Senior Product Manager, Data Privacy & Security

Tubi is a global entertainment company and the most watched free TV and movie streaming service in the U.S. and Canada. Dedicated to providing all people access to all the world’s stories, Tubi offers the largest collection of on-demand content, including over 275,000 premium movies and TV episodes and over 300 exclusive originals. With a passionate fanbase and over 97 million monthly active viewers, the company is committed to putting viewers first with free, accessible entertainment for all.

About the Role:

As Senior Product Manager, Data Privacy & Security, you will be the single-threaded product owner of Tubi’s global privacy, security-compliance, and infrastructure-cost-efficiency programs. You’ll shape and deliver a unified strategy that:

• Working closely with Tubi’s Privacy Legal team, keeps Tubi ahead of ever-evolving regulations (e.g., GDPR, CCPA, COPPA, LGPD, DSR automation) while enabling trusted, data-driven innovation.
• Builds and governs a privacy-first Identity Graph to power personalization, consent management, effective deletion / anonymization, and first-party data activation.
• Drives continuous SOC 2 attestations, SOX 404 readiness for a public-company environment, and alignment with NIST SP 800-53 security controls.
• Leverages the latest AI tooling—from LLM-powered DSR assistants to policy-aware anomaly detection—to automate privacy, security, and cost-governance workflows while upholding AI-safety, security, and compliance best practices.
• Maximizes cloud/infrastructure ROI through transparent cost-tracking, show-back reporting, and partnership with FinOps, SecOps, and Engineering leads.

This is a hybrid role based out of our San Francisco office.

What You’ll Do:

• Own the global privacy roadmap—define strategy, success metrics, and quarterly OKRs for GDPR, CCPA, COPPA, DSAR automation, consent UX, and emerging regulations.
• Launch and scale a next-gen identity graph that unifies viewer signals, enforces consent, and underpins personalization and advertising products while meeting regional data-residency requirements.
• Lead security-compliance programs—deliver SOC 2 Type 2 reports annually; partner with Legal, Internal Audit, and SecOps to maintain SOX ITGC controls and align with NIST/ISO-27001 frameworks.
• Systematize infrastructure cost governance—create dashboards, policies, and guardrails that give teams real-time visibility into spend, drive sustainable budgeting, and surface savings opportunities.
• Embed AI-driven automation—identify and productize opportunities where LLMs, privacy-preserving ML, and security-AI can streamline DSR fulfillment, consent orchestration, threat analysis, and compliance evidence collection.
• Run program reviews and audits—manage vendors, evidence collection, penetration tests, and executive readouts; act as the product voice in external audits and customer security questionnaires.
• Champion privacy and AI-safety-by-design—embed threat-modeling, data-minimization, red-team testing, and responsible-AI checklists into the product development lifecycle.
• Influence cross-functional culture—educate Engineering, Data Science, Ad Sales, and Marketing partners on compliance best practices, secure development standards, and safe AI adoption.
  
  

Your Background:

• 7+ years of product management or program ownership in B2C or SaaS environments; at least 3 years focused on data-privacy or security-compliance products.
• Demonstrated delivery of GDPR/CCPA tooling, consent management, or DSR automation at scale.
• Hands-on experience achieving SOC 2 Type 2, SOX 404 ITGC, or FedRAMP/NIST compliance for cloud-native architectures.
• Familiarity with building or integrating identity-resolution/identity-graph platforms.
• Comfort working with modern AI/ML stacks (e.g., LLM orchestration frameworks such as LangChain or LlamaIndex, vector databases, privacy-enhancing technologies) to automate governance workflows while maintaining AI safety and regulatory compliance.
• Strong analytical chops—comfortable with FinOps dashboards, cost-allocation tagging, and ROI modeling.
• Excellent communication and stakeholder-management skills; able to translate legal, security, and AI-safety concepts into crisp product requirements.
• Bachelor’s in Computer Science, Information Systems, Engineering, or a related field; advanced degree or privacy/security certifications (CIPP/E, CIPT, CISSP) are a plus.

Pursuant to state and local pay disclosure requirements, the pay range for this role, with final offer amount dependent on education, skills, experience, and location is listed annually below. This role is also eligible for an annual discretionary bonus, long-term incentive plan, and various benefits including medical/dental/vision, insurance, a 401(k) plan, paid time off and other benefits in accordance with applicable plan documents.

California Compensation

Base ($153,000 to $218,000 / year) + Bonus + Long-Term Incentive Plan + Benefits

#LI-Hybrid #LI-MQ1

Tubi is a division of Fox Corporation, and the FOX Employee Benefits summarized here, covers the majority of all US employee benefits.  The following distinctions below outline the differences between the Tubi and FOX benefits:

• For US-based non-exempt Tubi employees, the FOX Employee Benefits summary accurately captures the Vacation and Sick Time.
• For all salaried/exempt employees, in lieu of the FOX Vacation policy, Tubi offers a Flexible Time off Policy to manage all personal matters.
• For all full-time, regular employees, in lieu of FOX Paid Parental Leave, Tubi offers a generous Parental Leave Program, which allows parents twelve (12) weeks of paid bonding leave within the first year of birth, adoption, surrogacy, or foster placement of a child in addition to applicable government leave program(s) and FOX’s short-term disability policy. This time is 100% paid through a combination of any applicable state, city, and federal leaves and wage-replacement programs in addition to contributions made by Tubi.
• For all full-time, regular employees, Tubi offers a monthly wellness reimbursement.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, disability, protected veteran status, or any other characteristic protected by law. We will consider for employment qualified applicants with criminal histories consistent with applicable law.