Cybersecurity Policy Analyst & Governance Specialist

Minimum Qualifications:

Bachelor's degree in cybersecurity, information technology, computer science, or related field; students within six months of graduation may apply. Equivalent combination of education and relevant experience will be considered.
Bachelor's degree in a related field; professional certifications such as CISM or CISA are highly preferred. Also entry-level cybersecurity certifications are valued, such as:

ISC² Certified in Cybersecurity (CC)

CompTIA Security+

CompTIA Cybersecurity Analyst+ (CySA+)

Minimum 5 years of direct experience in Cybersecurity Policy Development and Authoring. (Incumbent must be able to contribute immediately with zero training).
Deep, practical knowledge of NIST 800-53, NIST CSF, and ISO/IEC 27001 is preferred.
Advanced Communication & Negotiation

Skills:

Proven ability to lead meetings with high-level executives, explain technical risks to non-technical audiences, and negotiate policy language with legal/labor stakeholders.
Strong analytical thinking, problem-solving abilities, and attention to detail.
Proven "self-starter" with the ability to manage the policy lifecycle from research to final approval without daily supervision.


Work Location:

This role follows the ITA's hybrid work model, requiring consultants to be available for in-person work at City Hall East or the Integrated Security Operations Center. All candidates should confirm their ability to meet these requirements before applying. Immediate availability is preferred.