Privacy Specialist

About The Position

Requirements

• Bachelor’s degree in Privacy, Information Security, Law, Public Policy, Information Technology , or a related field.
• 5+ years of experience in privacy, data protection, compliance, or a related field.
• Demonstrated experience working with federal privacy requirements and government environments.
• Current privacy certification such as CIPP, CIPM, or equivalent .
• Proven experience with privacy program implementation, assessments, and compliance activities.
• Strong knowledge of U.S. federal privacy laws and regulations , including the Privacy Act, HIPAA, GDPR, CCPA, OMB Circular A-130 , and NIST Privacy Framework .
• Solid understanding of data protection principles , privacy frameworks, and best practices.
• Proficiency in conducting privacy impact assessments (PIAs) , risk assessments, and gap analyses.
• Strong analytical skills with a methodical, detail-oriented approach to compliance.
• Ability to translate complex legal and regulatory privacy requirements into clear, actionable guidance.
• Excellent verbal and written communication skills for interaction with technical teams, leadership, and non-technical stakeholders.
• Familiarity with security concepts, including encryption, data protection controls, and incident response.
• Ability to handle privacy incident response and coordination with stakeholders.
• Strong knowledge of privacy governance frameworks , including FIPPs , NIST , and ISO standards .

Nice To Haves

• Master’s degree in Law, Cybersecurity, Information Systems, Public Policy , or a related field.
• Additional privacy certifications such as CIPT, FIP, CDPSE, or equivalent .
• Legal background, privacy law education, or experience working with privacy attorneys.
• Experience working with classified systems and secure environments.
• Knowledge of emerging privacy technologies , including privacy-enhancing technologies (PETs) and privacy automation tools .
• Familiarity with international privacy laws and cross-border data transfer regulations.
• Understanding of AI/ML privacy implications , privacy engineering principles, and risk mitigation related to automated systems.
• Experience in privacy tool implementation , including data discovery, classification, and data loss prevention (DLP) tools.
• Experience developing and delivering privacy training, workshops, or seminars .
• Public speaking experience and/or published privacy-related articles or research.
• Experience supporting privacy compliance for federal systems , including compliance with FISMA , FedRAMP , and CMMC .
• Strong risk management expertise , including alignment with NIST RMF .

Responsibilities

• Develop, implement, and maintain privacy policies, procedures, and standards.
• Conduct Privacy Impact Assessments (PIAs) for new and existing systems, programs, and processes.
• Monitor compliance with federal and applicable privacy regulations, including GDPR, CCPA, HIPAA , and the Privacy Act of 1974 .
• Evaluate data collection practices to ensure proper consent mechanisms and data minimization principles.
• Provide expert guidance on privacy-by-design and privacy-by-default principles in the development of systems and processes.
• Respond to privacy-related inquiries, incidents, data breaches, and coordinate response efforts.
• Collaborate with security teams to ensure the alignment of privacy and data protection controls.
• Perform privacy risk assessments and recommend risk mitigation strategies.
• Continuously monitor the effectiveness of the privacy program and recommend improvements.
• Maintain accurate privacy documentation, including data inventories, records of processing, and compliance reports.
• Support privacy audits, assessments, and compliance reporting requirements to federal agencies and stakeholders.
• Assist in the development and delivery of privacy training and awareness initiatives.

Benefits

• 401(k) matching
• Competitive salary
• Health insurance
• Paid time off