Privacy Specialist

I

IMAGINEEER LLC

Privacy Specialist

Arlington, VA
Full Time
Paid
  • Responsibilities

    Benefits:

    401(k)

    Dental insurance

    Health insurance

    Paid time off

    Vision insurance

    Job title: Privacy Specialist

    Location / Work type: Remote-Full Time

    Clearance: Must be able to get a Public Trust

    About the Company:

    Imagineeer is leading the charge in data transformation, impacting sectors from healthcare to government operations, green energy, supply chain, and sports. Leveraging cutting-edge technologies like AI, post-quantum security, and blockchain, we empower decision-makers and fortify data security. We specialize in federal agency modernization; we collaborate closely to transform operational ecosystems, addressing unique challenges with acquisition support and stakeholder communication. Imagine Lab, our digital think tank, explores innovation through employee engagement and machine-generated insights. If you're passionate about reimagining operations and empowering organizations to evolve proactively, join us in shaping the future.

    About this Role:

    We are seeking an experienced Privacy Specialist to support the implementation and compliance of privacy programs for our federal government clients. The ideal candidate will have a comprehensive understanding of federal privacy requirements, regulations, and best practices, and will possess the ability to translate complex privacy requirements into actionable, mission-driven solutions.

    This role offers an opportunity to play a pivotal role in shaping privacy programs and protecting sensitive government data. The Privacy Specialist will work closely with cross-functional stakeholders to implement privacy controls, mitigate risks, and ensure ongoing compliance with applicable laws and policies.

    Key Responsibilities:

    Develop, implement, and maintain privacy policies, procedures, and standards.

    Conduct Privacy Impact Assessments (PIAs) for new and existing systems, programs, and processes.

    Monitor compliance with federal and applicable privacy regulations, including GDPR, CCPA, HIPAA, and the Privacy Act of 1974.

    Evaluate data collection practices to ensure proper consent mechanisms and data minimization principles.

    Provide expert guidance on privacy-by-design and privacy-by-default principles in the development of systems and processes.

    Respond to privacy-related inquiries, incidents, data breaches, and coordinate response efforts.

    Collaborate with security teams to ensure the alignment of privacy and data protection controls.

    Perform privacy risk assessments and recommend risk mitigation strategies.

    Continuously monitor the effectiveness of the privacy program and recommend improvements.

    Maintain accurate privacy documentation, including data inventories, records of processing, and compliance reports.

    Support privacy audits, assessments, and compliance reporting requirements to federal agencies and stakeholders.

    Assist in the development and delivery of privacy training and awareness initiatives.

    Qualifications and Skills:

    Bachelor’s degree in Privacy, Information Security, Law, Public Policy, Information Technology, or a related field.

    5+ years of experience in privacy, data protection, compliance, or a related field.

    Demonstrated experience working with federal privacy requirements and government environments.

    Current privacy certification such as CIPP, CIPM, or equivalent.

    Proven experience with privacy program implementation, assessments, and compliance activities.

    Strong knowledge of U.S. federal privacy laws and regulations, including the Privacy Act, HIPAA, GDPR, CCPA, OMB Circular A-130, and NIST Privacy Framework.

    Solid understanding of data protection principles, privacy frameworks, and best practices.

    Proficiency in conducting privacy impact assessments (PIAs), risk assessments, and gap analyses.

    Strong analytical skills with a methodical, detail-oriented approach to compliance.

    Ability to translate complex legal and regulatory privacy requirements into clear, actionable guidance.

    Excellent verbal and written communication skills for interaction with technical teams, leadership, and non-technical stakeholders.

    Familiarity with security concepts, including encryption, data protection controls, and incident response.

    Ability to handle privacy incident response and coordination with stakeholders.

    Strong knowledge of privacy governance frameworks, including FIPPs, NIST, and ISO standards.

    Desired Skills and Competencies:

    Master’s degree in Law, Cybersecurity, Information Systems, Public Policy, or a related field.

    Additional privacy certifications such as CIPT, FIP, CDPSE, or equivalent.

    Legal background, privacy law education, or experience working with privacy attorneys.

    Experience working with classified systems and secure environments.

    Knowledge of emerging privacy technologies, including privacy-enhancing technologies (PETs) and privacy automation tools.

    Familiarity with international privacy laws and cross-border data transfer regulations.

    Understanding of AI/ML privacy implications, privacy engineering principles, and risk mitigation related to automated systems.

    Experience in privacy tool implementation, including data discovery, classification, and data loss prevention (DLP) tools.

    Experience developing and delivering privacy training, workshops, or seminars.

    Public speaking experience and/or published privacy-related articles or research.

    Experience supporting privacy compliance for federal systems, including compliance with FISMA, FedRAMP, and CMMC.

    Strong risk management expertise, including alignment with NIST RMF.

    Additional Information:

    This is a remote position, with periodic virtual collaboration required.

    Must be a U.S. Citizen capable of obtaining a Public Trust clearance.

    This is a remote position.