Cybersecurity Policy Writer & Governance Lead
Listed on 2026-07-08
-
IT/Tech
Cybersecurity, Information Security, Data Security
Cybersecurity Policy Writer & Governance Lead
We are seeking a strategic and detail-driven Cybersecurity Policy Writer & Governance Lead to design, implement, and continuously enhance cybersecurity policies and governance frameworks. This role is critical in strengthening HP's security posture, ensuring regulatory compliance, and embedding risk-aware practices across the company.
The ideal candidate combines deep expertise in cybersecurity standards and regulatory requirements with the ability to translate complex technical concepts into clear, actionable, business-aligned policies. This role requires strong cross-functional collaboration, executive communication skills, and a proactive approach to risk management.
Key Responsibilities- Lead the development, review, and lifecycle management of cybersecurity policies, standards, and specifications.
- Establish and mature governance frameworks aligned with industry-best practices and regulatory expectations.
- Ensure policies evolve in response to emerging threats, business changes, and regulatory updates.
- Maintain strong knowledge of regulatory and industry frameworks such as NIST Cybersecurity Framework, ISO/IEC 27001, CIS V8.1, General Data Protection Regulation, and PCI DSS.
- Ensure alignment between cybersecurity controls, enterprise risk management practices, and compliance obligations.
- Provide authoritative guidance on policy interpretation, control implementation, and exception management.
- Partner with IT, Legal, Compliance, Risk, Audit, and business units to ensure policies are practical, enforceable, and business-aligned.
- Influence senior leadership through reporting on governance metrics, compliance posture, and risk exposure.
- Support the development and delivery of cybersecurity awareness and policy training programs.
- Promote a culture of security accountability and governance maturity across the organization.
- Define and track governance KPIs and KRIs.
- Monitor policy adherence and control effectiveness.
- Provide executive-level reporting on compliance trends, risk insights, and remediation progress.
- Bachelor's or Graduate degree in Computer Science, Information Technology, Cybersecurity, or related discipline (or equivalent experience).
- 7–10 years of progressive experience in cybersecurity governance, policy development, risk management, or compliance.
- Demonstrated experience drafting enterprise-level cybersecurity policies and standards.
- Strong knowledge of global regulatory and cybersecurity control frameworks.
- Exceptional written and verbal communication skills, with the ability to translate technical requirements into business-focused guidance.
- Experience with policy lifecycle management tools or governance platforms preferred.
- Professional certifications such as CISSP, CISM, CRISC, or ISO 27001/NIST-related certifications are highly desirable.
- Working understanding of Artificial Intelligence is a plus.
- Cybersecurity Governance & Operating Models
- Policy & Standards Development
- Regulatory Compliance & Audit Readiness
- Security Controls & Control Mapping
- Automation & Governance Tooling
- Executive Communication
- Cross-Functional Influence
- Results Orientation
- Learning Agility
- Customer-Centric Mindset
- Influences cybersecurity governance strategies across multiple teams and business units.
- May lead projects or initiatives related to governance transformation and compliance readiness.
- Drives enterprise-wide consistency in policy adoption and control maturity.
- Operates within established frameworks while addressing complex regulatory and cybersecurity challenges.
- Exercises independent judgment in interpreting standards and resolving governance issues.
- Balances risk, compliance, and operational practicality in decision-making.
The pay range for this role is $105,050 to $161,800 USD annually with additional opportunities for pay in the form of bonus and/or equity (applies to United States of America candidates only). Pay varies by work location, job-related knowledge, skills, and experience. Benefits: HP offers a comprehensive benefits package for this position, including:
- Health…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).