Lead Cyber Privacy Analyst
Washington, DC
Full Time Senior-level / Expert Clearance required USD 75K - 140K *
phia, LLC
At phia, trust us to solve the complex challenges of our connected world through top-tier cyber intelligence & threat hunting. Contact us.phia is seeking a Lead Cyber Privacy Analyst to oversee a team and provide strategic direction and support for privacy initiatives within a federal program. Responsibilities will include managing the team and stakeholders, conducting assessments, shaping policies, and providing expert guidance on emerging privacy issues. This will be a hybrid role reporting on-site with some capability to telework. The qualified individual will ideally be located in the Washington, DC or Reston, VA area (DC/MD/VA metro area).
What You'll Do
- Act as the primary liaison with the customer, coordinating efforts across the program Privacy Office.
- Execute privacy program activities in alignment with relevant regulations and guidelines, including the Privacy Act of 1974, the E-Government Act of 2002, the OMB privacy policy, and NIST standards.
- Develop and maintain System of Records Notices (SORNs), Privacy Impact Assessments (PIAs), and System Privacy Plans, providing guidance to ensure accuracy and completeness.
- Monitor privacy compliance activities for systems in Xacta, ensuring timely updates of relevant privacy documents.
- Evaluate privacy controls and collaborate with system owners to implement risk mitigation strategies within the organization's framework.
- Attend and contribute to privacy-related meetings, providing updates and support as needed.
- Prepare responses, comments, and materials for privacy reviews and assignments.
- Generate regular status reports and update tracking systems with relevant information on privacy activities.
- Provide leadership and guidance to a team of privacy specialists, fostering a collaborative and high-performing work environment.
- Set clear objectives and performance expectations for team members, ensuring alignment with organizational goals and priorities.
- Conduct regular team https://www.cisa.gov/meetings and one-on-one sessions to review progress, provide feedback, and address any challenges or concerns.
- Coordinate workload distribution and task assignments among team members, optimizing efficiency and productivity.
- Mentor and develop team members, identifying opportunities for skills enhancement and career growth.
- Serve as a subject matter expert and resource for team members, offering support and assistance on complex privacy issues and inquiries.
- Foster a culture of continuous improvement and innovation within the team, encouraging creative solutions and best practices.
- Collaborate with other departments or stakeholders to ensure alignment and integration of privacy initiatives with broader organizational objectives.
- Represent the team in meetings, presentations, and discussions with senior management or external partners, advocating for the team's needs and priorities.
- Monitor team performance metrics and outcomes, tracking progress towards goals and identifying areas for improvement or intervention.
Education + Requirements
- Specialized experience in Federal Privacy Requirements
- Minimum 7 years of relevant experience, or
- AA/AS with 5 years' experience. or
- BA/BS with 3 years' experience, or
- MA/MS with 1 year experience, or
- Proficiency with NIST Special Publications 800 series and Risk Management Framework (RMF).
- Familiarity with cloud platform offerings, incident response procedures, and security compliance frameworks (FedRAMP, FISMA, etc.).
- Experience with eGRC tools (Telos Xacta 360, RSA Archer, DOD eMASS) and vulnerability management tools (Nessus, Qualys).
- Knowledge of operating environments including Windows software, Microsoft Office 365 suite, and other relevant tools for workflow management tools.
Preferred Certifications
- Certified Information Privacy Manager (CIPM)
- Certified Information Systems Security Professional (CISSP)
- Certified Data Privacy Solutions Engineer (CDPSE)
- Certified Information Security Manager (CISM
- Certified GDPR Practitioner (CDPO)
- Privacy+ Certification
Security Clearance
- U.S. citizenship
- Ability to achieve Public Trust or higher government clearance.
Nice to have
- Experience or proficiency with CDM Toolsets especially Elastic and Splunk
Who You Are A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.Intellectually curious with a genuine desire to learn and advance your career.An effective communicator, both verbally and in writing.Customer service-oriented and mission-focused.Critical thinker with excellent problem-solving skills If your experience and qualifications aren’t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.
Who We Arephia, LLC is a Northern Virginia-based, small business established in 2011 with a focus on Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security. we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.phia values work-life balance and offers the following benefits to full-time employees: Comprehensive medical insurance to include dental and visionShort Term & Long-Term Disability 401k Retirement Savings Plan with Company MatchTuition and Professional Development Assistance Flex Spending Accounts (FSA)
phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISA CISM CISSP Clearance Cloud Compliance DoD eMASS FedRAMP FISMA GDPR Incident response Nessus NIST Privacy Qualys Risk management RMF RSA Security Clearance Splunk Strategy Vulnerability management Windows
Perks/benefits: 401(k) matching Career development Health care Insurance Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DoD-related jobs