Sr. Cyber Security GRC Analyst_REMOTE_On W2
Posted 1 week ago by 1766224041
Negotiable
Outside
Hybrid
USA
Summary: The Sr. Cyber Security GRC Analyst role involves developing and implementing comprehensive cybersecurity awareness programs, conducting training sessions, and ensuring effective communication strategies to enhance the organization's cybersecurity posture. The position requires collaboration with various departments and the ability to tailor initiatives to address specific organizational risks. The analyst will report to the Director of Cybersecurity Governance, Risk, and Compliance and will play a crucial role in fostering a culture of cybersecurity awareness. This position is remote or hybrid based in Brentwood, TN, requiring over 10 years of experience in the field.
Key Responsibilities:
- Develop and implement a strategic cybersecurity awareness program.
- Collaborate with cross-functional teams to tailor awareness initiatives.
- Evaluate cybersecurity education and training program efficiency.
- Prepare and execute phishing campaigns and provide statistics.
- Create engaging training materials and conduct regular training sessions.
- Develop and execute communication plans regarding cybersecurity policies.
- Collaborate with IT security teams and HR to align efforts with organizational goals.
- Implement metrics and KPIs to measure program effectiveness.
- Lead projects or project steps within broader initiatives.
Key Skills:
- Bachelor's degree in Cybersecurity, Information Technology, Communications, or related field.
- Proven experience in implementing cybersecurity awareness programs.
- Strong oral and written communication skills.
- Advanced proficiency in Microsoft Excel.
- In-depth knowledge of adult learning principles.
- Experience with training platforms like KnowBe4 or Proofpoint.
- Solid facilitation skills.
- Strong project management skills.
- Familiarity with social media content distribution.
Salary (Rate): undetermined
City: Brentwood
Country: USA
Working Arrangements: hybrid
IR35 Status: outside IR35
Seniority Level: undetermined
Industry: IT
Job title: Sr. Cyber Security GRC Analyst
Work Location: Brentwood, TN
REMOTE
Minimum years of experience: 10+ Years
Job Description:
We are seeking a highly skilled and experienced individual to fill the position of Senior Cybersecurity Awareness, Training, and Communications Analyst. You will be reporting to the Director of Cybersecurity Governance, Risk and Compliance. In this role, you will be responsible for developing and implementing comprehensive cybersecurity awareness programs, conducting effective training sessions, and ensuring clear communication strategies to enhance the organization's overall cybersecurity posture.
Responsibilities:
1. Cybersecurity Awareness Program:
Develop and implement a strategic cybersecurity awareness program to educate employees at all levels about cybersecurity threats, best practices, and company policies.
Collaborate with cross-functional teams to tailor awareness initiatives to address specific organizational risks and needs.
Evaluate cyber security education, training, and awareness program efficiency by identifying and gathering workforce trend analysis, performance improvement metrics, and then actively shape new products to address gaps, provide top-of-mind awareness of the cyber threat landscape, emerging threats, and best practices to follow.
Prepare and execute phishing campaigns based on current threats and provide statistics.
Provide metrics on the effectiveness/completion rate for courses.
Execute cyber awareness roadshows, Cybersecurity Awareness Month, and other initiatives, such as Cybersecurity Ambassador Program.
2. Training Development and Delivery:
Create engaging and interactive training materials that cater to different learning styles and levels of technical expertise.
Conduct regular cybersecurity training sessions for employees, ensuring that content is up-to-date, relevant, and aligned with industry standards.
3. Communication Strategy:
Develop and execute communication plans to keep employees informed about cybersecurity policies, incidents, and emerging threats.
Design and maintain communication channels, such as newsletters, intranet updates, and other platforms, to promote cybersecurity awareness.
Prepare and deliver communications for CISO and other executives for awareness initiatives.
Ensure security policies are communicated through security awareness program so that team members know, understand and follow them.
4. Collaboration and Relationship Building:
Collaborate with IT security teams, HR, and other departments to align cybersecurity awareness efforts with organizational goals and objectives.
Foster a culture of collaboration and information sharing to enhance overall cybersecurity resilience.
5. Monitoring and Evaluation:
Implement metrics and key performance indicators (KPIs) to measure the effectiveness of cybersecurity awareness programs and training initiatives.
Regularly assess the evolving threat landscape and adjust awareness strategies accordingly.
6. Other Activities:
May lead projects or project steps within a broader project or may have accountability for on-going activities or objectives; looks for business improvement opportunities.
Qualifications:
Bachelor's degree in Cybersecurity, Information Technology, Communications, or a related field.
Proven experience (4 years) in a similar role, demonstrating successful implementation of cybersecurity awareness programs and training initiatives.
Strong oral and written communication skills with the ability to convey complex cybersecurity concepts in a clear and understandable manner.
Advanced proficiency in Microsoft Excel for metrics reporting, data analysis and other reporting requests.
In-depth knowledge of adult learning principles and the ability to tailor training programs to diverse learning styles.
Proven experience in creating and implementing cybersecurity awareness initiatives in a corporate environment.
Prior experience using training platforms such as KnowBe4 or Proofpoint.
Solid facilitation skills.
Familiarity with social platforms pushing content through social media
Strong project management skills with the ability to manage multiple initiatives simultaneously.
Experience using technology platforms to conduct learning and development experiences.