Candidates will analyze current policies, ascertain relevance and translate these into a proposed company policies framework by creating standards and procedures. This will be followed by developing procedures and processes for implementation and monitoring with appropriate documentation including definition of roles and responsibilities. The PSPs have to comply with State of Arizona Policy and Standards framework while be audit worthy for compliance, completeness, clarity, currency, enforceability and share-ability across other government agencies.
The successful candidate will have prior experience specifically in the field of Information Technology (IT) PSPs in large organizations, including sound and proven experience in at least one of the disciplines like HIPAA, COBIT, ITIL, NIST, ISO etc.
A Bachelor’s Degree in Computer Science, Information Systems, Business Administration or other related field
10 years of IT experience of which 3 years of proven experience developing IT PSPs along with related documentation and communiqués
Strong oral and written communication and interpersonal skills including leading discussions
Must be well versed and experienced in at least one of the following disciplines; COBIT, ITIL, NIST, ISO etc.
Understanding of information security legal, regulatory and compliance requirements
CISSP certification preferred
Master’s degree preferred
Knowledge and Skills
• Strong knowledge of NIST Federal Information Processing Standards (FIPS), HIPAA Security Rule standards •Demonstrated original work in the area of PSPs •Experience in State government preferred •Experience in Quality Assurance and Risk Management •Ability to influence and gain acceptance
Under the general direction of the Information Security Manager, you will work with subject matter experts to determine and create standards and procedures, ensure implementation occurs according to plan, within strict deadlines, and within scope and budget.
Develop and monitor project plans including identification and mitigation of issues and risks.
Develop strategies to effectively communicate across all organizational levels. Report on project status on a regular basis to stakeholders.
Provide direction and support to the project team.
Interface with management and staff to determine appropriate policy and standards requirements.
Perform research, review audit reports, gap analysis, determining relevance, requirements and translating collected requirements into an overall policy framework and subsequent Agency policy documents.
Develop all subsequent agency standards in support of policy framework based on agency needs and business practices.
Interface with staff to develop procedural documents to communicate, implement and maintain developed agency-wide policies, standards, and procedures.
Develop technical standards and workflows including procedures for policy development and maintenance.