Our client is seeking a skilled and proactive professional to lead the development and implementation of our global Information Security Awareness and Training programs. This role is critical in helping all employees understand the evolving cybersecurity threats relevant to their roles and how to recognize and defend against them. You will also design, execute, and evaluate phishing simulations to strengthen our organizations human risk defenses.

Key Responsibilities:

• Human Risk Analysis:
  Continuously monitor and identify the top human-related security risks facing the organization. Determine the behavioral changes required to reduce these risks effectively.

• Security Awareness Program Management:
  Design, manage, and implement a positive, behavior-driven security awareness program that engages employees and drives long-term cultural change.

• Content Development:
  Create impactful, user-friendly awareness materials and learning content that explain complex technical topics in simple terms.

• Multichannel Delivery:
  Utilize a variety of communication and training channels (e.g., intranet, email campaigns, live/virtual sessions) to maximize reach and engagement.

• Program Measurement:
  Develop and report on key metrics to assess the effectiveness of awareness initiatives, including content engagement and behavior change.

• Integrated Learning:
  Incorporate information security awareness into onboarding, new manager training, and other internal training events.

• Stakeholder Collaboration:
  Establish and maintain a network of internal stakeholders to align awareness efforts with business goals and emerging risks.

• Vendor Management:
  Manage relationships with third-party vendors supporting security education, training platforms, and awareness content.

• Phishing Simulation Management:
  Oversee the planning, execution, and refinement of global phishing assessments to test and improve employee response to simulated threats.

• Training Remediation & Reporting:
  Track and report on the effectiveness of phishing campaigns and associated remedial training participation and outcomes.