Policy Management Analyst (Tampa, FL)

Location: Tampa, FL
Date Posted: 11-07-2018
Job Title: Policy Management Analyst
Job Code: DTC1JP00001156)

Location:  Tampa, FL
DURATION: 6 months contract

Need someone to document/Writing information/cyber security policy-related documentation, reports and/or presentations that articulate, interpret or explain cyber security and/or risk policies, procedures, job aids and processes.

Position Summary: The Technology Risk Management (TRM) Policy & Governance Policy Management Analyst position supports the TRM Policy Manager with creation, maintenance and communication of cyber security and technology risk policy-related documentation (i.e., policies, procedures, job aids, process and other documentation) and compliance with Client's Corporate Document Management Framework (Client's Framework) requirements.
Principal Responsibilities
:
This position provides support as directed by the TRM Policy Manager to perform the following activities:
•        Interface with management and Subject Matter Experts (SME’s) to create new and maintain existing policy-related documentation in compliance with Client's Framework requirements and to coordinate approvals and publication in the Client'sEnterprise Policy Repository (EPR).
•        Provide governance for TRM documentation including review for soundness across policies, control standards, core processes, procedures, job aids, the information security program and other cyber security material.
•        Formally present Client's IS policy updates to business and technology risk coordinators, first line of defense representatives and applications security mavens.
•        Managing bi-annual reviews of IS control standards, annual reviews of IS policies, IS program and TRM core process documents and required periodic reviews and updates of TRM’s Enterprise Policy Repository (EPR) documents.
•        Perform TRM EPR Gatekeeper functions.
•        Interface with Client's management and staff as requested to research Client's policies.
•        Perform special assignments as requested by TRM Policy & Governance management.
•        Support the Technology Risk Management Steering Committee (TRMSC).

Experience:
•        3 – 5 years of experience in the following is required:
o        Working with Financial Industry regulators and regulations (e.g., FRB, SEC, NYSDFS, ESMA, MAS).
o        Applying and/or assessing the implementation of cyber security industry standards (e.g., ISO/IEC 27001/27002:2013, FFIEC IT Examination Handbook 2016, NIST Cybersecurity Framework versions 1.0 and 1.1, NIST Special Publication 800-53 Revision 4).
•        3 – 5 years of experience in the following is preferred:
o        Financial Industry information systems, information technology and/or cyber security/risk or information systems/technology audit.
o        Writing information/cyber security policy-related documentation, reports and/or presentations that articulate, interpret or explain cyber security and/or risk policies, procedures, job aids and processes.

Knowledge and Skills Required:
•        Demonstrated flexibility, cooperation, collegiality and teamwork abilities
•        Excellent communication, writing and interpersonal skills
•        Extremely strong attention to detail
•        Confidence and presence when working with senior management
•        Multi-tasking and follow-up skills
•        Proficient in Microsoft Office PowerPoint, Excel and Word
•        Experience with Adobe Acrobat Professional, MS Visio and MS SharePoint (preferred)

Education, Training &/or Certification:
•        College degree in Business Management/Computer Science or equivalent experience
•        CISA, CISM, CRISC or equivalent certification
or
this job portal is powered by CATS