DSHS Privacy Officer

DSHS is committed to hiring skilled and dedicated individuals who share a passion for public health to pursue our vision of A Healthy Texas. If you are looking to make an impact and tackle new challenges, we encourage you to consider a career with us.

Employee Benefits:

DSHS offers insurance coverage and other benefits available through the State of Texas Group Benefits Plan administered by the Employee Retirement System of Texas (ERS). To learn more about all the benefits available to you as a DSHS employee and other DSHS opportunities for early career pathways, visit the DSHS Careers Page.

Review our Top 10 Tips for Success when Applying to State of Texas Jobs.

Functional Title: DSHS Privacy Officer 
Job Title: Privacy Analyst III 
Agency: Dept of State Health Services 
Department: Compliance Operations 
Posting Number: 11532 
Closing Date: 02/13/2026 
Posting Audience: Internal and External 
Occupational Category: Office and Administrative Support 
Salary Group: TEXAS-B-25 
Salary Range: $5,797.66 - $7,000.00 
Pay Frequency: Monthly
Shift: Day 
Additional Shift:  
Telework: Eligible for Telework 
Travel: Up to 15% 
Regular/Temporary: Regular 
Full Time/Part Time: Full time 
FLSA Exempt/Non-Exempt: Exempt 
Facility Location:  
Job Location City: AUSTIN 
Job Location Address: 1100 W 49TH ST (RDM) 
Other Locations: Austin 
MOS Codes: 4502,4505,165X,35PX,3N0X6,46A,INF,ISS 
 
 
 

Under the supervision of the Compliance Operations Director, the Privacy Analyst III (DSHS Privacy Officer) performs highly advanced (senior-level) privacy consultative and technical assistance work and oversees the daily operations and activities of the Privacy Office. Work involves safeguarding confidential and public health information through incident response management; coordinating and overseeing agency compliance activities; reviewing, developing, and implementing privacy controls, policies, standards, guidelines, and operating procedures; and promoting and performing privacy awareness activities agency wide. Responsibilities include triage of and responding to actual or suspected privacy incidents, making breach determinations, and reporting breaches as required by system, agency, state and/or federal laws; assisting in the development and maintenance of a comprehensive data breach/privacy incident plan; performing privacy risk assessments of agency information systems, applications, and new software requests; monitoring for and proposing solutions to privacy risks; providing regular reports to agency leadership; supervising and auditing the work of other Privacy Office staff, as necessary; and developing strategic plans, goals, and objectives for the Privacy Office in alignment with agency strategic plans. This position coordinates with divisions, programs, and staff across the agency and system, and serves as the central point of contact for inter-agency coordination with the HHSC Privacy Division. The Privacy Officer works under minimal supervision, with extensive latitude for the use of initiative and independent judgment.

Essential Job Functions (EJFs):

EJF1. (35%) Serves as DSHS Privacy Officer, agency point of contact, and subject matter expert for all privacy-related matters. Oversees daily privacy operations and activities of the privacy program for the agency. Leads and oversees incident response management for the agency by responding to actual or suspected privacy incidents, which includes coordinating with appropriate agency staff and stakeholders to investigate, analyze, make breach determinations, and report breaches as required by system, agency, state and/or federal laws to regulatory authorities and others as appropriate. Develops recommendations for corrective actions. Maintains proper documentation in the privacy incident management system. Assists in the development and maintenance of a comprehensive data breach/privacy incident plan. Coordinates and oversees agency compliance by conducting privacy threshold assessments, privacy impact assessments, and cybersecurity impact assessments of agency information systems, applications, and new software requests.

EJF2. (20%) Establishes and maintains effective working relationships with agency leadership, divisions, programs, and staff, as well as with inter-agency partners, local health departments, and other external entities. Coordinates, reviews, and/or researches and responds to privacy-related inquiries from internal and external customers, including overseeing the agency HIPAA (Health Insurance Portability and Accountability Act) mailbox. Provides privacy subject matter expertise for designated program privacy coordinators, workgroups, and committees. 

