Information Security Policy Analyst

Job Locations US-PA-Philadelphia
Posted Date 10 months ago(11/23/2019 12:34 PM)
# of Openings
Information Technology


SoluStaff has a requirement for an Information Security Policy Analyst for our customer, a large government organization in Center City Philadelphia.   The Information Security Policy Analyst will be tasked with improving the security posture of our customer through the development of enterprise Information Security Policies and Procedures.  Candidates for the the Information Security Policy Analyst position need to have experience with the NIST security policy framework, mapping security controls, and familiarity with regulations such as HIPAA Security, CJIS, PCI and others.  Anticipated length of contract is 6 months to one year.


  • Gain understanding of customer IT environment, focusing on IT assets / applications / accounts critical to business operations
  • Review existing security policies and procedures
  • Review customer compliance requirements
  • Identify and document existing security controls
  • Develop roadmap for the development of a comprehensive information security policy template
  • Draft security policy and procedure templates
  • Customize security policies and procedures in accordance with business requirements
  • Identify methods for policy / procedure compliance, distribution, training and awareness strategies


  • Bachelor's Degree in Computer Science, Information Security, Information Systems, or related field, or equivalent professional experience required.
  • One or more relevant technical/professional security certifications (such as: COMP-TIA Network+ , Security+, SANS GIAC, CISSP, CRISC, CISA, or vendor-specific) required. Two or more certifications preferred.
  • 4+ years of experience in related job area (information security, identity/access management, IT Audit, forensics/eDiscovery) required.
  • Experience in Windows Office (Word, Project Plan, Visio, PowerPoint, Excel, etc.) required.
  • Written communication with ability to create formal documents for enterprise distribution
  • Experience developing enterprise Information Security policies and procedures.
  • Expertise with NIST information security standards 
  • Experience in Windows Office (Word, Project Plan, Visio, PowerPoint, Excel, etc.) required.
  • Ability to create formal documents for enterprise distribution


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed