Naomi Lefkovitz



Senior Privacy Policy Advisor, Program Manger, Privacy Engineering

Naomi Lefkovitz is the Senior Privacy Policy Advisor in the Information Technology Lab at the National Institute of Standards and Technology, U.S. Department of Commerce. She leads the privacy engineering program, which focuses on developing privacy risk management processes and integrating solutions for protecting individuals’ privacy into information technologies, including digital identity services, IoT, smart cities, big data, mobile, and artificial intelligence.

FierceGovernmentIT named Ms. Lefkovitz on their 2013 “Fierce15” list of the most forward-thinking people working within government information technology, and she is a 2014 and 2018 Federal 100 Awards winner.

Before joining NIST, she was the Director for Privacy and Civil Liberties in the Cybersecurity Directorate of the National Security Council in the Executive Office of the President. Her portfolio included the National Strategy for Trusted Identities in Cyberspace as well as addressing the privacy and civil liberties impact of the Obama Administration’s cybersecurity initiatives and programs.

Prior to her tenure in the Obama Administration, Ms. Lefkovitz was a senior attorney with the Division of Privacy and Identity Protection at the Federal Trade Commission. Her responsibilities focused primarily on policy matters, including legislation, rulemakings, and business and consumer education in the areas of identity theft, data security and privacy.

At the outset of her career, she was Assistant General Counsel at CDnow, Inc., an early online music retailer.

Ms. Lefkovitz holds a B.A. with honors in French Literature from Bryn Mawr College and a J.D. with honors from Temple University School of Law.


Contributions by Naomi Lefkovitz

  • Privacy Metrics: Measuring Privacy Programs
    Web Conference Speaker
  • NIST Privacy Framework and CMMI Integration
    Speaker at Virtual Los Angeles and Northern Virginia KnowledgeNet: March 17, 2021
  • How NIST Protects Privacy in an Ever-Changing Compliance Landscape
    Web Conference Speaker
  • How Cybersecurity Supports Privacy
    Speaker at Virtual Bermuda KnowledgeNet: 21 October 2020
  • Raising The Privacy Standard
    Speaker at Virtual Melbourne KnowledgeNet: 1 October 2020
  • Privacy Framework: Improving Privacy Through Enterprise Risk Management
    Speaker at IAPP Summit Sessions 2020 Online
  • Speaker at IAPP Global Privacy Summit 2020 - Canceled
  • NIST Privacy Framework: V1.0 is Coming!
    Speaker at IAPP Privacy. Security. Risk. 2019
  • Managing Privacy Risk Using the Risk Management Framework (RMF)
    Speaker at Privacy. Security. Risk. 2018
  • Managing Risk for the Internet of Things
    Speaker at Privacy. Security. Risk. 2018
  • Rapporteur Reports: Setting the Agenda for the Section
    Speaker at IAPP Privacy Engineering Section Forum 2018
  • Working Session: Breakouts
    Speaker at IAPP Privacy Engineering Section Forum 2018
  • The Researchers’ View: Privacy Engineering on the Bleeding Edge
    Moderator at IAPP Privacy Engineering Section Forum 2018
  • Managing Privacy Risk 3:30-5:30
    Speaker at Global Privacy Summit 2018
  • Meeting Challenges of Privacy, Security & GDPR Compliance in the Cloud 9:30-5:30
    Speaker at Global Privacy Summit 2018
  • Member of Privacy Engineering Section Advisory Board 2018 - 2019
  • Beyond Compliance: Managing Privacy Risk
    Speaker at Global Privacy Summit 2017
  • Identity Assurance: Can We Have Population-Scale ID AND Privacy?
    Speaker at IAPP Europe Data Protection Intensive 2017