Cybersecurity Awareness & Engagement Lead

Job Title: Training, Awareness and Business Engagement Lead
Job Type: Full-Time
Department: Cybersecurity
Reports To: Head of Cybersecurity

Job Summary

The Training, Awareness and Business Engagement Lead is responsible for designing, implementing, and managing a comprehensive cybersecurity training and awareness programme. This role ensures that all employees are equipped with the knowledge and skills to recognize and respond to cybersecurity threats, while also fostering a culture of security awareness across the organisation. The role is mapped at Technical Leader Level 4C, reflecting its strategic importance, technical depth, and leadership in engagement and education initiatives.

Key Responsibilities

• Design and implement a cybersecurity training and awareness framework aligned with the organisation's threat landscape, risk profile, and regulatory requirements.
• Define and execute annual training and awareness plans for all employees.
• Develop and deliver engaging, effective, and current training content, including e-learning modules, workshops, phishing simulations, and in-person sessions.
• Evaluate the effectiveness of training programmes using metrics, surveys, and simulated cyber-attacks to identify areas for improvement.
• Collaborate with internal stakeholders to ensure training initiatives are aligned with business needs and risk priorities.
• Act as a subject matter expert and resource for colleagues with less experience in cybersecurity awareness and engagement.
• Lead or contribute to projects related to cybersecurity culture and behavioural change.
• Provide regular reporting and insights on training effectiveness and employee engagement to senior management.

Job Mapping and Career Path

Career Path Level: Technical Leader - Level 4C
This role has been assessed as a Technical Leader based on the following criteria:

• General Profile: Requires in-depth technical and practical knowledge in cybersecurity awareness and training, with the ability to work independently and lead project components.
• Business Acumen: Understands best practices in cybersecurity education and how they integrate with broader organisational goals.
• Leadership: Acts as a resource for less experienced colleagues and may lead small-scale projects with manageable risks.
• Problem Solving: Solves complex problems using sound judgment and analysis of multiple data sources.
• Impact: Influences operational and cultural outcomes across teams, ensuring quality and timeliness of deliverables.
• Interpersonal Skills: Communicates complex or sensitive information effectively and works to build consensus across stakeholders.

Required Qualifications and Experience

• Bachelor's or Master's degree in Cybersecurity, Education, Communications, or a related field.
• Minimum 5 years of experience in cybersecurity training, awareness, or business engagement roles.
• Strong understanding of cybersecurity principles, human risk factors, and behavioural change strategies.
• Experience designing and delivering training content across various formats and platforms.
• Familiarity with phishing simulation tools and learning management systems (LMS).
• Excellent communication, presentation, and stakeholder engagement skills.
• Ability to work independently and manage multiple priorities in a dynamic environment.