Participate in developing "rules" (company security standards and specific requirements) documents to support the overarching ISMS requirements and translate these into organizational direction.
The ISMS requirements are based on a subset of the NIST 800-53 family of requirements.
Work location: Onsite 1-2 weeks during startup, then remote work is allowed.
Understanding of NIST 800-53 framework
Experience with translating high-level requirements into the specific process or technical requirements
Technical understanding of the main infrastructure components as well as technical mitigation measures
Experience with the end-user needs and perspective on internal security standards (ie. understanding what the end-user of a document needs)