galaxy venture portfolio, portfolio company, venture investing, stage-agnostic, investments, protocols, scaling solutions, DeFi, web3, infrastructure,

Galaxy Ventures

Portfolio Jobs

Apply to jobs in the Galaxy Ventures portfolio.

Privacy Manager, Internal Audit



Warsaw, Poland
Posted on Friday, May 24, 2024

Our Purpose

We work to connect and power an inclusive, digital economy that benefits everyone, everywhere by making transactions safe, simple, smart and accessible. Using secure data and networks, partnerships and passion, our innovations and solutions help individuals, financial institutions, governments and businesses realize their greatest potential. Our decency quotient, or DQ, drives our culture and everything we do inside and outside of our company. We cultivate a culture of inclusion for all employees that respects their individual strengths, views, and experiences. We believe that our differences enable us to be a better team – one that makes better decisions, drives innovation and delivers better business results.

Title and Summary

Privacy Manager, Internal Audit Job Description – Manager, Internal Audit – Warsaw, Poland – April 2024
Role known internally as: Manager, Internal Audit


• Do you thrive in a fast-paced environment where both attention to detail and focus on the big picture are equally and critically important?
• Are you eager to understand Mastercard’s global business and provide senior management with insights and perspectives on governance, risk management, and internal controls?
• Have you been successful as part of a global team with diverse skills and experiences?
The Mastercard Internal Audit team provides independent and objective assurance and advisory services to assess and enhance the effectiveness and efficiency of Mastercard’s governance, risk management, internal controls, processes, and activities, globally.
This position will be responsible for contributing to multiple projects and activities within the Mastercard Internal Audit team, with a primary focus on privacy and data protection projects. This position will be based in Warsaw, Poland, and will be reporting to the Director, Internal Audit, Europe Region.


• Be part of a dynamic global team and collaborate with colleagues, locally and from other Mastercard offices around the world. Champion and advocate for strong governance, risk management, and internal controls. Partner with other risk and control functions across the organization to strengthen Mastercard’s three lines of defense model.
• Contribute actively to the effective and efficient delivery of assigned assurance or advisory projects across various markets, products, services, technology, or functional areas, as driven by the Internal Audit annual plan. Initially, as a project team member, own specific scope areas within assigned projects, then increase the number of assigned scope areas, provide guidance and supervision to more junior project team members, and lead selected projects.
• Within each assigned project and scope area, understand specific risks (e.g., strategic, operational, financial, legal, regulatory, technology, other) and business requirements. Develop and execute risk-based testing, and document supporting workpapers in a complete, accurate, and timely manner. Evaluate compliance with relevant policies, procedures, and requirements, assess controls design adequacy and operating effectiveness, and identify controls gaps and improvement opportunities. Develop and articulate draft reportable issues for validation with management and understand related risk, impact, and root cause. Partner with management to develop action plans that remediate gaps identified in a sustainable manner. Track, monitor, and validate the adequate and timely completion of action plans by management.
• While growing and developing in the role, take ownership of Internal Audit’s primary relationship for one or more business areas. Leverage that knowledge to contribute to the Internal Audit annual risk assessment and planning process, leading to the development of the Internal Audit annual plan.
• Within the Mastercard Internal Audit team, this role will have a primary focus on privacy and data protection projects. This role is intended to become the Subject Matter Expert (SME) for all privacy and data protection matters for the Mastercard Internal Audit team.

All About You

• Deep knowledge, expertise, and prior successful experience with privacy and data protection regulations, such as the EU General Data Protection Regulation (GDPR) and Binding Corporate Rules (BCRs). Relevant professional certifications (e.g., CIPP/E or CIPM) are highly desirable.
• Prior successful experience in internal and/or external audit, with specific expertise in auditing/testing GDPR and BCR compliance.
• Ability to quickly understand and critically analyze complex processes, identify and assess potential risks, and determine whether those risks are appropriately managed. Proficiency in various audit techniques such as inquiry, walkthrough, validation, reperformance, sampling, analytics, problem-solving, and root cause analysis.
• Transferrable experience and commitment to the field of internal audit, demonstrated through professional credentials (e.g., CIA, CISA, CPA, or equivalent), or prior experience in operations, finance, legal, regulatory, technology, compliance, internal controls, or any similar role within Mastercard or other global organizations, with a strong focus on risk management.
• Excellent interpersonal and communication skills, both written and verbal, including professional fluency in English.
• Ability to work well independently and within a team, deliver high-quality work within budget and on time. You should be intellectually curious, self-motivated, passionate, service-minded, culturally attuned, and flexible.
• Committed to self-development, open to constructive feedback, and actively seeking opportunities to capitalize on strengths and address development areas.
• Bachelor’s degree or equivalent, ideally in business, economics, accounting, finance, or law; advanced education is desirable.
• Proficient with MS Excel, Word, PowerPoint, and familiar with ACL or similar data analytics/auditing tools.
• Ability to travel up to 25%

Corporate Security Responsibility

All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:

  • Abide by Mastercard’s security policies and practices;

  • Ensure the confidentiality and integrity of the information being accessed;

  • Report any suspected information security violation or breach, and

  • Complete all periodic mandatory security trainings in accordance with Mastercard’s guidelines.