Lead Cyber Privacy Analyst

At phia we hire talented and passionate people who are focused on collaborative, meaningful work, providing technical and operational subject matter expertise and support services to our partners and clients.
phia is seeking a Lead Cyber Privacy Analyst to oversee a team and provide strategic direction and support for privacy initiatives within a federal program. Responsibilities will include managing the team and stakeholders, conducting assessments, shaping policies, and providing expert guidance on emerging privacy issues. This will be a hybrid role reporting on-site with some capability to telework. The qualified individual will ideally be located in the Washington, DC or Reston, VA area (DC/MD/VA metro area). 

What You'll Do

• Act as the primary liaison with the customer, coordinating efforts across the program Privacy Office.
• Execute privacy program activities in alignment with relevant regulations and guidelines, including the Privacy Act of 1974, the E-Government Act of 2002, the OMB privacy policy, and NIST standards.
• Develop and maintain System of Records Notices (SORNs), Privacy Impact Assessments (PIAs), and System Privacy Plans, providing guidance to ensure accuracy and completeness.
• Monitor privacy compliance activities for systems in Xacta, ensuring timely updates of relevant privacy documents.
• Evaluate privacy controls and collaborate with system owners to implement risk mitigation strategies within the organization's framework.
• Attend and contribute to privacy-related meetings, providing updates and support as needed.
• Prepare responses, comments, and materials for privacy reviews and assignments.
• Generate regular status reports and update tracking systems with relevant information on privacy activities.
• Provide leadership and guidance to a team of privacy specialists, fostering a collaborative and high-performing work environment.
• Set clear objectives and performance expectations for team members, ensuring alignment with organizational goals and priorities.
• Conduct regular team https://www.cisa.gov/meetings and one-on-one sessions to review progress, provide feedback, and address any challenges or concerns.
• Coordinate workload distribution and task assignments among team members, optimizing efficiency and productivity.
• Mentor and develop team members, identifying opportunities for skills enhancement and career growth.
• Serve as a subject matter expert and resource for team members, offering support and assistance on complex privacy issues and inquiries.
• Foster a culture of continuous improvement and innovation within the team, encouraging creative solutions and best practices.
• Collaborate with other departments or stakeholders to ensure alignment and integration of privacy initiatives with broader organizational objectives.
• Represent the team in meetings, presentations, and discussions with senior management or external partners, advocating for the team's needs and priorities.
• Monitor team performance metrics and outcomes, tracking progress towards goals and identifying areas for improvement or intervention.

Education + Requirements

• Specialized experience in Federal Privacy Requirements
• Minimum 7 years of relevant experience, or
• AA/AS with 5 years' experience. or
• BA/BS with 3 years' experience, or
• MA/MS with 1 year experience, or
• Proficiency with NIST Special Publications 800 series and Risk Management Framework (RMF).
• Familiarity with cloud platform offerings, incident response procedures, and security compliance frameworks (FedRAMP, FISMA, etc.).
• Experience with eGRC tools (Telos Xacta 360, RSA Archer, DOD eMASS) and vulnerability management tools (Nessus, Qualys).
• Knowledge of operating environments including Windows software, Microsoft Office 365 suite, and other relevant tools for workflow management tools.

Preferred Certifications

• Certified Information Privacy Manager (CIPM)
• Certified Information Systems Security Professional (CISSP)
• Certified Data Privacy Solutions Engineer (CDPSE)
• Certified Information Security Manager (CISM
• Certified GDPR Practitioner (CDPO)
• Privacy+ Certification

Security Clearance

• U.S. citizenship
• Ability to achieve Public Trust or higher government clearance.

Nice to have

• Experience or proficiency with CDM Toolsets especially Elastic and Splunk

#LI-LC1
Who You Are A proactive problem solver that appreciates the challenges of working in a fast-paced, dynamic environment.Intellectually curious with a genuine desire to learn and advance your career.An effective communicator, both verbally and in writing.Customer service-oriented and mission-focused.Critical thinker with excellent problem-solving skills If your experience and qualifications aren’t a match for this position, you will remain in our database for consideration for future opportunities that may be a better fit.
Who We Arephia, LLC is a Northern Virginia-based, small business established in 2011 with a focus on Cyber Intelligence, Cyber Security/Defense, Intrusion Analysis & Incident Response, Cyber Architecture & Capability Analysis, Cyber Policy & Strategy, and Information Assurance/Security. we proudly support various agencies and offices within the Department of Defense (DoD), Federal government, and private/commercial entities.phia values work-life balance and offers the following benefits to full-time employees: Comprehensive medical insurance to include dental and visionShort Term & Long-Term Disability 401k Retirement Savings Plan with Company MatchTuition and Professional Development Assistance Flex Spending Accounts (FSA)
phia does not discriminate on the basis of race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in the provision of employment opportunities and benefits.