Interim IT Security Governance Policy Writer

Security, Policy writing, Governance, Risk, ISO 27001, frameworks, Your new company
A well-known technology organisation offers almost fully remote working to an Interim IT Security Policy Writer for 3-6 months- flexible locations, but occasional meetings will be required in Reading or London.

Your new role

• Policy Creation & Management: Develop, publish, and maintain security policies, standards, and guidelines in a consistent, AI-friendly, metadata-driven policy format. Translate complex security and regulatory requirements into clear, concise, and structured documentation suitable for both humans and AI models. Ensure all documentation is version-controlled, accessible, and aligned to enterprise governance frameworks.
• ISO & Cybersecurity Alignment: Ensure policies map to and support compliance with: ISO 27001, ISO 27701, ISO 22301, ISO 31000, Cyber Essentials/CE+, NIST Cybersecurity Framework (CSF). Conduct gap analyses against new or updated standards and lead remediation activity.
• Audit & Assurance: Support internal and external audit activities related to policy and governance. Provide evidence, documentation mapping, and subject matter insight as required. Track non-conformities and corrective actions, ensuring timely closure.
• AI-Ready Documentation & Structure: Write policies using structured templates, taxonomies, tagging structures, and semantic headings optimised for AI policy ingestion.
• Cross-Functional Collaboration: Across several diverse teams within the business.
• Continuous Improvement

• Demonstrable experience writing policies, standards, or governance documentation for ISO 27001, 27701, 22301, NIST, or similar frameworks.
• Ability to write clear, structured, unambiguous content designed for both human and AI consumption.
• Strong knowledge of cybersecurity principles, frameworks, and best practices.
• Experience of policy lifecycle management, governance workflows, and document control.
• Strong understanding of enterprise risk management, control design, and assurance principles.
• Excellent written communication skills with exceptional accuracy and attention to detail.
• Skilled in MS Word, Excel, and other documentation tooling (eg, SharePoint, Confluence, GRC platforms).
• Experience working in complex business environments with minimal supervision