Security Awareness Job Description
Security awareness
provides support and guidance regarding best practice, regulatory, and legal compliance, including GLBA, GDPR, ISO 27002, NIST, PCI, and SOX.
Security Awareness Duties & Responsibilities
To write an effective security awareness job description, begin by listing detailed duties, responsibilities and expectations. We have included security awareness job description templates that you can modify and use.
Sample responsibilities for this position include:
Ensures the security awareness program meets all industry regulations, standards, and compliance requirements
Perform quality review to assist HR leadership and IT Training in approving training tools for use, user interfaces, content and user experience
Develop metrics to assess the effectiveness and impact of Security Awareness & Communications initiatives and tools
Develop and maintain security policies and procedures including, but not limited to, incident response plans, business continuity plans, secure SDLC, ISF
Develop a wide range of awareness content such as published web pages, business reports, presentations, newsletters, notification releases
Developing and tracking an effective communications programme that targets appropriate employees at the right time and in an impactful manner
Actively applies project management principals, skills, experience and best practices
Communicates globally cross functionally in business terms, not technology terms
Analyzes makes recommendations to increase efficiency, compatibility and improvement of workflow the organization
Establish metrics and measurements demonstrating program effectiveness
Security Awareness Qualifications
Qualifications for a job description may include education, certification, and experience.
Licensing or Certifications for Security Awareness
List any licenses or certifications required by the position: CISM, CISSP, CISA, PMP, SANS, CPLP, GIAC, CIPP, CIPM, GCFE
Education for Security Awareness
Typically a job would require a certain level of education.
Employers hiring for the security awareness job most commonly would prefer for their future employee to have a relevant degree such as Bachelor's and Collage Degree in Computer Science, Education, Communications, Information Security, Marketing, Business, Communication, Technical, Information Technology, Engineering
Skills for Security Awareness
Desired skills for security awareness include:
Various learning styles and a variety of awareness techniques
Standards
PCI
Security policies and principles of information handling and protection
COBIT and NIST
FFIEC
GDPR
GLBA
IT Security frameworks
Identity and access management
Desired experience for security awareness includes:
A Bachelor’s Degree in Education, Marketing, Communications or Technology is preferred, or commensurate relevant work experience
Minimum 3 years of Information Security experience with a Bachelor’s Degree
1-3 years of Marketing or Communications experience a plus
Ability to work in team environment sharing responsibilities
Familiarity with the use of integrating social media, gamification technology, virtual rewards programs in awareness programs
A capable professional writer, able to research and prepare high quality, clearly-written awareness and training materials free of grammatical errors and spelling mistakes
Security Awareness Examples
1
Security Awareness Job Description
Job Description Example
Our innovative and growing company is looking to fill the role of security awareness. Please review the list of responsibilities and qualifications. While this is our ideal list, we will consider candidates that do not necessarily have all of the qualifications, but have sufficient experience and talent.
Responsibilities for security awareness
- Develop technical training and awareness projects in collaboration with Information Security Leaders and team members across IIS and PD business lines
- Oversee Instructional design of new training content suitable for online or instructor led format
- Develop innovative content delivery methods that appeal to the product development community
- Ensure that our program is effectively changing behaviors so our employees act in a secure manner, reducing the most risk to our organization
- Create a positive program that engages employees and contractors, using interactive and innovative audio and video learning experiences
- Develop opportunities alongside IIS Communications, to expand employee knowledge
- Create a culture of security
- Identify top human risks to the organization and the behaviors that must change to mitigate those risks
- Develops, reviews, implements, and maintains a security awareness program through multiple mediums
- Manages and leads information security awareness training
Qualifications for security awareness
- Confident and professional in relation to information security, with the knowledge and experience to exude competence
- Ability to form complex ‘communications/messages in a simple, clear and concise manner to the various communications within the organization
- A “people person”, good at establishing productive relationships with work colleagues and students
- Create a positive program that engages employees, to include focusing on changing behaviors both at home and at work
- Ability to form complex communications/messages in a simple, clear and concise manner to the various communities within our organization
- Understanding of the concepts of information risks and the different elements that make up risk
2
Security Awareness Job Description
Job Description Example
Our growing company is looking to fill the role of security awareness. To join our growing team, please review the list of responsibilities and qualifications.
