Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC: InfoSec Jobs - SANS Internet Storm Center InfoSec Jobs

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Security Awareness Manager
Company Lubrizol
Location Wickliffe, OH - flexible location
Preferred GIAC Certifications GISF, GISP, GSLC, GSEC
Travel 10%
Salary Not provided
URL https://jobs.lubrizol.com/job-invite/84561/
Contact Name Tina Machovina
Contact Email tina.machovina/at/lubrizol.com
Expires 2022-07-20

Job Description

At Lubrizol, we're looking for an Information Security Awareness Manager to lead our enterprise security awareness and education program to reduce risk to the global organization.  This person will lead a team focused on reducing human risk through appropriate security-based behaviors as part of a security-aware and engaged culture. Primary responsibilities include program strategy, design, development, and delivery to serve the global user community. This role will have the opportunity to build upon a successful program that currently includes global phishing testing, topical security communications, security speaking engagements with various business leaders and their teams, formal security awareness training curriculum, and a community of global security ambassadors aiding and supporting the program.

Ideally, this position would be based at our Global Headquarters in Wickliffe, OH, but is open to anywhere in the US where Lubrizol operates.


Key Responsibilities:

-Develop and execute a strategic security awareness program that is well-designed, cohesive, relevant, and engaging, focused on reducing human risk with appropriate mitigating behaviors
-Develop plans and budget to grow the program and metrics to measure its effectiveness
-Develop and execute strategies and plans to meet IS goals and metrics
-Leverage external sources, internal security team and colleagues to understand security risks
-Develop and curate formal and informal security training and educational content
-Deliver topical security communications based on top human risks and behaviors
-Communicate security policies and requirements to ensure awareness and understanding
-Lead global security ambassador organization to deliver security awareness in region
-Work with Lubrizol sites and site contacts to schedule and deliver security awareness events
-Manage the phishing testing and reporting program
-Manage security awareness internal website
-Influence and gain support of Lubrizol leaders through effective communication, relevant and insightful analyses, and creative thinking
-Lead, manage and coach the security awareness team - establish a vision, set goals, and define a strategy for achieving established goals and continuously improves the team’s talent position
-Manage day-to-day employee, work assignments and activities, resource scheduling and requirements
-Responsible for all aspects of resource management, including performance and career development
-Build and maintain relationships with business and internal IS stakeholders
-Follow IS processes for budgeting, vendor management, security, etc.
-Other information security activities as needed

Required Skills and Qualifications:

-5+ years of security awareness experience
-Bachelor’s degree in Communications, Cybersecurity or related field
-Experience with an industry leading phishing tool (preferably KnowBe4)

-What Will Put You Ahead:

-Prior experience leading a Security Awareness program considered a plus
-Prior management/leadership experience considered a plus
-GISF/GISP/GSLC/GSEC certifications