Security and Privacy SME

This a Full Remote job, the offer is available from: Virginia (USA) Job Type Full-time Description Position Details: Job Title: Security and Privacy SME Job Type: Full-time Location: Falls Church, VA area (hybrid/remote with periodic on-site collaboration required) Dynanet Corporation Overview: Dynanet started with a focus on IT infrastructure and operations, helping organizations enhance their networks and overcome the limitations of 1990s technology. From strengthening communication channels to introducing innovative ways to collaborate and share information, Dynanet played a crucial role in shaping the early stages of digital transformation. The company’s efforts helped organizations build the very fabric of connectivity that now powers our modern world. Over the last three decades, Dynanet has grown into a trusted partner for organizations looking to innovate boldly and transform seamlessly. While technology continues to evolve and unlock new opportunities, for nearly 30 years, Dynanet remains committed to delivering cutting-edge solutions that drive lasting change for its customers. Through agility, foresight, and an unwavering dedication to excellence, Dynanet continues to empower organizations to thrive in a rapidly changing digital landscape. Our story is more than just a story of technology – it’s a story of vision, growth, and transformation that has shaped the past and continues to pave the way for the future. About the Role: The Security and Privacy SME will serve as the guardrail authority responsible for sensitivity classification validation, privacy controls implementation, and governance guardrails establishment across Federal healthcare data governance initiatives. This role ensures all data management activities comply with Federal security requirements, healthcare privacy regulations, and organizational policies while maintaining secure data handling throughout enterprise catalog operations. Roles & Responsibilities: • Validate sensitivity classification for data systems applying Controlled Unclassified Information (CUI), Protected Health Information (PHI), and Personally Identifiable Information (PII) classifications during metadata inventory activities • Implement and enforce privacy controls ensuring compliance with Health Insurance Portability and Accountability Act (HIPAA), Federal privacy regulations, and organizational security policies • Establish governance guardrails including role-based access controls (RBAC), data handling procedures, and security validation checkpoints for enterprise data catalog operations • Design and validate security architectures for interim centralized repositories ensuring encryption at rest and in transit, audit logging, and authorized access controls • Conduct security assessments for federated catalog integration including metadata exchange security, authentication protocols, and data protection mechanisms • Develop and implement automated compliance monitoring including security control validation, privacy impact assessments, and regulatory compliance reporting • Oversee security aspects of automated metadata harvesting ensuring secure extraction methods and protection of sensitive information during processing • Validate Artificial Intelligence (AI) tool usage compliance ensuring approved tools are used within authorized environments with appropriate data handling controls • Support User Acceptance Testing (UAT) security validation ensuring test scenarios maintain appropriate security controls and data protection measures • Create security documentation including technical security controls, privacy procedures, and compliance validation processes Required Professional Skills: • 8+ years of experience in cybersecurity and/or technical data privacy • 5+ years of experience safeguarding PII, PHI, and/or classified information at the technical level • Deep understanding of relevant DoD regulations and policies regarding the technical safeguarding of PII, PHI, and/or classified information • Experience working with NIST 800-53 and/or NIST 800-122 guidelines • Ability to translate technical knowledge into strategic recommendations • Keen attention to detail, especially in relation to technical policies and procedures • Knowledge of healthcare privacy regulations and Federal data classification requirements • Experience with security control implementation for enterprise data management systems Preferred Professional Skills: • 12+ years of experience in cybersecurity and/or technical data privacy • 8+ years of experience safeguarding PII, PHI, and/or classified information at the technical level • Experience interpreting and applying DoD privacy and security technical controls successfully to enterprise-level IT systems • Knowledge of federated catalog security architectures and metadata exchange security protocols • Experience with cloud security controls and compliance frameworks • Understanding of AI/ML security considerations and approved tool governance • Experience with automated compliance monitoring and security validation systems Dynanet Team Requirements and Expectations: • Possess Strong written and verbal communication skills • Highly organized with an ability to prioritize, balance, and effectively advance multiple competing priorities in a high-volume, fast-paced environment • Ability to interact in a professional and collaborative manner with fellow Dynanet Teammates and the clients, and business partners that we work with • Ability and desire to challenge and educate yourself to support and advance IT services delivery in the Federal agencies we serve • Excellent judgment and creative problem-solving skills • Respond to team member and client requests via email, MS teams, or other communication means during core business hours • Active listening skills to understand clients' needs, and collaboration skills to work with other developers and designers Education/Experience Requirements: • BA in cybersecurity, information technology, computer science, or data science (MA preferred) • Active DoD High Risk Public Trust designation (Active DoD security clearance preferred) • Technical certification(s) in compliance with DoD Directive 8140 (CompTIA Sec+, CISSP, CISM, CEH, etc.) are preferred • Current database certifications (such as AWS, Azure, CDMP, Oracle SQL, IBM DB2, etc.) are preferred Employee Benefits Overview: • Industry Competitive Compensation • Medical and Dental Insurance • Paid Time Off/Holidays • 401(k) Retirement Plans with Matching • Remote Work* • Paid Training • Employee Referral Program • Employee Development Program • Remote work available with requirement for periodic on-site collaboration in Falls Church, VA area. This offer from "Dynanet Corporation" has been enriched by Jobgether.com and got a 72% flex score. Apply tot his job