Privacy Specialist - Manager, Grant Thornton, Washington, DC

Grant Thornton is seeking a privacy analyst practitioner with at least 4+ years of experience in the Federal, State, and/or Local Public Sector environments. Grant Thornton is expanding its Cybersecurity and Privacy practice as this area has been a hot topic within the Federal government with the Office of Management and Budget's (OMB) High Value Asset program where data was identified as a key asset at 100% of Federal agencies and OMB reported that Federal data is not well protected.


  • Leading federal government privacy projects, including privacy program development, maintenance activities, and preparing documentation packages for federal/state/local government clients
  • Ability to conduct privacy program assessments using frameworks such as e-Gov Act, Privacy Act, and NIST Special Publication (SP) 800 series
  • Consulting with clients, and leading teams in conducting federal government privacy processes and requirements including
    • Privacy Impact Assessments (PIA’s)
    • Privacy Risk Assessments
    • System of Records Notice (SORN)
    • Privacy Incident Response Plans
    • Complaint management
    • Training and awareness
  • Creation of privacy plans to include content and development of control implementation description responses
  • Creation of evidence and artifact repositories for privacy tracking to applicable privacy controls
  • Collaboration with other privacy analysts, architects, and security architects for adjustments to design/build activities to meet privacy controls and standards for internal privacy and federal government compliance requirements
  • Participation in proposal development as a Privacy Specialist
  • Participation in client projects, branding, and professional organizations as a Privacy Specialist

Preferred Certification: CIPP/US

  • Must be able to clearly articulate information to leadership, clients, and stakeholders
  • Must have an understanding of the Privacy Act of 1974, HIPPA and other privacy standards
  • Must have experience with government privacy programs
  • Must have a basic understanding of information technology and security architectures
  • Should be familiar with FISMA and an understanding of the NIST SPs and FIPS series
  • Experience with OneTrust preferred, but not required

Application Submission Information: