Privacy Officer

Advance your career as a Privacy Officer at GDIT. Here, you will have many paths to grow a meaningful career supporting cyber missions and operations across the federal government.

MEANINGFUL WORK AND PERSONAL IMPACT
As a Privacy Officer the work you’ll do at GDIT will be impactful to the mission of securing Medicaid Information Systems. You will

• Lead and manage all aspects of privacy compliance, safeguarding PHI, educating staff, handling incidents, ensuring individual rights, and maintaining up-to-date policies and procedures. This work is vital for protecting member information, minimizing risk, and maintaining public trust in Medicaid programs.
• Ensure compliance with the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule and Security Rule
• Develop, implement, and maintain privacy policies and procedures
• Stay current with Federal and State privacy laws and regulations affecting Medicaid programs
• Provide ongoing training and education to staff and contractors about privacy policies, procedures, and best practices
• Foster a culture of privacy and security for our customers.
• Investigate and respond to potential privacy breaches, including risk assessments and breach notification to affected individuals, regulators, and other required parties
• Maintain thorough documentation of privacy incidents and agency response actions
• Conduct regular risk assessments and audits to identify vulnerabilities and ensure the effectiveness of privacy controls
• Recommend and implement corrective actions as needed
• Oversee and respond to requests from Medicaid Agency regarding individual’s rights under HIPAA (e.g., access to records, amendments, accounting of disclosures)
• Ensure proper mechanisms are in place to address complaints and concerns from individuals about their PHI
• Serve as the primary point of contact for privacy matters with internal staff, Medicaid members, contractors, and regulators
• Work closely with IT, legal, compliance, and other departments to align privacy efforts across the Agency
• Ensure all privacy-related documentation is accurate, up to date, and retained according to policy
• Provide regular reports to Agency leadership on privacy compliance status, incidents, and improvements
• Ensure that contracts with Suppliers and business associates include appropriate privacy and security provisions
• Monitor third-party compliance with privacy requirements

WHAT YOU’LL NEED TO SUCCEED
Bring your cyber expertise and drive for innovation to GDIT. The Information Security Analyst Principal must have:

• Five (5) years of professional experience in privacy compliance
• Two (2) years of direct experience in HIPAA compliance
• Knowledge and demonstrated experience with NIST, Federal Information Security policies/requirements, HIPAA, and other related State and Federal information privacy laws, security laws, and breach notification laws
• A minimum of Bachelor’s degree in information technology, health information management; or equivalent work experience
• Certified in Healthcare Privacy and Security (CHPS) or equivalent certification

Additional Information: 

Work Arrangements: Remote. Travel 20-50%.

Security: A background check will be required.

Timeline: This is a contingent job posting. Work is not expected to begin until December 2026 or later. 

GDIT IS YOUR PLACE
At GDIT, the mission is our purpose, and our people are at the center of everything we do.
● Growth: AI-powered career tool that identifies career steps and learning opportunities
● Support: An internal mobility team focused on helping you achieve your career goals
● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
● Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY
Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.