Information Security Awareness Program Manager Atlanta, GA
Atlanta, GA
100,000 - 200,000
Job Description:
Qualifications:
- 7+ years security awareness experience working in information security and demonstrable understanding of information security concepts,
- Solutions driven, strategic thinker who can quickly understand complex security issues and develop the right content for the need
- Proven track record in preparing compelling training for broad audiences
- Strong situational analysis in decision-making abilities involving differing businesses
- Maintains agility; able to work across multiple demands, shifting priorities, and rapid change
- Experience deploying annual training and developing ad hoc, role-based training needed to address threats that challenge the workforce
- Able to maintain awareness of security trends and the current threat landscape
- Excellent verbal and written communication analysis, problem-solving, team, conflict management, and time management skills, with minimal supervision
- Ability to work effectively with business partners, including cross-functional teams, virtual and global teams, and vendor partners positioned in businesses throughout the enterprise
- Able to develop and maintain policies, guidelines, and standards to help ensure a workforce informed of information security requirements and expectations
- Experience measuring effectiveness of security awareness to a global audience leveraging PowerBI and other platforms
- Technical acumen with SharePoint, JIRA, Excel, ProofPoint, ServiceNow, and other business analysis tools preferable
- Working knowledge of the NIST Cyber Security Framework
- Ability to perform as an active, integral part of a team of problem solvers, helping to solve complex business issues from strategy to execution
- Bachelor\'s degree from four-year college or university; or equivalent training, education in disciplines such as information/cyber security, computer systems, technology, and behavioral sciences/analytics
- As the Information Security Awareness Program Manager, you will be responsible for leading multi-channel security awareness program and ensure information governance policy management
- Your role will directly impact overall security posture by focusing on one of the most critical elements our information security portfolio people
- Role may include serving as a manager of a team member(s) and/or third-party support
- Leads a multi-channel security awareness program involving key stakeholders throughout the organization, including business and corporate function representatives, to understand risks, business objectives, and policy requirements
- Manages security awareness training to ensure all levels of the workforce understand the principles of cyber security, supported by effective change management strategies
- Structures the program to instill long-term behavioral and cultural changes by blending information security, governance, facilitation, and principles of project management
- Vets security awareness content with the appropriate stakeholders before releasing to the workforce
- Creates and maintains a portfolio of interactive awareness campaigns and corresponding, recurring reporting capabilities; oversees the day-to-day operation of the phishing simulations program, including metrics analyses and frequent reporting
- Develops, analyzes, and reports on security awareness metrics; works with key stakeholders to drive adoption of the security awareness program by providing key insights into the workforceâ??s security awareness, training, and behaviors related to using networks
- Provide end user-focused content and resources to educate and enable the workforce to perform their jobs securely, regardless of the devices they are using or work location
- Administers a remedial training program that enhances end user awareness
- Displays practical knowledge of different program channels to ensure end users continually demonstrate the behaviors necessary to reduce the human factors, risk
- Leads the metrics and dashboard initiative; works with business leaders and Technology Services Leads to identify, develop, and maintain metrics for key business process areas that provide cyber insights into key business process areas
- Assesses metrics and communicate emerging trends and participate in sessions designed to identify recommendation and solutions
- Leads focus groups and workshops to identify, develop, and assess measurable, outcome-driven metrics
- Produces recurring metrics reports to key stakeholders at the corporate and business group/unit level for informed decision-making and participate in briefings as needed to communicate metrics information and stakeholders, status.
- Gathers information, analyzes trends, and provides recommendation to stakeholders aligned to information governance standards
- Facilitates and conducts workshops for deep-dive discussions, business analysis, collection of requirements, and requirement reviews
- Applies knowledge of governance and compliance, including policy, process, governance, controls frameworks, and regulatory environments
- Assists in preparing for quarterly and ad hoc governance meetings, as needed
- Provides materials for security awareness and education projects and initiatives
- This role also entails serving as the Technology Services Change Manager and administering the change management program
- Facilitates Technology Services Change Advisory Board meeting
- Facilitates discussion of change requests submitted through the ServiceNow to ensure members of the Change Advisory Board and invited subject matter experts raise awareness of risks regarding changes to assets in the production environment
- Prepares and maintains documentation directly supporting change managementâ?¢Participates in change management strategy sessions to help establish a cohesive, enterprise-wide program, including changes to core infrastructure
- May be involved in the contractual documentation process related to security training