Privacy Policy Analyst

This is a fully remote position, open to applicants in Washington.

📋 Description

• Oversee, analyze, and interpret federal privacy legislation, regulations, and policies, including the Privacy Act of 1974 and the E-Government Act of 2002.

• Offer guidance on privacy-related directives issued by the Office of Management and Budget (OMB) and other regulatory bodies.

• Create, update, and implement privacy policies, procedures, and guidance to ensure compliance within the organization.

• Conduct privacy compliance evaluations of existing and upcoming programs, systems, and initiatives.

• Assist in the development and upkeep of privacy documentation, including policies, impact assessments, and compliance reports.

• Assess organizational practices against NIST standards and guidelines, including NIST SP 800-37 (Risk Management Framework) and NIST SP 800-53 (Security and Privacy Controls).

• Work collaboratively with cross-functional stakeholders (legal, IT, security, and program teams) to ensure that privacy considerations are integrated into operations and systems.

• Identify deficiencies in privacy compliance and suggest corrective measures and process enhancements.

• Remain updated on changing federal privacy requirements and emerging best practices.

⛳️ Requirements

• Bachelor’s degree in law, Public Policy, Information Security, or a related field, or equivalent professional experience.

• Proven experience in analyzing and ensuring compliance with federal privacy laws and policies.

• In-depth knowledge of the Privacy Act of 1974, E-Government Act of 2002, and OMB privacy guidance.

• Experience in developing and implementing privacy policies and procedures.

• Familiarity with NIST frameworks, including NIST SP 800-37 and NIST SP 800-53.

• Excellent analytical, writing, and communication skills.

• Capability to work independently and manage multiple priorities in a client-facing setting.

• Professional certifications such as CIPP, CIPT, or CIPM are preferred.

• Experience supporting federal agencies or working in government contracting environments.

• Familiarity with privacy impact assessments (PIAs), system of records notices (SORNs), and data governance practices.

• Advanced degree (preferred - JD, MPP, MPA, or a related field).

🏝️ Benefits

• Medical, dental, vision, STD, accident, life, hospital insurance, FSA, HSA, 401K match, and professional development stipend.

• Community service and employee engagement events.