FILLED Policy Adoption Consultant (ref DM4240)
Policy Adoption Consultant,
Interim, 3 months,
Competitive Rate,
London Based,
March 4th Start
Role Summary
Our Client is a Financial Services Organisation. They have a Technology Security Team which supports business-led and Information System change programmes, driving security improvements where required.
Recent improvements include the release of a new Information Classification and Handling policy. The policy is applicable to all staff and details requirements for classifying and marking information and subsequent handling and disposing requirements, which differ according to the sensitivity of the information.
The policy forms a mandatory baseline for information classification and handling, although it has been written to allow local business units to add additional controls where required.
They are looking for a consultant to embed the policy throughout the organisation, raising awareness amongst all staff to ensure it is consistently applied.
Candidates for this role are unlikely to be Policy Specialists. It is important therefore that Cv's are tailored for the role in the first instance, showing the relevant Policy Adoption experience.
Details
The purpose of this role is to embed the policy throughout the organisation. To achieve this you will be required to:
* Familiarise yourself with and become a 'Subject Matter Expert' of the policy requirements, allowing you to interpret them to staff across all business units
* Work with each business unit to embed the policy into their local procedures, taking time to collate and analyse any special requirements they may have and;
* Where the analysis identifies special requirements, work with the business unit to produce procedural documentation and associated communications that meet the requirements of the policy and their own additional needs
* Create and deliver presentation slides which concisely articulate the importance of classifying and handling information according to its sensitivity. The presentation will be delivered to each business unit and is to be engaging and 'sell' the concept to all staff
* Develop and manage a project plan to ensure all individual business units are personally engaged in line with project timescales, aware of the requirements of the policy and can evidence that they have adopted them into their local procedures.
Key skills and Requirements
* Experience of working to embed Policy into an Organisation with related Communication and Behaviour/Process Change Management Skills
* Experience within IT and IT Security to enable you to understand Security Risk Management Methodologies
* Experience in Professional or Financial Services.