Join our growing Privacy team as we support complex, high?impact programs that rely on strong data protection practices. In this role, you will apply and deepen your knowledge of U.S. and global privacy laws, support privacy reviews across proposals and contracts, assess incidents, draft key compliance documents, and collaborate with stakeholders across the organization. This is an excellent opportunity for a JD?credentialed early?career professional who is eager to build expertise in privacy, data protection, and the evolving AI legal landscape while contributing to meaningful, compliance?driven work in a dynamic environment.
Essential Duties and Responsibilities:
- Develop and maintain a working knowledge of US federal and state privacy and data protection laws and regulations.
- Develop and maintain awareness of global privacy and data protection laws that apply to the company and how they impact the company’s privacy and data protection compliance posture.
- Develop a working knowledge of Artificial Intelligence legal landscape to understand risks, impacts, and harms associated with the use of personal information.
- Review proposals/solicitations to identify privacy risks and mitigations; communicate effectively with stakeholders, with minimal oversight.
- Review contracts, subcontracts, licensing agreements, etc. and identify privacy and data protection requirements, risks, and contract mitigations, with minimal oversight.
- Develop and maintain a working knowledge and ability to identify required federal/state/global privacy controls for management review.
- Draft privacy impact assessment for management review with minimal oversight.
- Draft public-facing privacy statements with minimal oversight.
- Develop and maintain an understanding of Maximus operations, systems and systems integration
- Investigate and document the risk resulting from assigned privacy and data protection incidents, including applying legal analysis to make breach determination under all applicable standards, determine root causes, recommend sanctions, identify potential process improvements, including training recommendations, with minimal oversight.
- Participate in the breach notification process with internal and external stakeholders with support from management.
- Review proposals and contract actions processed for the company prior to signature or negotiation and ensure that all factors have been considered and all necessary information has been gathered, with minimal oversight.
- Manage and respond to data subject requests with minimal oversight.
- Periodically create, review, and/or revise functional area documentation and project-specific templates and other documents with minimal oversight.
- Conduct on-site and virtual project privacy audits to determine privacy compliance with support from senior management.
- Identify and implement efficient methods for assessing privacy and data protection incidents and identifying and mitigating privacy risks in proposals and contracts.
- Draft and review documents including Business Associate Agreements, Data Protection Addendum, and other contract types for privacy compliance with support from management.
- Develop and provide privacy and data protection training for internal stakeholders with support from management.
- Provide guidance to internal stakeholders on privacy- and data protection-related inquiries with support from management.
Minimum Requirements
- Juris Doctor (JD) from an accredited law school and admission to one or more State Bars is required.
- 0-3 years of relevant professional experience required.
- Current IAPP certification (required within 6 months of hire).
-1+ years of privacy experience in a corporate, legal or educational setting preferred.
- Knowledge of privacy laws and regulations (e.g., HIPAA, Privacy Act, GLBA, FCRA, UK GDPR, PIPEDA, DPDP, state consumer privacy rights laws, and state breach notification laws).
- Ability to interact successfully with senior leaders (internal and external to the organization) with support from senior management.
- Strong work ethic with a “can do” attitude.
- Self-starter, quick study and ability to manage deadlines.
- Able to work independently and in a team environment.
- Professional demeanor and strong interpersonal skills.
- Ability to interact professionally with a wide variety of key stakeholders; a strong collaborator and team oriented.
EEO Statement
Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics.
Pay Transparency
Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.
Accommodations
Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process—including accessing job postings, completing assessments, or participating in interviews,—please contact People Operations at applicantaccom@maximus.com.
