I have 20-years of experience in Information Security as an analyst, engineer, pentester, manager, director, and vice president. I enjoy writing and have written and reviewed hundreds of policies and procedures over my career. I even completely wrote the security and privacy policy deck for a major healthcare system in the Madison area from scratch years ago which is still in use today (HIPAA, HITECH, MARS-E, NIST, CMS). For you, I will review your needs, assess your current state, clarify any governance or contractural drivers for your policies and then review, rewrite, or author from scratch your policies, procedures, guidelines, white papers, etc.