Privacy (Business) Analyst

About Us:At RELI Group, our work is grounded in purpose. We partner with government agencies to solve complex challenges, improve public health, strengthen national security, and make government services more effective and efficient. Our team of over 500 professionals brings deep expertise and a shared commitment to delivering meaningful outcomes. Behind every solution is a group of experts who care deeply about impact-whether we're supporting data-driven decisions, modernizing systems or safeguarding critical programs

Position Summary:

RELI Group is seeking a dedicated Privacy Analyst to support the Privacy and Governance components of the Information Security and Privacy Services (ISPS) under the Marketplace System Security and Privacy Support Services (MSSPSS) contract. This position is part of Task 7 and will play a key role in reviewing, analyzing, and implementing privacy policy and regulatory compliance frameworks for systems supporting the Affordable Care Act (ACA) and No Surprises and Transparency (NST) initiatives. The Privacy Analyst will assist in the development and update of privacy documentation, overlays, training materials, and assessments in accordance with CMS, HHS, and NIST guidance. The role includes privacy risk analysis, guidance tracking, and supporting federal deliverables aligned with CMS IS2P2 and Acceptable Risk Safeguards (ARS).

Responsibilities:

• Review, interpret, and apply CMS, HHS, and NIST privacy policies and standards, including ARS 5.0, NIST SP 800-53, and CMS IS2P2


• Conduct privacy impact assessments (PIAs), system privacy evaluations, and documentation reviews for ACA/NST systems


• Update privacy overlays and reference materials to align with evolving federal laws and privacy frameworks


• Support the development of privacy training materials and delivery of stakeholder-facing documentation (e.g., guides, FAQs, audit artifacts)


• Track privacy compliance issues and ensure timely mitigation of risks related to Personally Identifiable Information (PII), Protected Health Information (PHI), and Federal Tax Information (FTI)


• Collaborate with Risk Strategists, GRC SMEs, and Technical Writers to ensure privacy elements are addressed in project plans and reports


• Provide input into updates of governance policies and program integrity documentation


• Participate in CMS stakeholder meetings, respond to data call requests, and help ensure quality delivery of privacy-related contract artifacts

• Bachelor's degree in Information Privacy, Public Health, Law, Cybersecurity, or related field.


• 4+ years of experience in privacy compliance or data protection roles supporting federal programs.


• Working knowledge of NIST SP 800-53, OMB A-130, HIPAA Privacy Rule, and CMS-specific guidance including IS2P2.


• Strong understanding of PII, PHI, FTI handling, and related regulatory requirements.


• Experience developing or updating PIAs, privacy policies, training guides, or compliance reports.


• Excellent writing and communication skills, including experience working with federal stakeholders.

Preferred Qualifications:

• Experience supporting CMS programs (preferably CCIIO, ACA, NST, or HIX).


• Familiarity with CMS Acceptable Risk Safeguards (ARS 5.0) and related overlays.


• Certified Information Privacy Professional (CIPP/G or CIPP/US) or similar certification.


• Experience supporting annual audits or ATO-related documentation from a privacy perspective.


• Ability to work in cross-functional teams and interpret complex federal guidance for implementation.

EEO Employer:

RELI Groupis an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

HUBZone:

We encourage all candidates who live in a HUBZone to apply. You can check to see if your address is located in a HUBZone by accessing theSBA HUBZone Map.

The annual salary range for this position is $65,000.00 to $85,000.00.Actual compensation will depend on a range of factors, including but not limited to the individual's skills, experience, qualifications, certifications, location, other business and organizational needs, and applicable employment laws. The estimate displayed represents the typical salary range for this position and is just one component of the total compensation package for employees. RELI Group provides a variety of additional benefits to its employees. For additional details on the benefits that RELI Group offers clickhere