Back to all jobs

Privacy SME

Booz Allen

May 06

Privacy SME

The Challenge:

When our country’s cybersecurity is on the line, simply reacting is not enough – we need a plan. And when that plan needs to protect enterprise big data systems, we need privacy expertise. That’s why we need you, a privacy professional, to be a front-line defender to assess inbound data sets for privacy implications, provide program-level guidance for Memoranda of Understanding (MOU) and other data sharing agreements, and inform technical and process-related updates to the platform’s sensitive data handling architecture.

In this role, you’ll review the team’s Privacy Threshold Analyses (PTA) analyses, manage system Privacy Impact Assessments (PIA) and System of Record Notice (SORN) updates, and strategize on key issues, such as whether enclave or community space tenets should have their own SORNs. You'll use your knowledge of the Privacy act of 1974 to shepherd users through the nuances of the privacy review process. You’ll apply your knowledge of different Sensitive data types, including Personally Identifiable Information (PII), Protected Health information (PHI), including non-identifiable and identifiable, Business Sensitive, such as Proprietary, Acquisition Sensitive, and Atomic Energy Act, and Classified data. You’ll evaluate how to program policies to stack up to regulations, best practices, and industry standards. As you guide your client through understanding acceptable risk, you'll help ensure the privacy and security of clients and their dependents. You’ll work with the client to help them operate securely as they navigate an evolving IT environment. Join us as we protect the client through privacy policy implementation and maintenance. This position is open to remote delivery anywhere within the U.S., to include the District of Columbia.

Empower change with us.

You Have:

  • 7+ years of experience in a professional work environment
  • 5+ years of experience with privacy and privacy documentation, including PTA
  • Experience with data sets
  • Experience with Memorandums of Agreement (MOA) and MOUs
  • Knowledge of the Privacy Act of 1974
  • Knowledge of different sensitive data types, including PII, PHI, including non-identifiable and identifiable, Business Sensitive, such as Proprietary, Acquisition Sensitive, and Atomic Energy Act, and Classified data
  • Ability to manage who approves giving users access to sensitive data, how to implement and manage access control in a multi-tenant platform with several organizations that each require data security
  • Secret clearance
  • Bachelor's degree

Nice If You Have:

  • Experience with NIST SP 800-53r4 or r5, Security and Privacy Controls for Information Systems and Organizations
  • Experience with data aggregation and joining concerns
  • Knowledge of governing DoD policies and procedures, including OMB_M-17-12, Preparing for and Responding to a Breach in PII, Guidance Regarding Methods for De-identification of PHI in Accordance with the HIPAA Privacy, and the President Executive Order 13526
  • Knowledge of data breach policies
  • Ability to develop products within timeframes and communicate across technical and non-technical stakeholders
  • Ability to learn data catalog tools, including Collibra
  • Master's degree preferred; J.D. preferred a plus
  • Certified Information Privacy Professional (CIPP) certification preferred

Clearance: 

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

Compensation:

The proposed salary range for this position in Colorado is $120,000 to $145,000. Final salary will be determined based on various factors.

At Booz Allen, we celebrate your contributions, provide you with opportunities and choice, and support your total well-being. Our comprehensive benefit offerings include healthcare, retirement plan, insurance programs, commuter program, employee assistance program, paid and unpaid leave programs, education assistance, and childcare benefits.

Build Your Career:

Rewarding work, fun challenges, and a ton of investment in our people—that’s Booz Allen cyber. When you join Booz Allen, we’ll help you develop the career you want.

  • Competitions — From programming competitions at our PyNights (Python competition and learning events) to competing in CTFs, we’ve got plenty of chances for you to show off your skills.
  • Paid Research — Have an innovative idea to explore or hypothesis to test? You can participate in challenges via our crowdsourcing platform, the Garage, and other programs to be awarded dedicated time and/or funding to advance your skills.
  • Cyber University — CyberU has more than 5000 instructor-led and self-paced cyber courses, a free online library that you can access from just about anywhere—including your phone—and certification exam prep guides that include practical assessments to prepare you for your exam.
  • Academic Partnerships — In addition to our tuition reimbursement benefit, we’ve partnered with University of Maryland University College to offer two graduate certificate programs in cybersecurity—fully funded without a tuition cap.
  • Maker/Hackerspaces — Race drones, print 3D gadgets, drink coffee from our Wi-Fi coffee maker, and get hands-on training on tools and tech from in-house experts in our dedicated maker and hackerspaces.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

#LI-AH1, #LI-Remote