Compliance & Privacy Engineer

Date Posted: 05/18/2026

Hiring Organization: Rose International

Position Number: 501349

Industry: IT Company

Job Title: Compliance & Privacy Engineer

Job Location: Cupertino, CA, USA, 95014

Work Model: Onsite

Shift: 9 AM - 5 PM

Employment Type: Temporary

FT/PT: Full-Time

Estimated Duration (In months): 13

Min Hourly Rate($): 100.61

Max Hourly Rate($): 100.61

Must Have Skills/Attributes: AWS, Compliance, PCI, Privacy Operations, Security

Experience Desired: Compliance & Privacy, regulatory and audit frameworks such as PCI DSS, PCI PIN (10 yrs); Compliance and monitoring tools (e.g., Splunk, GitHub or similar), AWS (5 yrs); Data privacy regulations (e.g., GDPR, CCPA) (5 yrs)

Required Minimum Education: Bachelor's Degree

**C2C is not available**

Job Description

Required Qualifications
10+ years of experience in compliance engineering, data governance, privacy engineering, or a related discipline.
Hands-on experience with data classification frameworks and metadata management in enterprise environments.
Familiarity with regulatory and audit frameworks such as PCI DSS, PCI PIN, SOX etc
Working knowledge of compliance and monitoring tools (e.g., Splunk, GitHub or similar).
Experience with AWS cloud services and routine cloud operations.
Strong documentation skills with proficiency in Confluence, Quip, or similar collaboration platforms.
Excellent organizational and project management skills with the ability to track multiple workstreams simultaneously.

Preferred Qualifications
Bachelor's degree in Computer Science, Information Security, Data Engineering, or a related field.
Experience with data privacy regulations (e.g., GDPR, CCPA) and privacy-by-design principles.
Familiarity with vulnerability management tools and patching lifecycle processes.
Relevant certifications such as CISA, CISM, CRISC, PCI QSA, CIPM/CIPP, or AWS certifications.
Experience working in large-scale enterprise environments with complex data ecosystems.
Strong cross-functional communication skills with the ability to engage both technical and non-technical stakeholders

About the Role

We are seeking a detail-oriented and proactive Compliance & Privacy Engineer to join our team. This role sits at the intersection of data governance, privacy engineering, and regulatory compliance. The ideal candidate will be responsible for maintaining the integrity of our centralized data registry, enforcing data classification standards, and driving execution of compliance controls across multiple audit and assessment frameworks. This is a hands-on role requiring strong organizational skills, technical aptitude, and cross-functional collaboration.

Key Responsibilities

Data Registry & Privacy Governance
Metadata Management: Input, update, and validate metadata for databases and data assets within a centralized data registry, ensuring all entries are current and accurate.
Data Classification & Tagging: Apply data tags and classifications (e.g., data type, sensitivity level, personal data indicators) in alignment with established privacy and data governance standards.
Stakeholder Collaboration: Review database documentation and collaborate closely with data owners, engineers, and privacy stakeholders to ensure accurate and comprehensive metadata capture.
Migration Support: Support migration activities by mapping existing metadata to new registry schemas and standards, ensuring continuity and compliance during transitions.
Quality Assurance: Perform regular quality checks to ensure completeness, consistency, and accuracy of tagged and classified data across the registry.

Compliance Monitoring & Execution
Compliance Controls Execution: Monitor, track, and execute compliance controls across all audits and assessments, ensuring timely completion and adherence to regulatory requirements.
Monthly Controls Management: Track and execute recurring monthly controls including but not limited to Splunk monitoring, GitHub access reviews, patching status verification, and baseline compliance checks.
Tooling & Platform Monitoring: Actively monitor compliance and governance tools (e.g., Compass, Verdad, Plato) for WPC (Worldwide Privacy & Compliance) operations, flagging issues and ensuring tool health.
Audit & Project Tracking: Monitor and track all scheduled tickets related to WPC audits and projects, ensuring milestones are met and blockers are escalated promptly.
Vulnerability & Patch Management: Monitor and track patching cycles, aging vulnerabilities, and vulnerability reports, coordinating remediation efforts with relevant engineering teams.
Training Compliance: Monitor and track PCI training completion across applicable teams, ensuring all personnel maintain required certifications and awareness.
Evidence Collection: Assist in collecting, organizing, and submitting evidence required for WPC audits, including but not limited to PCI, PCI PIN, APN, SOX etc assessments.
Documentation & Project Management: Maintain Confluence and Quip documentation spaces to track all internal compliance projects, issues, progress, and follow-ups. Serve as a project management point of contact for internal compliance initiatives, driving accountability and visibility.
Cloud Operations: Perform AWS routine operational tasks in support of compliance infrastructure and monitoring.

What We Value
Attention to Detail - Precision in data tagging, metadata validation, and audit evidence collection.
Collaboration - Ability to work across engineering, privacy, and compliance teams seamlessly.
Accountability - Ownership of compliance timelines, controls, and project deliverables.
Continuous Improvement - A mindset geared toward optimizing processes, tools, and documentation.

• **Only those lawfully authorized to work in the designated country associated with the position will be considered.**

• **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client's business needs and requirements.**

Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.

California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.

Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.

If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.

Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).