Description:
ImpactShipt is seeking a Director, Privacy, Cybersecurity & AI to serve as a strategic enabler for our product, data, and AI initiatives. This role sits at the intersection of technology, business strategy, and regulation, with a clear mandate: help Shipt innovate faster while managing risk intelligently. While no two days are the same, you will lead the design and execution of scalable privacy, security, and AI governance programs that support high-velocity product development. This role is for a tech-fluent legal leader who understands how modern platforms are built and who can translate regulatory requirements into practical guardrails, not roadblocks or bottlenecks. You will lead a high impact team of two direct reports.
You will focus on the strategy and the execution of the following:
Privacy & Data Strategy: You will own Shipt's privacy strategy and operating model, ensuring it scales with growth, new data uses, and evolving business models.
AI Governance & Responsible Innovation: You will lead Shipt's AI governance and Responsible AI program, focusing on real-world deployment of AI systems, including agentic AI, automation, and decision-support tools. You will serve as a trusted internal expert on how AI systems work in practice—and where legal and ethical risks actually arise.
Cybersecurity & Incident Leadership: You will provide executive-level legal leadership on cybersecurity risk management, including alignment with frameworks such as NIST and SOC 2 and lead legal response for security incidents.
Team & Program Leadership: You will serve as a senior advisor to Legal leadership and executives on long-term data, AI, and platform strategy while leading a high performing team of two direct reports.
What You'll Need to Be Successful
Pay Range: $157,000 - $300,000
Please note that the salary range above is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location.
Skills & Education
This list includes key skills used in this job but is not inclusive of all skills needed for the role. Please see any required education below.
Cybersecurity Law, Data Privacy, Data Privacy Law, General Data Protection Regulation (GDPR), Privacy Laws
Work Arrangement
Shipt considers candidates located near a Shipt office or workspace in Birmingham, San Francisco, or Minneapolis to be hybrid, which means that they have the flexibility to work from home (with leader approval) or at a Shipt office in order to facilitate the ability to innovate, collaborate, and spark team connections. In-office expectations will vary by role and leader. Certain roles may require in-office presence on a full-time basis. Please work with your recruiter to learn more about the classification of this role.
- J.D. from an accredited law school and active membership in at least one U.S. state bar12+ years of legal experience, with deep focus on privacy, cybersecurity, data protection, and emerging technologies
- Significant in-house experience partnering closely with product and engineering teams
- Strong command of U.S. privacy and security laws (e.g., CCPA/CPRA, HIPAA, TCPA) and familiarity with global frameworks (e.g., GDPR
- Proven ability to operate at both strategic and execution levels
- Experience leading AI governance or Responsible AI programs in production environments is a plus
Pay Range: $157,000 - $300,000
Please note that the salary range above is a guideline, and individual total compensation will vary based on factors such as qualifications, skill level, competencies, and work location.
Skills & Education
This list includes key skills used in this job but is not inclusive of all skills needed for the role. Please see any required education below.
Cybersecurity Law, Data Privacy, Data Privacy Law, General Data Protection Regulation (GDPR), Privacy Laws
Work Arrangement
Shipt considers candidates located near a Shipt office or workspace in Birmingham, San Francisco, or Minneapolis to be hybrid, which means that they have the flexibility to work from home (with leader approval) or at a Shipt office in order to facilitate the ability to innovate, collaborate, and spark team connections. In-office expectations will vary by role and leader. Certain roles may require in-office presence on a full-time basis. Please work with your recruiter to learn more about the classification of this role.
