Subject Matter Expert Security & Privacy Compliance, Child Support (onsite, DMV area)

ICF is currently seeking a Security and Privacy Compliance to provide Program Support Services (PSS) for the Administration of Children and Families (ACF) Office of Child Support Enforcement (OCSE). The purpose of this project is to assist the Administration for Children and Families (ACF) Office of Child Support Enforcement (OCSE) in enabling state and tribal child support agencies to better comply with federal law and improve enforcement and service delivery through program and IT management, technical support, training/communications, and data access services. As the Subject Matter Expert, you will provide expertise in security and privacy compliance and will be responsible for coordinating across all lines of business.

The successful candidate will have relevant experience and a documented record of working within child support enforcement programs, particularly in security compliance and support. They will demonstrate a strong understanding of security assessments, audits, data access, data privacy, and incident response. Additionally, the candidate will have experience working across systems and databases to ensure security and privacy standards. Their expertise will enable them to collaborate with all project LOBs, identify risks, manage delivery, and ensure compliance across the program.

The hire of the Subject Matter Expert – Security and Privacy Compliance, or any replacements thereof, must be approved in writing by the CO or the COR.

• Manage incident response for security incidents reported by all stakeholders.
• Collaborate with OCSE and other agencies to analyze new security requirements and risks, develop implementation strategies and countermeasures, and document the analysis in White Papers.
• Review NIST guidelines and create Security Provisions for FPLS Certification and Accreditation, incorporate OCSE security directives to enhance infrastructure protection, and complete FPLS System Self Assessments.
• Ensure accurate and complete FISMA reporting through the Security and Privacy Risk Management Framework Portal (RMFP) as well as the Security and Privacy section of the Major IT Business Cases (formerly Exhibit 300) through the Portfolio Management Tool (PMT).
• Coordinate with OCSE leadership, other key stakeholders and ACF Emergency Preparedness group to plan and conduct COOP exercises, annually.
• Maintain COOP documentation, procedures, and call tree, ensure compliance with HHS and federal security requirements, and develop Security SOPs.
• Conduct annual security awareness training for federal and contractor staff, deliver specialized training on privacy issues and IRS tax information handling, and conduct security workshops for client policy forums and conferences.

• MS or BS Required.
• Minimum of 5 years of experience in leading security and privacy compliance.
• Minimum of 10 years of relevant security and privacy compliance experience or an equivalent of education and training.
• Proven experience meeting all contract deliverables and requirements within budget and the use of appropriate tools to track project deliverables.
• Experience with incident response, disaster recovery, risk management, and security reviews/audits.
• Ability to travel up to 10%.

• Master's in information technology/computer science related field.
• Experience with security and privacy compliance with HHS/ACF systems and data.

• Strong project management skills: managing resources with appropriate knowledge and skills to perform ongoing activities.
• Sound business ethics, including the protection of proprietary and confidential information.
• Exceptional oral and written communication skills with attention to detail.
• Analytical, problem-solving, and decision-making capabilities.
• Collaborative ability to work well both individually and in a team environment with all levels of internal staff as well as outside clients and vendors.
• Prioritize multiple tasks while demonstrating the initiative to complete projects with minimum supervision.
• Ability to be flexible to handle multiple priorities and to work limited overtime as necessary.
• Proficiency in MS Office Applications (Word, PowerPoint, Outlook, Excel, Project) and MS SharePoint.