TransUnion's Job Applicant Privacy Notice
What We'll Bring:
The candidate will lead the development and execution of enterprise-wide cybersecurity awareness and training programs. This role is responsible for cultivating a security-conscious culture by educating employees on cyber threats, safe practices, and compliance requirements.
The ideal candidate combines deep cybersecurity knowledge with strong communication, instructional design skills, and creative ideas/approaches to security awareness and will be responsible for providing subject matter expertise to support the development, delivery and maturity of a comprehensive cybersecurity awareness and training program, training policies, training plans, and training procedures, along with development and maturity of role-based training, and monthly phishing exercises.
What You'll Bring:
Key Responsibilities:
- Subject matter expertise to support the development, delivery and maturity of a comprehensive cybersecurity awareness and training program
- Experience with developing training policies, training plans, and training procedures
- Skilled in development and maturity of role-based training and monthly phishing exercises
- Solid Information Security foundation and familiarity with various security frameworks (e.g. SSAE 18, ISO27002, HIPAA, etc.)
- Bachelor’s degree in Computer Science or 4+ years experience in cybersecurity, with at least 2 years focused on awareness/training
- Active security certifications such as: CISSP, CISM, Security+, SSAP (Security Awareness and Training Professional), or equivalent experience
Impact You'll Make:
Qualifications:
- Enhance, document, administer, and deliver a comprehensive program to measure and improve the cybersecurity awareness and vigilance of Agency system users, including those with significant security responsibilities
- Develop and deliver quarterly phishing exercises to staff membership and associated reporting utilizing tools such as, GoPhish, Cofense PhishMe, and/or MS Defender Attack Simulation
- Content development by creating engaging training materials, including videos, infographics, newsletters, and e-learing modules
- Promote the program’s objectives in alignment with business needs and priorities
- Ability to manage multiple projects and adapt to changing priorities
- Track and report key performance indicators (KPIs) such as training completion rates, phishing susceptibility, and risk reduction
- Stay current with emerging threats, trends, and best practices in cybersecurity education.
This is a remote position which may require occasional in-person attendance at work-related events at the discretion of management.
TransUnion Job Title
Advisor, InfoSec Risk Management & Governance