Sr. Regulatory Compliance Lead
Pinterest’s Regulatory Compliance team is seeking a Senior Regulatory Compliance Lead to own the Program Management Office (PMO) for our annual EU Digital Services Act (DSA) audit program. In this influential role, you will be responsible for orchestrating all aspects of DSA audit readiness, execution, and response. Partnering across Legal, Product, Engineering, Trust and Safety, and Internal Audit functions, you will ensure that Pinterest meets its DSA audit obligations, driving efficient, auditable, and scalable compliance.
This is a unique opportunity to lead critical work at the intersection of technology innovation, regulatory change, and user impact—owning one of Pinterest’s highest-stakes, cross-functional initiatives. This fast paced, creative role is key to ensuring that Pinterest is complying with its legal requirements and so we can continue to be a safe, positive place on the internet that brings inspiration to millions of people around the world. This role will be based in the U.S. and report to the Director & Assistant General Counsel, Regulatory Compliance.
What you’ll do:
Lead and own the annual DSA audit Program Management Office (PMO) end-to-end, proactively driving program governance, process development, and strategic execution.
Facilitate and coordinate all cross-functional activities between control owners, Internal Audit, EP Compliance TPMs, Legal, internal consultants, and external auditors. Serve as the primary contact for audit execution, schedule and participate in walkthroughs and evidence testing meetings. Proactively develop and manage audit execution timelines and deliverables. Design and conduct training, education, and communication with DSA stakeholders and control owners.
Design, enhance, and maintain effective business and IT general controls documentation. Work with control owners to update, document, and map critical business and IT processes, including process flows, risk and control matrices, data flow diagrams, and evidence retention protocols.
Develop and maintain master evidence lists, advise control owners on submission and organization of audit evidence, streamline evidence collection processes, and identify automation opportunities.
Assess materiality of deficiencies, integrate feedback, and distill key learnings into actionable process enhancements.
Oversee gathering, testing, and tracking of remediation plans from control owners, and coordinate closure of action items and control updates.
Drive implementation and continuous refinement of DSA compliance controls, processes, and training, including implementation of new GRC tool for DSA audits and identifying opportunities for use of GenAI to drive efficiency and scale.
Prepare and deliver executive- and board-level status updates, dashboards, audit summaries, and metrics.
Organize stakeholder feedback sessions, annual reviews, and roadmapping workshops with business, legal, engineering, and external auditors.
What we’re looking for:
Strong audit background and experience. Prior experience as an internal or external auditor is highly beneficial. Candidates who have led or actively participated in regulatory or operational audits (whether within a company or as part of an audit/consulting firm) will have a strong foundation for success in this role.
At least 8 years of relevant experience in operational audit, compliance, and/or program management in the technology sector.
Deep understanding of the EU Digital Services Act, regulatory frameworks, content moderation systems and processes, and technology-driven compliance risks.
Strong project management skills. Proven success directing large-scale, cross-functional projects, preferably as PMO in global enterprises.
Strong understanding of control design, including IT general controls and IT application controls.
Strong analytical, problem-solving, and risk assessment skills.
Exceptional verbal and written communication skills; able to influence and align diverse stakeholders.
Experience engaging with external auditors, regulators, and legal teams; prior “second line of defense” compliance or audit readiness experience preferred.
Ability to operate in ambiguity, anticipate needs, and proactively and independently drive outcomes end-to-end.
Organized and detail-oriented; loves process but knows when to be flexible.
Exceptional judgment and impeccable integrity.
Willingness to work across jurisdictions and time zones.
Relocation Statement:
This position is not eligible for relocation assistance. Visit our PinFlex page to learn more about our working model.
In-Office Requirement Statement:
We let the type of work you do guide the collaboration style. That means we're not always working in an office, but we continue to gather for key moments of collaboration and connection.
This role will need to be in the office for in-person collaboration 1-2 times every 6 months and therefore can be situated anywhere in the country.
