ROPAs), consent and preference management, data subject request (DSR) operations, and privacy tooling/platforms (built or bought). The ideal candidate brings proven global privacy experience in a multinational environment, thrives in fast-paced environment, operates with speed and high quality, and can represent the function confidently in technical forums and business settings while working closely with Architecture, Security, Legal, and other critical stakeholders.

The position may be based in Illinois or Michigan and reports to the Privacy Compliance Director of the company. Remote arrangements may be considered.

KEY RESPONSIBILITIES

Program Lead & Governance

Serve as the SME and day-to-day lead for privacy engineering and operations, embedding privacy by design and default across products, services, and processes.
Lead and continuously improve the lifecycle of DPIAs, PIAs, LIAs, ROPAs, data mapping, and AI/automated decision-making risk assessments—ensuring completeness, accuracy, and timely closure of risks and actions.
Define and maintain privacy requirements, standards, and technical guardrails in partnership with Enterprise Architecture, Information Security, and Legal.
Represent Privacy on technical design/review boards; influence architectural decisions to ensure compliant, scalable solutions.

Privacy Tooling & Automation

Directly administer, configure and plan roadmap for privacy platforms and tools (e.g., assessment workflows, consent and preference management, data mapping/ROPAs, vendor risk, cookie/tracking governance).
Drive automation of privacy controls and workflows (e.g., templates, playbooks, SLAs, integrations, APIs, Power Automate) to reduce cycle time and improve quality.
Establish and maintain data quality checks, dashboards, control matrices (e.g., RACI, requirements-to-controls traceability), and audit-ready evidence repositories.

Assessment & Control Execution

Perform technical and data protection reviews of systems, applications, data pipelines, analytics/AI use cases, and vendors to identify privacy risks and required controls.
Design pragmatic remediation plans and partner with control owners to track mitigation to closure.
Address cross-border data transfer requirements, data localization, cookie/tracking technologies, and consent signals across the stack.

Data Subject Rights (DSR) Operations

Own the end-to-end DSR process (intake, identity verification, scoping, fulfillment, communications, and retention of evidence) across global jurisdictions.
Engineer repeatable, scalable fulfillment processes leveraging automation, role-based access, and clear SLAs.
Measure and report DSR performance; drive elimination of root causes that generate avoidable requests.

Risk, Incident & Compliance Management

Monitor privacy control effectiveness; identify gaps and manage remediation to closure.
Support privacy incident response and breach preparedness activities, including tabletop exercises and after-action reviews.

Ensure vendor/privacy due diligence is performed and aligned with contractual and regulatory requirements.

Measurement & Reporting

Define and publish KPIs/KRIs and dashboards (e.g., assessment cycle time, SLA adherence, risk backlog burn-down, DSR throughput, audit findings) for leadership visibility.
Prepare materials for executive updates, audits, and regulatory inquiries; maintain audit-ready documentation.

JOB REQUIREMENTS

Bachelor’s degree in Computer Science, Software Engineering, Data Protection/Privacy, Cybersecurity, Regulatory Compliance, or a related field (advanced degree or JD highly desirable).
8+ years of progressive experience in privacy operations, privacy engineering, or closely related domains within a multinational environment.
Demonstrated expert-level execution of DPIAs, PIAs, LIAs, ROPAs, data mapping, vendor/privacy due diligence, consent and preference management, and cookie/tracking governance.
Hands-on experience operationalizing global privacy regulations (e.g., GDPR, CCPA/CPRA, LGPD, PIPL, PDPA) and aligning with frameworks/standards (e.g., ISO 27001, ISO 27701, ISO 42001, NIST CSF, PCI DSS, SOX, TISAX).
Proficiency collaborating with Enterprise Architecture and Information Security to embed privacy controls into system designs, APIs, data pipelines, analytics, and AI/ML use cases.
Proven ability to lead complex, cross-functional programs with minimal supervision; excels in rapidly changing environment while maintaining quality and compliance.
Good written and verbal communication skills with ability to translate technical concepts for business audiences and present credibly in technical forums.
Experience administering or integrating privacy/GRC platforms.
Advanced Microsoft skills (Excel, PowerPoint, Power BI); ability to build dashboards, operational workflows and executive-ready materials using Microsoft suite of tools.
At least one privacy certification required: CIPP (E/US or other regional), CIPT, CIPM, CDPSE; security certifications (CISM, CISSP) are a plus.

Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities

Apply now »

Provider	Description	Enabled
Vimeo	Vimeo is a video hosting, sharing, and services platform focused on the delivery of video. Opting out of Vimeo cookies will disable your ability to watch or interact with Vimeo videos. Cookie Policy Privacy Policy Terms and Conditions
YouTube	YouTube is a video-sharing service where users can create their own profile, upload videos, watch, like, and comment on videos. Opting out of YouTube cookies will disable your ability to watch or interact with YouTube videos. Cookie Policy Privacy Policy Terms and Conditions

Provider	Description	Enabled
AddThis	AddThis is a widget that allows you to share jobs across the web to various other platforms. Opting out of AddThis cookies will remove your ability to view and use this widget. Data Subject Rights / Privacy Policy Terms and Conditions
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions