Data Privacy and AI Governance Manager

Job Description

As Cohn Reznick grows, so do our career opportunities. As one of the nation's top professional services firms, Cohn Reznick creates rewarding careers in advisory, assurance, and tax with team members who value innovation and collaboration in everything they do!

Cohn Reznick helps organizations optimize performance, manage risk, and maximize value through Cohn Reznick LLP (assurance services) and Cohn Reznick Advisory LLC (advisory and tax services). Together, the firm provides leaders with deep industry knowledge and relationships, solutions to address clients' unique business goals and risks, and insight on how emerging market forces can drive opportunity. With offices nationwide, the firm serves organizations around the world as an independent member of Nexia.

We currently have an exciting career opportunity for an Data Privacy and AI Governance Managerto join our Legal team.

Cohn Reznick is a hybrid firm and most of our professionals are located within a commutable distance to one of our offices. This position is considered remote which means it does not require job duties be performed within proximity of a Cohn Reznick office location. However, as a remote employee, you may be required to be present at a Cohn Reznick office with scheduled notice for client work, team meetings, or trainings

WHY COHNREZNICK?

At Cohn Reznick, we're united by a common mission to create opportunity, value, and trust for our clients, our people, and our communities. Whether it's working alongside your peers to solve a client challenge, or volunteering together at the local food bank, there are so many ways to find your "why" at the firm.

We believe it's important to balance work with everyday life - and make time for enjoyment and fun. We invest in a robust Total Rewards package that includes everything from generous PTO, a flexible work environment, expanded parental leave, extensive learning & development, and even paid time off for employees to volunteer.

YOUR ROLE.

Responsibilities Include But Not Limited To

* Develop, implement, and maintain the organization's data privacy program including an AI governance framework including policies, procedures, and controls

* Ensure compliance with applicable data privacy and AI laws and regulations.

* Partners with business, legal, and technology teams to manage privacy risks, support data governance initiatives, and embed privacy-by-design principles across the organization.

* Partner closely with Technology, AI and Governance, Risk and Compliance teams to ensure internal controls are in place and effective for AI usage and personal data processing, align enterprise data standards with regulatory and compliance requirements, and support policy development and guidelines on data handling and responsible AI use.

* Establish continuous discovery mechanisms to identify, map, assess, and mitigate "Shadow AI" tools and use cases deployed without authorization.

* Integrate AI governance and privacy requirements into product development, procurement, and implementation and ensure data and information governance aligns, enables and supports the adoption of AI tools and technologies.

* Oversee governance for agentic AI and autonomous workflows, including human-in-the-loop protocols and manual override requirements.

* Lead, facilitate and work with AI Governance Committee to define governance process, risk tiers and approval pathways based on materiality, impact, and regulatory exposure.

* Assist in developing and delivering training programs and communications to promote a culture of responsible AI use across the organization.

* Report on program status, risk metrics, and compliance issues to senior leadership and relevant stakeholders.

* Stay up-to-date on emerging AI regulations (e.g., AI Act) and data privacy laws.

Your Experience.

The successful candidate will have :

* Education & Experience:

Bachelor's degree in a relevant field (e.g., Computer Science, Data Science, Law, Information Systems, or similar). 5+ years of experience in data privacy, compliance, or risk management roles, or equivalent experience implementing technology governance or privacy programs including experience in leading AI governance.

* Regulatory Knowledge:
Strong knowledge of data protection regulations (such as GDPR, CCPA, etc.) and familiarity with newer AI governance frameworks such as the EU AI Act risk tiers, NIST AI RMF, and ISO/IEC 42001.

* AI/ML Familiarity:
Understanding of artificial intelligence and machine learning concepts and their risks, including data provenance, explainability limits, model drift, algorithmic bias audits, and guardrails against prompt injection and training data leakage (deep technical expertise is not required, but must be comfortable collaborating with technical teams).

* AI Evaluations Familiarity:
Familiarity with AI evaluation frameworks and methodologies, and experience designing or conducting AI evaluations.

* Policy & Program Management:
Proven ability to develop and enforce…