Privacy and Controlled Unclassified Information Lead (Cybersecurity)

TL;DR

Privacy and Controlled Unclassified Information Lead (Cybersecurity): Leading enterprise privacy, CUI, and data governance initiatives for the SBA with an accent on federal regulatory compliance and NIST frameworks. Focus on designing privacy impact assessments, managing CUI lifecycles, and ensuring FISMA and FedRAMP compliance across hybrid cloud infrastructures.

Location: United States (supporting SBA program)

Company

hirify.global is a professional services firm providing cybersecurity and enterprise services to federal government agencies.

What you will do

• Lead enterprise privacy and Controlled Unclassified Information (CUI) management activities for the SBA ECS program.
• Develop and maintain privacy and CUI policies, procedures, and governance documentation in alignment with federal mandates.
• Conduct Privacy Impact Assessments (PIAs), System of Records Notices (SORNs), and data flow reviews.
• Manage CUI identification, marking, safeguarding, and destruction processes across enterprise systems.
• Coordinate privacy risk management with ISSOs, system owners, and legal counsel.
• Oversee audit support for FISMA, IG, and GAO compliance reviews.

Requirements

• Bachelor’s degree in Cybersecurity, Information Systems, Public Policy, or a related field.
• Minimum of 10 years of experience in federal cybersecurity, privacy, compliance, or CUI-related programs.
• Minimum of 5 years of experience leading enterprise privacy or cybersecurity initiatives.
• Proficient knowledge of the Privacy Act of 1974, NIST SP 800-53 Rev 5, FISMA, and OMB Circular A-130.
• Experience with NIST Risk Management Framework (RMF) and FedRAMP continuous monitoring.
• Experience supporting cloud security and privacy in Azure, AWS, M365, or Salesforce.

Nice to have

• CISSP, CIPP/G, CIPM, CISA, or CAP certifications.
• PMP or CRISC certifications.
• ITIL Foundation Certification.
• Direct experience supporting federal government cybersecurity environments.