Key Responsibilities:
* Develop and maintain a
company-wide security training and awareness framework
aligned with Client's threat landscape, regulatory requirements, and industry best practices.
* Plan and deliver a
comprehensive annual training programme
, including e-learning modules, in-person workshops, phishing simulations, and tailored sessions for high-risk groups (e.g., IT admins, HR, Board).
* Measure and evaluate the effectiveness of training programmes through metrics, surveys, and simulated attacks, and continuously refine content and delivery.
* Collaborate with HR, IT, Data Protection, and other business units to
embed security into daily operations
.
* Act as the
primary liaison between the Cybersecurity team and the wider business
, fostering trust, engagement, and a proactive security mindset.
* Develop and share cybersecurity knowledge resources such as newsletters, FAQs, and trend updates.
* Leverage technology (LMS, e-learning tools, reporting dashboards) to enhance the scale, accessibility, and impact of training programmes.
About You
* 5+ years' experience in cyber security training, awareness, or a related field.
* Exceptional communication and presentation skills, with the ability to translate technical risks into engaging content for non-technical audiences.
* Strong stakeholder and change management abilities; comfortable engaging staff at all levels.
* Analytical, data-driven, and focused on continuous improvement of training programmes.
* Experience with Learning Management Systems and online training tools.
* Self-motivated, proactive, and capable of managing multiple initiatives independently.
Qualifications & Preferred Credentials
* Bachelor's or Master's degree in Cybersecurity, Risk Management, Business Information Systems, or a related field.
* Knowledge of relevant frameworks, standards, and regulations (e.g., NIS2, GDPR, ISO 27001, NIST).
* Professional certifications such as CISM, CISA, CISSP, or CRISC are highly desirable.