Responsibilities for security awareness
- Ensures employees and third parties understand, acknowledge, and fulfill all applicable information security policies
- Help and participate with Security Operations team
- Information Security Technical writer for blog, white papers, policies and procedures, learning modules
- Evangelize Information Security team efforts internally and externally to give back to the community
- Security awareness communications
- Security Awareness Month Activities in October
- Assist in the implementation and management of subsidiary Phishing program
- Assist in the implementation and management of the security awareness program to subsidiary
- Management of WorkNet
- Support the planning and coordination of the Tucson Defense Security Service (DSS Vulnerability Assessments, including communication, education, logistics
Qualifications for security awareness
- Ability to influence others to achieve goals and impact results – even if team members are not direct reports
- Experience with Adobe Photoshop, Illustrator, InDesign and Captivate
- Preferred video capturing and editing skills
- Minimum of 5 to 8 years of IT leadership experience with a minimum of 3 years in IT security
- 5+ years' experience managing a training program
- Experience with project budgets and finances
3
Security Awareness Job Description
Job Description Example
Our growing company is searching for experienced candidates for the position of security awareness. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for security awareness
- Lead the planning and coordination of security awareness events across all RMS locations
- Manage all aspects of the internal RMS Global Security Services (GSS) website
- Interface with personnel on all levels, including government and customer representatives
- Lead security education process improvement efforts throughout RMS GSS
- Lead and support reviews and management of RMS policies and directives for potential security input, influence and impacts
- Ensure all RMS Global Security documents, policies and directives are updated at appropriate intervals
- Will directly supervise a staff of specialists and interns
- U.S. Citizenship status is required as this position requires the selected candidate to be willing and able to obtain and maintain a Secret security clearance
- Implement, maintain and report metrics where possible to evaluate effectiveness of cyber security initiatives and communications
- Maintain and develop explanatory materials such as presentations, videos, blog posts, and other materials in support of the Information Security and Risk communications strategy
Qualifications for security awareness
- Preferred candidate will have 1-5 years exposure to cybersecurity and risk disciplines, the financial industry
- Minimum 3 years of experience in managing and leading a team
- General knowledge of security concepts and demonstrated ability to develop innovative delivery methods
- Experience working with/for an IS/IT department would be preferred
- High level of personal integrity, the ability to professionally handle confidential matters, and show an appropriate level of judgment
- 2+ years’ experience leading teams responsible for Security related projects and/or Security awareness for mid to large sized corporations with geographically dispersed populations
4
Security Awareness Job Description
Job Description Example
Our innovative and growing company is looking for a security awareness. We appreciate you taking the time to review the list of qualifications and to apply for the position. If you don’t fill all of the qualifications, you may still be considered depending on your level of experience.
Responsibilities for security awareness
- Partner with Corporate Communications to convey security awareness messages are consistent with corporate branding
- Manage reporting and metrics of key dashboard milestones
- Assist support of security awareness training and phishing programs
- Help organize security awareness events
- Enhance intranet site to align with new risk structure
- Bring new and creative ideas and energy to the existing program
- Continuously identify, assess, measure and monitor gaps in program to increase its effectiveness
- Engage employees and consultants to be mindful of best security practice and behaviors both at home and at work, using interactive learning experiences and building a secure culture
- Engaging with business unit leaders to help them understand the issue of cyber security and the associate cyber risks their everyday actions can create
- Designing and delivering an innovative, forward thinking user awareness plan and campaign to help educate, influence and engage employees on cyber risks
Qualifications for security awareness
- A Bachelor’s degree or equal relevant experience
- Minimum of 2 years of written communications experience that can include Marketing, Corporate Communications, or other departments or roles that require significant written material developed
- Demonstrated technical management knowledge in the Global Information Security
- 5+ years of experience with technical training
- Executive-level written and verbal communication skills interpersonal and collaborative skills
- Must have the ability to position oneself effectively as a thought leader in the area of Information Security, training and awareness (internally and externally) by communicating concepts with poise
5
Security Awareness Job Description
Job Description Example
Our innovative and growing company is looking to fill the role of security awareness. Thank you in advance for taking a look at the list of responsibilities and qualifications. We look forward to reviewing your resume.
Responsibilities for security awareness
- Prepare and deliver targeted awareness campaigns (phishing, cyber security month, privacy, DLP, information governance)
- Active participation in strategic initiatives in accordance with overall Information Security goals and objectives
- Recognize opportunities for improvement in areas of responsibility and either take initiative to implement changes or clearly communicate their findings, suggested solutions, and other relevant information to management
- Assist the Training & Awareness Program Manager to ensure project deliverables, goals and milestones for the program are met
- Monitor briefing requirements and compliance for individuals using LTRAIN
- Overall program management for the Corporate-wide Information Security Awareness Program
- Set and achieve annual strategic goals
- Meet or exceed regulatory compliance requirements for security awareness
- Produce high-quality reporting and program documentation
- Own and maintain the catalogue of information security threats in-scope for the Program
Qualifications for security awareness
- Must act calmly and competently in high pressure and high stress situations to technical and non-technical audiences
- Must possess an executive presence and demonstrate an ability to interact and navigate executive level conversations and presentations with comfort and ease
- Thorough and up-to-date understanding of technological trends and developments in the area of training
- Proven ability to implement creative and innovative approaches to large, complex programs and business problems
- Past success navigating ambiguous scenarios with limited information or direction
- Proven success in leveraging cross-functional resources across departments and groups – or – proven success gaining buy-in from decisions makers and stakeholders across the business