Enable job alerts via email!

Cybersecurity Policy Specialist

Avance Consulting

London

On-site

GBP 50,000 - 70,000

Full time

2 days ago
Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company in London is seeking a Cybersecurity Policy Specialist to develop and maintain security policies aligned with NIST and CIS standards. The role involves collaboration, compliance reviews, and guidance on policy implementation, offering professional growth opportunities.

Qualifications

  • Proven experience as a Security Policy Writer on Cloud Technical Security Standards.
  • Experience with Identity and Access Management (IAM).

Responsibilities

  • Developing and maintaining security policies, procedures, and guidelines.
  • Conducting training sessions and workshops to educate employees on security policies.

Skills

Writing
Communication
Analytical
Problem Solving

Education

Bachelor's degree in information security
Bachelor's degree in Computer Science

Tools

Policy management tools

Job description

As a Cybersecurity Policy Specialist, this critical position focuses on developing and maintaining comprehensive security policies aligned with NIST and CIS standards. The role involves collaborating with various teams to ensure policies meet organizational needs, conducting regular reviews for compliance, and providing guidance on policy implementation. The ideal candidate will have a strong background in information security, excellent writing skills, and a deep understanding of cybersecurity principles. This position offers opportunities for professional growth within a collaborative work environment, enabling the individual to make a significant impact on the company's security posture.

Key responsibilities include:

  1. Developing and maintaining security policies, procedures, and guidelines.
  2. Ensuring alignment with NIST and CIS standards.
  3. Collaborating with teams to gather requirements and ensure policies meet organizational needs.
  4. Reviewing and updating policies regularly for compliance with industry standards and regulations.
  5. Providing guidance on policy implementation and adherence.
  6. Conducting training sessions and workshops to educate employees on security policies and best practices.
  7. Monitoring policy effectiveness and recommending improvements.
  8. Staying updated on cybersecurity standards and best practices.
  9. Developing policies for Cloud Technical Security Standards to ensure secure cloud environments.
  10. Creating guidelines for cryptographic algorithms to protect data.
  11. Implementing Zero Trust security principles, including least privilege access and continuous verification.
  12. Establishing network security policies, including firewalls, VPNs, and intrusion detection systems.
  13. Developing Identity and Access Management (IAM) policies, including SSO, MFA, and role-based access control.
  14. Formulating data security measures such as encryption, data masking, and data loss prevention.
  15. Maintaining a risk register to document, prioritize, and manage risks effectively.

Skills and Qualifications

  1. Proven experience as a Security Policy Writer on Cloud Technical Security Standards.
  2. Excellent writing and communication skills.
  3. Ability to translate technical concepts into clear policies.
  4. Strong understanding of cybersecurity principles.
  5. Expertise in Zero Trust security principles.
  6. Proficiency in network security.
  7. Experience with Identity and Access Management (IAM).
  8. Good understanding of NIST and CIS standards.
  9. Familiarity with regulatory requirements (e.g., GDPR, PCI-DSS, ISO 27001).
  10. Understanding of cryptographic algorithms.
  11. Knowledge of data security measures.
  12. Experience in maintaining a risk register.
  13. Ability to work independently and collaboratively.
  14. Analytical and problem-solving skills.
  15. Experience with risk assessment and management.
  16. Proficiency in policy management tools.
  17. Strong attention to detail and organizational skills.
  18. Ability to handle multiple projects and meet deadlines.
  19. Bachelor's degree in information security, Computer Science, or related field.

Other Desirable Skills

  1. The Open Group Architecture Framework certification.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
TrustpilotStars
Rated “Excellent” based on 15,707 reviews
Follow us
JobLeads Youtube ProfileJobLeads Linkedin ProfileJobLeads Instagram ProfileJobLeads Facebook ProfileJobLeads Twitter AccountJobLeads Xing Profile
Company
Services
Free resources
Support

© JobLeads 2007 - 2025 | All rights reserved