EJF3. (20%) Researches current privacy frameworks, principles, and industry standards and develops recommendations for implementation of new solutions and/or improvement opportunities. Works to integrate privacy practice into routine business operations by developing and implementing privacy controls, policies, standards, guidelines, and operating procedures. Maintains agency wide privacy policies, notices of privacy practices, policy supplements, and internal procedures. Coordinates and/or reviews privacy and security controls. Monitors for and proposes solutions to privacy risks through incident response management and consultation with program areas. 

EJF4. (10%) Monitors, reviews, and analyzes privacy-related legislation. Tracks employee compliance with annual, mandated privacy training. Gathers, organizes, and quantifies privacy and security surveys and questionnaire responses to improve privacy training. Provides regular reports to agency leadership.  

EJF5. (10%) Coordinates with HHSC (Health and Suman Services Commission) Privacy Division to develop and implement privacy policies, procedures, standards, and controls. Coordinates with HHSC Privacy Division to develop and implement privacy awareness and compliance activities, such as training and communications.

EJF6. (5%) Performs other duties as assigned. Other duties as assigned include but are not limited to active participation and/or support to meet the agency’s obligations for disaster response and/or recovery or continuity of operations activation. Such participation may require an alternate shift pattern, assignment, and/or location

Knowledge, Skills and Abilities (KSAs):

Working knowledge of HIPAA, information privacy, federal and state privacy laws, and/or compliance with regulatory directives.

Effective interpersonal and leadership skills.

Experience preparing oral and written reports, managing projects, and facilitating meetings.

Ability to prepare effective correspondence and reports for diverse audiences, including executives and senior managers.

Ability to collect, analyze information and solve work problems.

Ability to make independent judgments and provide guidance to agency staff.

Working knowledge of public health and/or health and human services programs is preferred.

Experience developing policies and regulations is preferred.

Registrations, Licensure Requirements or Certifications:

Professional certification in information privacy, information security, or compliance is required or must be attained within twelve months of hire. Preference will be given to candidates who hold the Certified Information Privacy Professional (CIPP/US) certification is required, however other relevant professional certifications will be considered. 

Initial Screening Criteria:

Graduation from an accredited four-year college or university with major course work in public policy, public administration, public health, political science, legal studies, information management or a related discipline is required.

A master’s or other graduate degree is preferred. Privacy-related work experience may be considered in lieu of education on a year-for-year basis.

Additional Information:

If selected, a candidate must be able and willing to provide current and previous work references before a final offer of employment is extended.

Eligible for part-time telework.

Active Duty, Military, Reservists, Guardsmen, and Veterans:

Military occupation(s) that relate to the initial selection criteria and registration or licensure requirements for this position may include, but not limited to those listed in this posting. All active-duty military, reservists, guardsmen, and veterans are encouraged to apply if qualified for this position. For more information see the Texas State Auditor’s Military Crosswalk at https://hr.sao.texas.gov/CompensationSystem/JobDescriptions/.

ADA Accommodations:

In compliance with the Americans with Disabilities Act (ADA), DSHS will provide reasonable accommodation during the hiring process for individuals with a qualifying disability. If reasonable accommodation is needed to participate in the interview process, please notify the person who contacts you to schedule the interview. If you need assistance completing the on-line application, contact the HHS Employee Service Center at 1-888-894-4747 or via email at HHSServiceCenter.Applications@ngahrhosting.com.

Salary Information, Pre-employment Checks, and Work Eligibility:

• The salary offered will follow DSHS starting salary guidelines. Any employment offer is contingent upon available budgeted funds.
• Depending on the program area and position requirements, applicants selected for hire may be required to pass background and other due diligence checks.
• DSHS uses E-Verify. You must bring your I-9 documentation with you on your first day of work.  Download the I-9 form