Cybersecurity Policy & Standards Analyst / Technical Writer
Posted 5 days ago by 1757044623
Negotiable
Outside
Remote
USA
Summary: The Cybersecurity Policy & Standards Analyst / Technical Writer is responsible for reviewing and mapping existing policies to align with the Common Control Framework and organizational standards. This role involves identifying gaps in current policies, collaborating with stakeholders to validate requirements, and supporting change management processes for policy updates. The position requires strong technical writing skills to create clear policies and documentation that cater to both technical and non-technical audiences.
Key Responsibilities:
- Review and map existing policies to ensure alignment with the Common Control Framework (CCF), traceability matrix, and organization standards.
- Identify gaps for current policies and build a repeatable process for new policies that will meet regulatory and business requirements.
- Collaborate with stakeholders to gather, document, and validate policy requirements while challenging accuracy and validity of policy statement.
- Support change management processes for policy and standard updates.
- Draft clear, digestible policies and standards that are accessible to both technical and non-technical audiences.
- Translate complex cybersecurity concepts into easily understandable language for various audiences.
- Create and maintain cybersecurity knowledge articles and documentation.
- Partner with security teams to ensure accuracy and consistency in cyber technical content.
Key Skills:
- Strong understanding of cybersecurity regulations and frameworks such as NIST 800-53 and NIST CSF.
- Policy & Standards Expertise: Strong understanding of cybersecurity frameworks and policy lifecycle management.
- Excellent written and verbal communication skills, with the ability to simplify technical language.
- Analytical Thinking: Ability to assess policy gaps and align documentation with strategic goals.
- Detail-Oriented: High accuracy in documentation, policy mapping, gap analysis.
- Problem-Solving: Ability to identify problems and develop effective solutions.
Salary (Rate): undetermined
City: undetermined
Country: USA
Working Arrangements: remote
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Review and map existing policies to ensure alignment with the Common Control Framework (CCF), traceability matrix, and organization standards.
Identify gaps for current policies and build a repeatable process for new policies that will meet regulatory and business requirements.
Collaborate with stakeholders to gather, document, and validate policy requirements while challenging accuracy and validity of policy statement.
Support change management processes for policy and standard updates.
Skills: Technical Writing & Communication
Draft clear, digestible policies and standards that are accessible to both technical and non-technical audiences.
Translate complex cybersecurity concepts into easily understandable language for various audiences.
Create and maintain cybersecurity knowledge articles and documentation.
Partner with security teams to ensure accuracy and consistency in cyber technical content.
Strong understanding of cybersecurity regulations and frameworks such as NIST 800-53 and NIST CSF,
Skills:
Policy & Standards Expertise: Strong understanding of cybersecurity frameworks and policy lifecycle management.
Communication: Excellent written and verbal communication skills, with the ability to simplify technical language.
Analytical Thinking: Ability to assess policy gaps and align documentation with strategic goals.
Detail-Oriented: High accuracy in documentation, policy mapping, gap analysis.
Problem-Solving: Ability to identify problems and develop effective solutions.