Key Responsibilities:
- Develop and maintain a company-wide security training and awareness framework aligned with Client’s threat landscape, regulatory requirements, and industry best practices.
- Plan and deliver a comprehensive annual training programme, including e-learning modules, in-person workshops, phishing simulations, and tailored sessions for high-risk groups (e.g., IT admins, HR, Board).
- Measure and evaluate the effectiveness of training programmes through metrics, surveys, and simulated attacks, and continuously refine content and delivery.
- Collaborate with HR, IT, Data Protection, and other business units to embed security into daily operations.
- Act as the primary liaison between the Cybersecurity team and the wider business, fostering trust, engagement, and a proactive security mindset.
- Develop and share cybersecurity knowledge resources such as newsletters, FAQs, and trend updates.
- Leverage technology (LMS, e-learning tools, reporting dashboards) to enhance the scale, accessibility, and impact of training programmes.
About You
- 5+ years’ experience in cyber security training, awareness, or a related field.
- Exceptional communication and presentation skills, with the ability to translate technical risks into engaging content for non-technical audiences.
- Strong stakeholder and change management abilities; comfortable engaging staff at all levels.
- Analytical, data-driven, and focused on continuous improvement of training programmes.
- Experience with Learning Management Systems and online training tools.
- Self-motivated, proactive, and capable of managing multiple initiatives independently.
Qualifications & Preferred Credentials
- Bachelor’s or Master’s degree in Cybersecurity, Risk Management, Business Information Systems, or a related field.
- Knowledge of relevant frameworks, standards, and regulations (e.g., NIS2, GDPR, ISO 27001, NIST).
- Professional certifications such as CISM, CISA, CISSP, or CRISC are highly desirable.
