Senior Program Manager: Privacy & AI

At Docker, we make app development easier so developers can focus on what matters. Our remote-first team spans the globe, united by a passion for innovation and great developer experiences. With over 20 million monthly users and 20 billion image pulls, Docker is the #1 tool for building, sharing, and running apps—trusted by startups and Fortune 100s alike. We’re growing fast and just getting started. Come join us for a whale of a ride!

Docker is hiring a Senior Program Manager: Data Privacy and AI.

This role reports directly to our VP and Head of Legal.

Role Summary:

This is a hands-on role for someone who has demonstrated experience building and running privacy programs inside a technology company, and understands how modern SaaS and AI products process and utilize data.

You will be the go-to Dockhand for data privacy and AI compliance across the company.

In this role you’ll work closely with Engineering, Product, Security, Sales, Compliance, IT, and Legal to ensure our products and practices meet global privacy and emerging AI regulations. You will not just interpret rules, you’ll translate them into practical, scalable processes that ensure compliance while optimizing product innovation and company growth.

Your work will directly impact how we safeguard the personal information of our customers, partners, and employees across domestic and international operations.

Why This Role Matters:

Docker is expanding its AI and cloud offerings. Privacy and AI compliance are central to how we build trust with customers and scale responsibly.

You will work directly with senior leadership and influence how privacy and AI governance evolve as our products grow.

This is high-visibility, high-impact work with real ownership and room to expand scope, based on need, as the company evolves.

Role Scope & Responsibilities:

- Lead privacy and AI risk assessments and audits for new and existing products

- Own DPIAs, maintain records of processing activities, and manage DSAR workflows

- Partner with Product and Engineering during launches to assess data use, retention, cross-border transfers, and AI implications

- Proactively recommend updates to DPAs, AI addendums, terms, and related legal documentation as products evolve

- Monitor and analyze changes in global privacy and AI regulations and advise leadership on required updates

- Collaborate with Legal, Compliance, IT, and Security to ensure privacy documentation, controls, and processes remain current and aligned with product changes

- Support investigation and resolution of privacy-related inquiries in partnership with Legal and Security

- Support customer privacy and security questionnaires alongside Sales, Deal Desk, and GRC

- Design and deliver internal privacy and AI training

- Improve and scale privacy tools, intake processes, and cross-functional workflows

Required Qualifications:

- Bachelor’s degree in Computer Science, Engineering, Law, or related field, or equivalent demonstrated professional experience

- 5+ years of hands-on experience in data privacy, data protection, and/or AI within a technology or SaaS company

- Demonstrated experience conducting privacy risk assessments, DPIAs, audits, and implementing mitigation measures

- Practical working knowledge of GDPR and CCPA/CPRA with day-to-day implementation experience

- Experience supporting or implementing AI governance practices, including assessing how AI systems use and process company or customer data

- AI-Native prompting capability.

- Experience collaborating with Security or GRC teams in regulated environments such as SOC 2 or ISO 27001

- Experience managing or materially contributing to DSAR processes and maintaining records of processing activities

- Experience working on DPAs and privacy-related contract terms

- At least one current privacy certification such as CIPP/E or CIPP/US (or equivalent)

Strongly Preferred:

- Direct experience operationalizing data privacy for developer-focused software

- Familiarity with emerging AI regulations such as the EU AI Act

- Familiarity with additional regulatory frameworks such as HIPAA or industry-specific compliance standards

- Experience delivering privacy or compliance training

- Experience supporting customer privacy and security questionnaires

- Experience working with privacy management tools or workflow systems

This role could be a great fit for someone who has been in the weeds building processes, working cross-functionally, and improving programs over time in a developer-focused company.

It is not a fit for someone who has not directly operationalized compliance inside a technology organization.

What to Expect -

First 30 Days:

- Meet with the Head of Legal to understand Docker’s privacy and AI vision

- Review existing privacy policies, documentation, and security controls

- Become familiar with Docker’s data flows and product architecture

- Build relationships with Pro