Back to all jobs

Privacy and Cybersecurity Risk Consultant

Booz Allen

Dec 06

AWS

Privacy and Cybersecurity Risk Consultant

Key Role:

Apply consulting skills with privacy and cybersecurity knowledge to support clients in managing privacy and cybersecurity risks while preparing for future needs. Establish a risk management strategy for the organization that includes a determination of risk tolerance. Advise senior management on risk levels and security posture. Review and draft privacy compliance documentation as needed, including Privacy Impact Assessments (PIAs). Develop and update policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational privacy and cyber activities. Develop, update, or maintain standard operating procedures (SOPs). Work across departments and business units to implement organization’s privacy principles and programs and align privacy objectives with security objectives. Review and draft privacy disclosure statements based on current laws. Assess compliance and maturity of Federal privacy programs against Office of Management and Budget (OMB) and National Institute of Standards and Technology (NIST) privacy and security requirements and standards. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Basic Qualifications:

  • 2+ years of experience developing information security and privacy policy
  • Experience with developing compliance documentation, including System Privacy Plans (SPPs), PIAs, and System of Records Notices (SORNs)
  • Knowledge of wireless technologies, including cellular, satellite, and GSM such as the basic structure, architecture, and design of modern wireless communications systems
  • Ability to develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities
  • Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
  • Bachelor’s degree in CS, MIS, IT, or EE

Additional Qualifications:

  • Experience monitoring advancements in information privacy laws to ensure organizational adaptation and compliance
  • Experience with assessing maturity and compliance of privacy programs using different frameworks and standards
  • Experience with various Governance, Risk, and Compliance (GRC) tools for monitoring and tracking privacy controls
  • Ability to work across departments and business units to implement organization’s privacy principles and programs, and align privacy objectives with security objectives
  • Ability to tailor technical and planning information to a customer’s level of understanding
  • Public Trust
  • IAPP Certification, including CIPP/US, CIPP/G, CIPT, or CIPM

Vetting:

Applicants selected may be subject to a government investigation and may need to meet eligibility requirements of the U.S. government client.

Compensation:

The proposed salary range for this position in Colorado is 70,000 to 74,00. Final salary will be determined based on various factors.

At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.