Security Policy Consultant / Technical Writer

  • Location

    Glasgow, Scotland

  • Sector:

    IT Security

  • Job type:


  • Salary::

    Up to £0.00 per day + HIGHLY COMPETITIVE RATE

  • Contact:

    Gail Maguire

  • Contact email:


  • High Salary:


  • Low Salary:


  • Reference:


  • Job Published:

    9 months ago

  • Duration:

    12 months+

  • Expiry Date:


  • Startdate:


Security Policy Consultant / Technical Writer - GLASGOW

My client is a highly dynamic and globally successful Investment Bank. They currently have an opportunity for a Technical Writer to join their team on a contract basis in Glasgow.

The role will be part of the Technology & Information Risk (TIR) division. Its mission is to enable proactive, comprehensive, and consistent technology and information-related risk management practices across the Firm and to protect Firm information, systems, and associated infrastructure from Cyber Threats.

The role:
A position is available within the Global Risk Governance group for a Policy Specialist in the Global Technology, Cyber and Information Security Policy Management Team. This is an excellent opportunity for a candidate who is ambitious, experienced, and highly-skilled to join a dynamic global function in our Glasgow office.
The team is responsible for policy development, maintenance, socialisation and advisory services, as well as mappings to regulatory requirements and risk management objectives. The team develops new and existing policies and procedures based on development requests approved by senior policy coverage area owners, managing the full end-to-end lifecycle of development requests to final governance approvals.

The primary focus of the role is:

Initial Research/Scoping of new Policy/Standards Requests
- Working with various Program Leads and other subject matter experts across Technology Divisions, the person will be responsible for owning the process of initial research and scoping of new Policy/Standards requests.

-Drafting of Policies & Standards - The person will be responsible for drafting of new Policy/Standards content including:
o Identification of subject matter experts and other interested parties to be involved
o Executing (or facilitating delegation) of initial drafting of Policy/Standards content
o Facilitating review/discussion workshops in order to finalize content
o Presenting final recommendations to senior management (CIO/COO level engagement)

- Liaison with Technology divisions on Standards implementation
- Liaising with divisional leads on aspects of Policy/Standards implementation (e.g. on the development of Division specific procedures as required).

In addition to business analysis and project management skills this role also require the successful candidate to be able to make pragmatic changes to key Policies, Standards and Procedures along with business process definitions and Terms of Reference documents.

Skills Required (essential)
-Proven written and verbal communication skills - to the level of being able to interact directly with senior management.
-Experience in technical writing, preferably within the Technology sector.
-Experience of advising on style, syntax and usage to improve quality and effectiveness of the Policy documentations
-Experience of working with policies and standards programs, preferably Information Security and/or Technology related.
-Experience of document management methodologies and designs
-Proven analytical skills.
-Strong awareness of industry standards, best practices and regulatory expectations in respect to technology.
-Aptitude for technology and strong understanding of technology concepts and terminology.
-Organizational skills as reflected through a methodical/organised approach to analysis and documentation and the ability to manage multiple tasks simultaneously.
-Significant discretion and respect for confidentiality of sensitive information.
-Proficiency in Microsoft Office suite.
-Proactive self-starter who can identify opportunities for improvement and operate autonomously.
-Demonstrates good judgment.

Desired Skills
- Hands on technical experience (e.g. software development, infrastructure support).
- Experience of Archer workflows
- Any of the below (or industry equivalent) would be of benefit:
o Certified Internal Auditor (CIA)
o Certified Information Systems Auditor (CISA)
o Certified in Risk and Information Systems Control (CRISC)
o Certified in the Governance of Enterprise IT (CGEIT)
o Certified Information Systems Security Professional (CISSP)