#LI-REMOTE
About the job
Apply for this position
Sr. Regulatory Compliance Lead
Pinterest’s Regulatory Compliance team is seeking a Senior Regulatory Compliance Lead to own the Program Management Office (PMO) for our annual EU Digital Services Act (DSA) audit program. In this influential role, you will be responsible for orchestrating all aspects of DSA audit readiness, execution, and response. Partnering across Legal, Product, Engineering, Trust and Safety, and Internal Audit functions, you will ensure that Pinterest meets its DSA audit obligations, driving efficient, auditable, and scalable compliance.
This is a unique opportunity to lead critical work at the intersection of technology innovation, regulatory change, and user impact—owning one of Pinterest’s highest-stakes, cross-functional initiatives. This fast paced, creative role is key to ensuring that Pinterest is complying with its legal requirements and so we can continue to be a safe, positive place on the internet that brings inspiration to millions of people around the world. This role will be based in the U.S. and report to the Director & Assistant General Counsel, Regulatory Compliance.
What you’ll do:
Lead and own the annual DSA audit Program Management Office (PMO) end-to-end, proactively driving program governance, process development, and strategic execution.
Facilitate and coordinate all cross-functional activities between control owners, Internal Audit, EP Compliance TPMs, Legal, internal consultants, and external auditors. Serve as the primary contact for audit execution, schedule and participate in walkthroughs and evidence testing meetings. Proactively develop and manage audit execution timelines and deliverables. Design and conduct training, education, and communication with DSA stakeholders and control owners.
Design, enhance, and maintain effective business and IT general controls documentation. Work with control owners to update, document, and map critical business and IT processes, including process flows, risk and control matrices, data flow diagrams, and evidence retention protocols.
Develop and maintain master evidence lists, advise control owners on submission and organization of audit evidence, streamline evidence collection processes, and identify automation opportunities.
Assess materiality of deficiencies, integrate feedback, and distill key learnings into actionable process enhancements.
Oversee gathering, testing, and tracking of remediation plans from control owners, and coordinate closure of action items and control updates.
Drive implementation and continuous refinement of DSA compliance controls, processes, and training, including implementation of new GRC tool for DSA audits and identifying opportunities for use of GenAI to drive efficiency and scale.
Prepare and deliver executive- and board-level status updates, dashboards, audit summaries, and metrics.
Organize stakeholder feedback sessions, annual reviews, and roadmapping workshops with business, legal, engineering, and external auditors.
What we’re looking for:
Strong audit background and experience. Prior experience as an internal or external auditor is highly beneficial. Candidates who have led or actively participated in regulatory or operational audits (whether within a company or as part of an audit/consulting firm) will have a strong foundation for success in this role.
At least 8 years of relevant experience in operational audit, compliance, and/or program management in the technology sector.
Deep understanding of the EU Digital Services Act, regulatory frameworks, content moderation systems and processes, and technology-driven compliance risks.
Strong project management skills. Proven success directing large-scale, cross-functional projects, preferably as PMO in global enterprises.
Strong understanding of control design, including IT general controls and IT application controls.
Strong analytical, problem-solving, and risk assessment skills.
Exceptional verbal and written communication skills; able to influence and align diverse stakeholders.
Experience engaging with external auditors, regulators, and legal teams; prior “second line of defense” compliance or audit readiness experience preferred.
Ability to operate in ambiguity, anticipate needs, and proactively and independently drive outcomes end-to-end.
Organized and detail-oriented; loves process but knows when to be flexible.
Exceptional judgment and impeccable integrity.
Willingness to work across jurisdictions and time zones.
Relocation Statement:
This position is not eligible for relocation assistance. Visit our PinFlex page to learn more about our working model.
In-Office Requirement Statement:
We let the type of work you do guide the collaboration style. That means we're not always working in an office, but we continue to gather for key moments of collaboration and connection.
This role will need to be in the office for in-person collaboration 1-2 times every 6 months and therefore can be situated anywhere in the country.
#LI-REMOTE