Criterion Systems Junior Cybersecurity Policy and Privacy Analy in Alexandria, Virginia

At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. Our differentiators: employee-owned Federal government IT services contractor founded in 2005; high employee retention rate because of excellent benefits and a focus on job flexibility and work/life balance; leadership team comprised of individuals who have successfully built and run businesses. We have grown our workforce each year for the past seven years with annual growth of at least 30% in the past four years! Our employees are the company’s most valuable assets. Are you ready to be appreciated?

Criterion Systems’ rapid growth and a recent win has created the need forJunior Cybersecurity Policy and Privacy Analystbased at our Government customer’s location in Alexandria, Virginia.


This position will be a member of the Oversight and Compliance Team with the responsibility of performing as a Junior Cybersecurity Policy and Privacy Analyst.

  • Assists with the preparation of draft and final versions of policies; recommendations, oral and written briefings, white papers, and assessment reports

  • Maintain situational awareness of significant cyber-related policy issues affecting the United States Government, the potential impact to the customer and what steps should be taken to mitigate the threat

  • Identify policy gaps and policy changes required to maintain compliance with Legislation, Executive Orders, OMB Documents, and the customer’s directives

  • Support the preparation of Cyber Policy gap analysis reports

  • Identify best practices and common activities while developing innovative solutions to establish a strategic privacy framework that will reduce privacy risks and fulfill legal/regulatory requirements

  • Perform policy compliance assessments to determine if the customer’s environment is sufficiently enforcing federal laws, regulations, and policies relating to privacy protection and effectively identify sound privacy practices to continuously improve the customer’s privacy program

  • Evaluate and update the customer’s privacy compliance efforts and procedures to ensure they are comprehensive and current

  • Develop and update Systems of Records Notices (SORNs), Privacy Impact Assessments (PIA) and all related documentation from draft through publication

  • Plan, design, and conduct Privacy Threshold Assessments (PTAs) and Privacy Impact Assessments (PIAs); ultimately responsible for writing and reviewing the Privacy Impact Reports

  • Identify Risks or Issues regarding privacy, manage and track the Risks and Issues including plans and tactics to mitigate or transfer any issues exposed

  • Identify appropriate privacy training and education; develop privacy training techniques and ensure they are compliant with the Privacy Act, E-Government Act, and other privacy-specific requirements, guidance and organizational policies and procedures

  • Provide privacy program metrics and related information required to meet the customer’s Federal Information Security Modernization Act (FISMA) privacy reporting requirements and develop the subsequent reports and documentation

  • Facilitate Privacy impact reviews and briefings


  • 3 Years of Experience

  • Working knowledge, experience, and expertise with Federal Cybersecurity and Privacy guidance including applicable FISMA, OMB, NIST, DHS, and organization level guidance and requirements.

  • US Citizen eligible for a NACI/Public Trust clearance


  • Bachelor’s Degree

  • Security + Certification

  • A + Certification

  • Certified Ethical Hacker

  • Certified Information System Security Professional (CISSP)

  • Certified Information System Auditor (CISA)

  • Certified Information Security Manager (CISM)

  • Certified Information Privacy Professional/Government (CIPP/G)

Criterion Systems is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.