Manager, Privacy, Maximus, Remote

The Privacy Official Office supports the Company’s mission of Helping Government Serve the People by fostering a culture of privacy awareness, establishing privacy controls, and verifying compliance across all Maximus operations. The Privacy Official Office employs a team with varied backgrounds and educational‐ and work‐experiences. The Privacy Manager has the integral role of promoting the Privacy Official Office’s mission of safeguarding the personal information entrusted to Maximus by its employees and clients. 

Detailed Position Description:

The Privacy Manager’s primary responsibility is to investigate and document the risk resulting from all reported and assigned privacy incidents, including applying legal analysis to make a final breach determination, determine root causes, identify potential process improvements, recommend sanctions, and suggest training recommendations The Privacy Manger completes tasks to meet legal, regulatory, and contractual requirements.

Additional Essential Duties:

  • Research current laws, regulations, and contracts to ensure proper application and maintain working knowledge for application to incident and other inquiry review
  • Manage the privacy breach notification process as needed
  • Derive historical data from the Privacy Incident Database upon request and generate reports for leadership
  • Assist with revising or developing, as appropriate, policies and procedures at the project and the corporate level to maintain contractual, regulatory, and statutory compliance
  • Manage or contribute to, as appropriate, the development of corporate and project privacy training and awareness materials
  • Assist with responding to project and management ad hoc questions and tasks related to privacy
  • Review subcontracts, business associate agreements and other documents for privacy compliance requirements
  • Compose company-wide communication from the Privacy Official Office
  • Participate in virtual privacy audits and on-site audits when possible
  • Other duties as assigned

Position Qualifications:

  • Juris Doctor (JD) from an accredited law school, required
  • Experience in privacy, quality, or compliance
  • Knowledge of US privacy laws such as HIPAA, GLBA, CCPA preferred
  • IAPP certification preferred; required within six months of hire
  • Ability to read and interpret regulatory laws and contracts with ability to translate complex regulatory requirements into practical operations advice
  • Strong organization, attention to detail, analytical skills, and problem-solving capabilities with excellent interpersonal, written, and verbal communication skills
  • Ability to manage multiple priorities in a fast-paced, organizationally complex, deadline-oriented work environment
  • Ability to work collaboratively with multiple stakeholders
  • Excellent written communication skills
  • Must be a team player and have the willingness to continue to learn and evolve in the position
  • Must be able to work independently and exercise good judgment
  • Heightened awareness of business ethics and compliance
  • Proficient in Microsoft Office (Word, Excel, and PowerPoint), required

Application Submission Information: