Policy, Training & Communication Senior
Company: AGS Cyber
Location: Boston
Posted on: June 25, 2022
|
|
|
Job Description:
!SUPER EXCITING COMPANY!!ONE OF THE LARGEST VEHICLE TECHNOLOGY
SUPPLIERS!INTERNATIONAL TEAM, CUTTING EDGE TECHNOLOGYMUST BE
LEGALLY AUTHORISED TO WORK IN THE US ON A PERMANENT BASIS Job
Summary:Reporting into the Security Risk Management Lead within the
Enterprise Cybersecurity Risk,Compliance, and Resilience practice,
the role of Senior Security Training & Awareness Analyst will be
responsible for supporting the development, maintenance, and
operation of XXX's globalinformation security training and
awareness program.As a large organization working in multiple types
of industries globally, XXX & their employees facenumerous
information security threats every day, with increasing complexity
when it comes tocompliance with various industry, regulatory,
legislative, and customer-driven standards. As a result, security
awareness & education is key within XXX to ensure all employees
understand their security responsibilities and have the knowledge
to protect themselves and XXX from information security threats.The
Security Education & Training Analyst will be pivotal in supporting
our global informationsecurity education and awareness efforts and
helping find new innovative methods to educate users in engaging
ways.To be effective and successful in this role, the candidate
must possess strong organizational skills,exceptional communication
skills, customer relationship, and process management skills
tocomplement your solid security & risk background.Your Role---
Support the development and roll-out of global security education &
training program(including phishing, role-based training, and other
advanced topics and methodologies)--- Support development of goals
and objectives for ongoing cyber education curriculum--- Conduct
interactive training exercises to create an effective learning
environment--- Aid in creating new education and training
materials, to develop curriculums for broaderaudiences as well as
creating role-specific lesson plans--- Evaluate the effectiveness
and comprehensiveness of existing training programs to
identifyareas for improvement and approaches that are effective or
ineffective--- Working with the Lead, creating reports and
dashboards to track and monitor educationmetrics and targets---
Support the design and execution of security awareness exercise
scenarios as processes aredeveloped within Enterprise Cybersecurity
and other collaborating departments (Legal, DataPrivacy, IT,
etc.)--- Write instructional materials (e.g., standard operating
procedures, production manual) to provide detailed guidance to the
relevant portion of the workforce on security.--- Develop or assist
in the development of computer-based training modules or classes,
course assignments, course evaluations, and grading and proficiency
standards--- Present technical information to technical and
non-technical audiences.--- Monitor training attendance and develop
metrics to measure training effectiveness.--- Ensure that training
meets the goals and objectives for cybersecurity training,
education, or awareness.--- Plan and coordinate the delivery of
classroom techniques and formats (e.g., lectures, demonstrations,
interactive exercises, multimedia presentations) for the most
effective learning environment.--- Plan non-classroom educational
techniques and formats (e.g., video courses, mentoring, web-based
courses).--- Recommend revisions to curriculum and course content
based on feedback from previous training sessions.--- Serve as an
internal consultant and advisor to the business on security best
practices.--- Develop or assist with the development of
security/privacy training materials and other communications to
increase employee understanding of company security/privacy
policies, data handling practices and procedures, and legal
obligations.--- Develop and execute communication to end-users
around cyber events and new letters.--- Direct and participate in
virtual and onsite training.Your Background--- Minimum 3 years in
Cybersecurity, Policy Management, Training, and Communication.---
Real-world experience in developing security awareness through
alternate approaches, such as gamification or cyber competitions,
as ways to develop skills with hands-on experience in simulated,
real-world situations.--- Experience in managing security awareness
& training programs--- Experience in delivering security awareness
training to a technical and non-technical audience--- Experience in
communicating with all levels of management including Board
members--- Experience using computer-based training and e-learning
services.--- Experience writing and updating technical
documentation--- Knowledge of laws, regulations, policies, and
ethics as they relate to cybersecurity and privacy.--- Ability to
operate with a high degree of independence with regard to work
tasks and project management activities--- Ability to work in a
team environment and possess strong critical thinking and
analytical skills, and be able to work in a team environment---
Strong written, verbal, and presentation communication skills and
ability to communicate to business audiences at all levels, to
drive a risk-aware cultureNice to Haves (Preferred
Qualifications):--- Knowledge and experience in IT & Security
compliance standards and/or IT Security Frameworks e.g. ISO, SOX,
TISAX, NIST, CIS, GDPR--- Industry recognized qualifications in IT
Security or Risk domains an advantage--- 3+ years of experience
with embedded software--- Knowledge of operating major training and
LMS platforms, KnowB4, SANS, Mimecast, etc
Keywords: AGS Cyber, Boston , Policy, Training & Communication Senior, Other , Boston, Massachusetts
|
Click
here to apply!
|
