Cyber Policy Analyst Details

Cyber Policy Analyst

Harvard Partners, LLP, Trusted Advisors to IT - Boston, MA

Employment Type : Full-Time

As the information Security Cyber Policy Analyst, you will work with the Cyber Security Policy and Regulatory team on policy and governance enhancements to the Cyber Security Policy and underlying Requirements.
Responsibilities:

• Research and evaluate the current Cyber Security Policy and Minimum Requirements, provide recommendations on areas for improvement content and structure.
• Assess the current offshore access and storage requirements for alignment to peers and industry standards.
• Leveraging existing Cyber Security Governance processes, develop a formal Cyber Security Policy Governance program and reporting to Business Lines on their Cyber Security Policy compliance.
• Validate Cyber Security Policy mapping to NIST 800-53
• Review, evaluate and provide recommended updates to the Cyber Security Glossary of Key Terms

• Experience writing and/or managing Cyber Security Policies and Standards
• General understanding of NIST 800-53 and cyber security banking guidance and regulations (Ex. Gramm-Leach-Bliley Act, NY Client 23-CRR-500, FFIEC IT Handbooks)
• Strong interpersonal skills to interact with business lines to provide CS Policy and Program advice and guidance.
• Proficiency with MS Office skills including Word, PowerPoint, Excel.
• Ability to work under pressure with efficiency and accuracy.
• Ability to plan and prioritize workload
• Experience working in Archer GRC tool.

Harvard Partners is a management consulting firm focused on helping companies more effectively leverage their IT investment. We engage with the C-Suite and Technology Team to help them better understand their IT infrastructure and process in order to align the technology strategy and organization to reach the firm’s strategic business goals.Some of our practices include:• Program/Project Management and "PMO as a Service"• IT Assessments• Business Continuity/Disaster Recovery• Optimized Infrastructure• Concierge Managed Services• Data Center Strategy, Transformation, and Migration• Cloud Management Programs• Security Assessments and Remediation• Staffing, technical & tacticalWorking with the client’s staff, vendors, and consultants, we deliver supportive and collaborative engagements where direct dialog, simplified reporting, productive meetings, and clear responsibility and accountability encourage active participation resulting in consensus-based business outcomes.