×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Data Security Cybersecurity

Data Protection & Risk Specialist

Job in Franklin, Williamson County, Tennessee, 37068, USA
Listing for: Acadia Healthcare
Full Time position
Listed on 2026-01-16
Job specializations:
  • IT/Tech
    Data Security, Cybersecurity
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

1 day ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Acadia Healthcare is a leading provider of behavioral healthcare services across the United States. Acadia operates a growing network of 250+ behavioral healthcare facilities with approximately 11,100 beds in 39 states and Puerto Rico. With more than 23,000 employees serving approximately 75,000 patients daily, Acadia is the largest stand-alone behavioral health company in the U.S.

Data Protection & Risk Specialist – Franklin, TN

The first 90 days in this role will be fully in-person to ensure comprehensive onboarding and training. After the initial period, the position will transition to a hybrid model, with 2 days remote and 3 days in the office each week.

The Data Protection & Risk Specialist will play a critical role in safeguarding Acadia’s sensitive information by serving as the subject matter expert for data classification, data loss prevention (DLP), and insider risk management. This role is responsible for designing, implementing, and optimizing Acadia’s data protection framework to ensure data is properly tagged, secured, and governed throughout its lifecycle. The Specialist will partner with IT, compliance, privacy, and business units to reduce risks associated with data misuse, strengthen regulatory compliance, and embed best practices in data protection and risk management across the organization.

Essential

Functions
  • Data Protection Leadership:
    Act as Acadia’s subject matter expert for data classification, labeling, and protection practices. Develop and enforce policies, standards, and procedures to ensure sensitive data is safeguarded consistently.
  • Insider

    Risk Management:

    Implement and optimize insider risk detection and prevention capabilities. Define monitoring use cases, incident response processes, and mitigation strategies.
  • Data Loss Prevention (DLP):
    Configure, tune, and maintain DLP technologies to reduce the risk of data leakage. Collaborate with business units to ensure DLP controls align with operational needs and compliance requirements.
  • Risk & Governance:
    Support enterprise risk assessments related to data protection and insider threats. Document risks, propose mitigations, and ensure alignment with NIST, ISO, HIPAA, and other governance frameworks.
  • Compliance & Regulatory Alignment:
    Ensure Acadia’s data protection practices comply with HIPAA, 42 CFR Part 2, SOX, PCI, GDPR, and other relevant regulations. Participate in audits, assessments, and compliance reviews.
  • Cross-Functional Collaboration:

    Work closely with IT, compliance, and business leaders to embed data protection into operations and projects. Provide expertise during security reviews and incident investigations.
  • Awareness & Training:
    Support development of training programs and awareness campaigns to strengthen organizational culture around data protection and responsible data use.
  • Continuous Improvement:
    Stay informed on evolving insider threats, regulatory changes, and emerging technologies. Recommend enhancements to data protection and risk management strategies.
Other Functions
  • Perform other tasks as assigned.
Standard Expectations
  • Complies with organizational policies, procedures, and performance improvement initiatives while maintaining industry standards of confidentiality.
  • Builds constructive and cooperative working relationships across teams.
  • Fosters mutual trust, respect, and cooperation among colleagues.
Education / Experience / Skill Requirements
  • Education:

    Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Risk Management, or related field; or equivalent work experience.
  • Experience:

    Minimum 4–6 years in cybersecurity, with 3+ years focused on data protection, insider risk, or DLP. Broader experience in governance, risk management, and compliance preferred.
  • Expertise:
    Strong knowledge of data classification frameworks, DLP tools, and insider risk programs. Familiarity with Microsoft Purview, insider risk management solutions, and data tagging technologies preferred.
  • Compliance Knowledge:
    Deep understanding of healthcare regulations (HIPAA, 42 CFR Part
    2) and familiarity with frameworks…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search