Policy Specialist at Hewlett Packard Enterprise

Bengaluru, Karnataka, India

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Technology, CybersecurityIndustries

Requirements

Bachelor’s degree in Cybersecurity, Information Systems, Public Policy, or a related field
7+ years of experience in cybersecurity governance, compliance, or policy functions
Expertise in policy creation and lifecycle management
Familiarity with the interdependencies between policy, compliance, and risk management
Knowledge of various common compliance frameworks used globally (e.g., NIST CSF, ISO 27001, Secure Controls Framework (SCF), SOC 2)
Ability to work independently and on high-impact projects in fast-paced environments
Advanced expertise across cyber and IT security
Experience with GRC tools
Strong communication skills to explain complex technical issues to non-technical audiences
Ability to translate technical concepts and control requirements into concise and understandable policy language
Strong analytical, research, and writing skills
Preferred: Experience supporting policy lifecycle management, control assessments, or audit readiness activities
Preferred: Exposure to technical security domains, such as identity and access management, vulnerability management, or cloud security
Preferred: Certifications such as Security+, ISO 27001 Lead Implementer, GRC Professional, or equivalent

Responsibilities

Support the Cybersecurity Policy Refresh Program by helping rewrite and modernize existing policies, standards, and procedures to align with the organization’s chosen control framework
Understand and articulate the relationship between policies and controls — ensuring policy content accurately reflects control intent and operational feasibility
Collaborate with subject matter experts (SMEs) across Cybersecurity, IT, and Product teams to gather input for policy updates, lifecycle management, and alignment with control assessments
Support specification audits by reviewing and analyzing technical documentation, verifying policy-to-specification consistency, and tracking updates through their lifecycle
Manage and respond to policy-related inquiries from across the organization — including ambiguous or “oddball” questions — by providing clear, accurate, and well-reasoned guidance
Assist with audit and assessment activities, including gathering policy evidence, mapping controls, and preparing documentation for internal and external audits
Help maintain the policy inventory, versioning, and review cadence, ensuring policies remain current and traceable to applicable frameworks and standards

Skills

Key technologies and capabilities for this role

policy creationlifecycle managementcompliance frameworksrisk managementcybersecurityIT securityGRC toolscommunication

Questions & Answers

Common questions about this position

Is this Policy Specialist role remote or onsite?

This role has been designed as ‘Onsite’ with an expectation that you will primarily work from an HPE office.

What is the salary for the Policy Specialist position?

This information is not specified in the job description.

What key skills are required for the Policy Specialist role?

Expertise in policy creation and lifecycle management, knowledge of compliance frameworks, experience with GRC tools, advanced cyber and IT security expertise, and strong communication skills to explain complex issues to non-technical audiences are required.

What is the company culture like at HPE?

HPE's culture thrives on finding new and better ways to accelerate what’s next, values varied backgrounds, offers flexibility to manage work and personal needs, embraces bold moves together, and supports career growth.

What makes a strong candidate for this Policy Specialist position?

Strong candidates will have expertise in policy creation and lifecycle management, familiarity with compliance and risk interdependencies, knowledge of global compliance frameworks, GRC tool experience, cyber/IT security expertise, and the ability to work independently on high-impact projects while communicating complex ideas clearly.

Hewlett Packard Enterprise

Provides enterprise IT solutions and services

About Hewlett Packard Enterprise

Hewlett Packard Enterprise provides enterprise IT solutions with a focus on cloud services, artificial intelligence, and edge computing. Their products include HPE Ezmeral for managing containers, HPE GreenLake for cloud services, and HPE Aruba for networking. These solutions help businesses improve their performance and adapt to digital changes. HPE's business model includes selling hardware, software, and services, as well as offering subscription-based services and long-term contracts. What sets HPE apart from competitors is its commitment to open-source projects and its active developer community, which supports collaboration and innovation. The company's goal is to empower organizations to transform digitally and optimize their operations.

Houston, TexasHeadquarters

1939Year Founded

IPOCompany Stage

Hardware, Enterprise Software, AI & Machine LearningIndustries

10,001+Employees

Risks

Integration challenges with Juniper Networks may delay AI-driven networking benefits.

Competition from startups like Flywheel could impact HPE's AI and cloud services.

HPE's acquisition strategy may strain resources and distract from core operations.

Differentiation

HPE's GreenLake offers a unique hybrid cloud platform for diverse IT environments.

HPE Ezmeral provides advanced container management, enhancing enterprise AI and analytics capabilities.

HPE's Aruba solutions integrate cloud security and networking for seamless, secure connectivity.

Upsides

HPE's acquisition of Juniper Networks boosts AI-driven innovation in networking.

OpsRamp acquisition enhances HPE's IT management with AI-based automation capabilities.

Axis Security integration strengthens HPE's cloud security offerings with SASE solutions.

Land your dream remote job 3x faster with AI

Try Jobo Free