Location:Amarillo, TX
Job Title: Risk/Privacy Officer
Career Level From: Specialist
Career Level To: Senior Specialist
Organization: IT Business Operations (51355096)
Job Specialty: Service Transition
Information Solutions & Services - The Information Solutions and Services (IS&S) organization at Consolidated Nuclear Security (CNS) is dedicated to providing information services and technology that enable staff to be productively engaged in the NNSA nuclear security mission. This position supports the Director of Business Operations with the responsibility for coordinating IS&S Risk and Privacy programs at the Pantex Plant in Amarillo, TX.
This position will be responsible for integrating effective risk management across the IS&S and cybersecurity programs. The position is also responsible for ensuring that the company is in compliance with all applicable privacy policies and procedures.
Major responsibilities include:
* Risk Officer
o Act as the primary interface with the CNS Enterprise Risk Management Program (ERM)
o Work with IS&S leadership to identify, define and record risks in the IS&S risk register
o Manage the definition of risk impact scores and mitigation plans to continually reduce risk
o Work with ERM to identify risks and opportunities on other organizations' risk registers that contain an IT or Cyber component
o Identify and analyze risks across all IT projects and initiatives
o Track all risk mitigation activities in accordance with IS&S demand management and project management processes
* Privacy Officer
o Develop and manage the overall company privacy program to ensure compliance with Federal requirements
o Act as Site Privacy Representative (PR) in accordance with NNSA SD 206.1A
o Ensure privacy impact assessments (PIAs) are complete for federal information systems that process, contain, or store federal information under company management
o Establish policies, procedures and monitoring to confirm Personally Identifiable Information (PII), in any format, is protected, secured, and disposed of when no longer required.
o Develop and implement a comprehensive training program for all employees regarding privacy and protection of PII.
o Ensure all internal and external data exchanges adhere to the company's policies and procedures.
o Report all privacy breaches within required time limits and manage the investigation and response activities.
CNS is a drug-free workplace. Candidates accepting a job offer will be required to pass a pre-placement physical, drug screening and background investigation. As an employee, you may be required to receive and maintain a security clearance from the United States Department of Energy in order to meet eligibility requirements for access to sensitive information or matter. U.S. citizenship is a requirement for security clearance applicants. All employees are subject to being randomly selected for drug testing without advance notification.
CNS is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, gender, sexual orientation, gender identity, age, religion, national origin, ancestry, genetic information, disability or veteran status.