Description:

Key Responsibilities:

- Cybersecurity Training Program Development

- Design, develop, and deliver engaging cybersecurity training programs tailored for different employee groups and roles.

- Utilize e-learning modules, workshops, and interactive content to promote understanding of key cybersecurity topics such as phishing, data protection, password hygiene, and safe remote working practices.

- Continuously update training content to reflect emerging threats and evolving regulatory requirements.

- Awareness Campaigns and Communication

- Plan and execute regular cybersecurity awareness campaigns across the organization.

- Create impactful communication materials (emails, newsletters, videos, posters, and infographics) to reinforce key cybersecurity messages.

- Lead initiatives during global awareness events such as Cybersecurity Awareness Month to drive engagement and participation.

- Advocacy and Policy Promotion

- Act as a cybersecurity ambassador within the organizationpromoting adherence to policies, standards, and best practices.

- Collaborate with Corporate Communications, Human Resources, and IT teams to embed cybersecurity messaging in onboarding and corporate communication channels.

- Support the dissemination and understanding of new security policies and procedures.

- Program Measurement and Reporting

- Define and monitor metrics to evaluate the effectiveness of training and awareness activities.

- Conduct periodic phishing simulations and behavioral assessments to measure employee awareness and risk behavior.

- Prepare reports and dashboards to present progress and insights to senior management and relevant stakeholders.

- Collaboration and Culture Building

- Partner with internal stakeholders, including business units, technology teams, and compliance, to align awareness efforts with business needs.

- Promote a culture where cybersecurity is a shared responsibility and part of daily business operations.

- Provide coaching and guidance to departments in improving their local cybersecurity awareness practices.

Qualifications and Experience:

Education:

- Bachelors degree in Information Security, Computer Science, Communications, or a related discipline.

- Advanced degree or specialization in cyber security or behavioral change management is an advantage.

Experience:

- 5-8 years of experience in cybersecurity awareness, training, communications, or related roles, preferably within banking or financial services.

- Proven experience in developing and managing enterprise-wide cybersecurity awareness and training programs.

- Familiarity with learning management systems (LMS), phishing simulation platforms, and GRC tools.

- Strong understanding of cybersecurity fundamentals, human risk management, and behavioral change principles.

Certifications (Preferred):

- CompTIA Security+, CISSP, CISM, or SANS Security Awareness Professional (SSAP).