IA Privacy Analyst

at  KARTHIK CONSULTING

KNOWLEDGE AND SKILLS:

• Bachelor’s Degree in IT related field and/or seven (7) + years of experience in IA or compliance role.
• Security related certification (Comptia Sec +, CISSP, CGRC, etc) or substitute 2 years specialized experience.
• In-depth knowledge applying government privacy laws, regulations, principles, and policies in relation to public release.
• Experience working with Federal Information Security Modernization Act (FISMA) requirements and NIST guidelines.
• Knowledge of Freedom Information Act, Privacy Act, Federal and Agency records management systems, regulations, principles and policies.
• Demonstrated experience assessing risk, auditing, advising on security controls to determine organizational impact.
• Ability to plan, organize, and direct multiple priorities and tasks.Hands-on Experience using the Cyber Security Assessment and Governance Risk and compliance (GRC) Tools.
• Strong interpersonal and communication skills.
  Karthik Consulting is hiring an IA Privacy Analyst. This is a full-time remote position, working among a high performing team responsible for compliance, oversight, and security for the Environmental Protection Agency (EPA). The EPA Office of Information Security and Privacy (OISP) is responsible for developing and maintaining agency wide information security and privacy programs.
  The ideal candidate will have strong information privacy compliance skills and the ability to lead tasks with limited supervision. The IA Privacy Analyst will be part of a federal National Privacy Program (NPP), which is responsible for implementing and maintaining agency level privacy policies, procedures, standards, and guidelines. The IA Privacy Analyst will support compliance with the Agency’s Privacy Program; assessing Privacy Threshold Analysis questionnaires, reviewing, and approving Privacy Impact Assessments (PIAs); coordinating the publication of System of Record Notices (SORNs) with program offices; maintaining the official privacy act files, the Agency Federal Information System Registry, and providing and training or training opportunities for all key privacy personnel.
  Karthik Consulting requires background checks, where permitted, by law. Karthik Consulting is an E-Verify Employer. Security clearances may only be granted to U.S. citizens. This position will require the ability to get a Public Trust Clearance. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information. Karthik Consulting is proud to be an Affirmative Action/Equal Opportunity Employer. Karthik Consulting is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding, or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state, or local laws.
  Job Category: Analyst
  Job Type: Full Time
  Job Location: Remote
  Education: Bachelor’s Degree in IT related field and/or seven (7) + years of experience in IA or compliance role
  Clearance: Public Trust Clearance
  Certification: Must be able to obtain Security+ certification within 90 days of hir

• Provide subject matter expertise on privacy and data protection to help incorporate privacy-by-design into processes, critical projects, and initiatives.
• Review PTA questionnaires used to determine if an information technology system contains PII, whether a PIA is required, whether a SORN is required, and if any other privacy requirements apply to the system.
• Evaluate PIA to ensure conformance with applicable legal, regulatory, and policy requirements for privacy; determine the risks and effects; and evaluate protections and alternative processes to mitigate potential privacy risks.
• Lead and coordinate privacy data calls across the Agency.
• Assist with the evaluation of NIST SP 800-53 Privacy controls which will be used to safeguard and secure PIA in agency systems operating in the information environment.
• Maintain the Federal Information System (FIS) Registry for Privacy.
• Train Agency Liaison Privacy Official (LPOs) and other stakeholders, as required, on privacy matters, topics, trends, and issues relating to PTAs and PIAs.
• Ensure that the agency is complying with privacy laws, statutes, policies, and regulatory documents to safeguard PII and that agency stakeholders are addressing privacy requirements, as outlined in published directives, and are implemented with accurate information.
• Keep abreast of current developments in privacy laws, regulations, and industry standards.
• Collect customer satisfaction and internal service performance feedback to foster continual improvement.