The specialist will work under the responsibility of the Head of IS Services and Risk Management and will report to the Security Awareness Team Lead. The responsibilities of the role will include the following:
- Organise, lead and project manage security E&A initiatives
- Participate in assessment of various business lines security risks to develop training plans & educate colleagues.
- Help to guide the oversight of awareness campaigns developed internally and also content available within LMS.
- Help implement a network of business colleagues that will act as Security Champions across the organization.
- Work with teammates to roll out security awareness training plans to raise money for charity.
- Work with teammates to implement a security non-compliance tool in the form of a time since last incident clock.
- Help develop security guidelines crafted in a manner that is accessible to people with varying levels of technical experience.
- Roll out surveys to poll new and existing colleagues' security awareness proficiency.
- Help roll out agile security communications.
- Have a technical background with operating security campaigns via an LMS. This would include an understanding of SCORM files, the ability to upload SCORM files and test content and the ability to setup and monitor training modules.
- Understanding of different methods used to train colleagues, campaigns, phishing, gamification.
- Strong understanding of Phishing, Smishing, Social Engineering and other common methods that are used by cyber-criminals to prey on employees.
- The ability to write Welcome, Reminder and Past due templates that will delivered by the LMS.
- The ability to write communications for senior management and senior security staff which will be delivered to all colleagues
- The ability to write blogs about security awareness
- The ability to lead one-on-one or smalls group session with colleagues to teach them about security threats and how to follow company security awareness standards.