Cyber Security Policy Specialist/ Consultant

Cyber Security Policy Specialist/ Consultant

CYBER SECURITY POLICY/ CYBER SECURITY CONSULTANT/ CYBER SECURITY POLICIES/ COOKIE MANAGEMENT/ PRIVACY REGULATIONS/ GDPR/ COMPLIANCE/ RISK/ DIGITAL PRIVACY/ NIST/ ISO 27001

6 Months- Extensions Likely

Sheffield/Remote- must be willing to be on site 3 days a week

Our client is looking for a detail-oriented and experienced Cyber Policy Specialist to lead the development and refinement of the organisation's cybersecurity policies, with a particular focus on cookie governance and external attack surface management.

This role is ideal for someone with a strong background in policy writing and a deep understanding of cyber risk, regulatory compliance, and digital privacy.

• Draft, review, and maintain cybersecurity policies, standards, and procedures, ensuring clarity, accuracy, and alignment with regulatory and business requirements.
• Develop and update policies related to cookie usage, tracking technologies, and external attack surface exposure.
• Collaborate with technical teams, legal, and compliance to ensure policies are practical, enforceable, and aligned with current threat landscapes.
• Monitor changes in cybersecurity regulations and best practices, translating them into actionable policy updates.
• Educate stakeholders on policy implications and ensure consistent understanding and application across the organisation.

• Proven experience in cybersecurity policy writing, ideally within large or complex organisations.
• Understanding of cookie management, privacy regulations (e.g., GDPR, ePrivacy), and external attack surface risks.
• Familiarity with cybersecurity frameworks (e.g., NIST, ISO 27001) and governance models.

In the first instance please submit your CV