Tista Science and Technology Corporation

Privacy SME

Job ID 2020-2100
Job Locations US-Remote


TISTA Science and Technology Corporation, a CMMI Maturity Level 3 company, focuses on delivering information technology and professional services to Federal and State agencies. TISTA is recognized in 2019 by Inc. 5000 as one of the fastest growing private companies in the US. TISTA is also a recipient of 2019 Top Veteran-Owned Companies by the Washington Business Journal. TISTA also received a 2018 Moxie Award in the GovCon category.


The Privacy and Risk Subject Matter Expert The position will offer subject matter expertise regarding privacy and security compliance to leadership, and team members. The position requires consultation with leadership, and other subject matter experts to develop and improve best privacy practices and privacy policy.


  • Serves as the central point of contact for all privacy and compliance activities
  • Consults with researchers and subject matter experts (SMEs) on control standards such as NIST 800-53, 800-66, and 800-171, NISTIR 8062; as well as regulations such as FedRAMP and FISMA
  • Reviews documentation and artifacts related to compliance policy directives
  • Creates, maintains, and enhances Federal privacy programs, partnering with Compliance, Risk and Privacy for outreach, policy development, and compliance and advocacy
  • Supports privacy training programs and strategic outreach and communication efforts
  • Performs other duties as assigned Candidates should have a broad range of consultative risk management skills in the areas of evaluating and identifying controls to manage and mitigate privacy and data protection risk, specifically
  • Identifying privacy and data protection risks, requirements and controls
  • Performing data inventory, mapping and analysis activities
  • Assisting clients with designing and implementing privacy and data governance programs, processes and controls
  • Supporting client training and awareness programs Core competencies shall include the planning, execution, and delivery of engagements across broad disciplines of conducting risk assessments, policy, standards, and procedures development, design evaluation, cloud and shared control environment assessments, operating model design, and metrics and reporting dashboards.


  • 8-10+ years of relevant consulting or industry experience
  • Demonstrated strong understanding of large scale information technology systems, business processes, security regulatory risk management and security vulnerabilities
  • Experience in one or more of the following information security domains:
  • Security Risk Management
  • Privacy and Data Protection
  • Network Security Operations
  • Security Architectures
  • Cyber Regulations, Standards, Policies and Procedures
  • Proven experience effectively prioritizing workload to meet deadlines and work objectives
  • Demonstrated ability to write clearly, succinctly, and in a manner that appeals to a wide audience
  • Proficiency in word processing, spreadsheet, and presentation creation tools, as well as Internet research tools
  • Knowledge of and experience with Federal security regulations, standards, and processes including FISMA, FIPS, NIST, and FedRAMP
  • Previous Federal Government Consulting expertise
  • Ability to obtain and maintain the required clearance for this role • Preferred:
  • Understanding of fundamental cloud computing concepts
  • CISSP, CEH, or CISA certifications




  • Bachelor's Degree in Information Technology, Information Systems Security, Cybersecurity, or related field



  • Public Trust



  • 811 Vermont Ave. Washington, D.C.
  • Opportunity for 4 days of telework per week


Here at TISTA Science and Technology we value our Veterans and encourage all to apply!


TISTA is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, or protected veteran status.


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed