Shaurya Sengar
Biography
Shaurya Sengar is a recognized expert in privacy engineering and compliance infrastructure, currently serving as a Senior Staff Software Engineer at Meta Platforms Inc. He leads cross-functional product and infrastructure teams to build platforms for detecting and distributing compliance related work across Privacy, Security, Accessibility domains supporting adherence with global regulations such as the FTC Consent Order, CCPA, GDPR etc. He has driven company-wide cultural and operational changes that improved privacy execution, engineering efficiency, and developer sentiment.
He has spearheaded the design and deployment of Meta?s systems that batch and distribute compliance tasks across tens of thousands of engineers?enabling proactive and accountable privacy and security practices across Meta?s global product ecosystem. His leadership in building scalable, distributed compliance tooling directly enables Meta to safeguard the privacy and security of billions of users worldwide.
Beyond engineering, Shaurya is a sought-after peer reviewer for top-tier journals (ACM TOPS, IEEE Transactions on Big Data, IJAIP), presenter at leading conferences like Usenix SOUPS, and contributes as a Technical Program Committee member for premier conferences including PyTorch Conference, IEEE ISoPE, ICCSAI, and ICAMAC. He also serves as a judge for international hackathons, evaluating innovation and technical excellence.
Shaurya holds a B.S. in Computer Science with minors in Software Engineering and Business Administration from Carnegie Mellon University, and combines deep technical acumen with broad leadership in privacy, security, software engineering and AI.
Research Interest
Scaling Privacy and Security Compliance in Large Organizations: Platforms, Processes, and Best Practices
Abstract
Ensuring privacy and security compliance at scale presents significant challenges for large organizations. Achieving this requires a blend of centralized oversight from privacy and security teams, alongside decentralized execution by subject matter experts embedded within product teams. Coordinating these efforts across tens of thousands of engineers, numerous products, and a rapidly evolving regulatory landscape demands robust, systematic solutions for distributing and managing compliance-related work.
This session will examine how large organizations can develop scalable, general-purpose platforms to break down extensive security and privacy initiatives into manageable workstreams, efficiently distribute tasks across teams, and track execution through to completion. We will explore strategies for streamlining compliance efforts, optimizing work allocation among thousands of engineers, and maintaining both accountability and a positive developer experience to ensure reliable outcomes.
Attendees will gain practical insights into key challenges such as vulnerability discovery, SME triage, work prioritization, load balancing, and ensuring timely and accurate remediation, and how these can be addressed within large organizations. We will discuss how automated, scalable approaches can proactively meet emerging regulatory requirements, sustain compliance with existing mandates, and mitigate risks that require expert input.
By the end of this talk, participants will understand how to design and implement a scalable security and privacy compliance platform and program that drives efficiency, reduces risk, and ensures regulatory readiness in complex, fast-moving environments.
Keywords:
Privacy, Security, Large organizations, Scalable platforms, Workstream Management, Task distribution, Automated compliance, Developer Experience, Cybersecurity, Regulatory Readiness, Accountability
