private medical care
Information Security Training & Awareness Senior Manager
- Kolorowa 2, Grunwald, PoznańPoznań, Greater Poland
- offer expired 13 days ago
- contract of employment
- team manager
- hybrid work
- Immediate employment
- remote recruitment
Technologies we use
Execute and support the full lifecycle of cyber security awareness program as needed, either individually or through available resources.
Collaborate with internal GSK stakeholders and managed service partners’ representatives to recommend necessary security awareness to effectively mitigate risks to GSK
Evangelize security awareness processes across business lines to help influence a strong culture of proactive awareness Monitor and identify the top human risks to our organization and the behaviors we need to change to mitigate those risks
Develop, manage and implement a positive security awareness program, which focuses on changing behaviors both at work and at home
Lead the creation and procurement of awareness deliverables and learning content, leveraging various channels for effective delivery in our global organization, measures the usage of the content and its effectiveness, and develops metrics
Incorporate security awareness into classroom and virtual learning, including new hire orientation, new manager training, and other events
Establish a security awareness network with key stakeholders throughout the organization to understand risks and business objectives
Owns and manages relationships with security education and awareness related vendors
Develop, manage and implement phishing program, create a positive impact and reduce the human risk.
Be responsible for the day to day operation of the phishing assessment program
Ensure that our security awareness program meets all industry regulations, standards, and compliance requirements.
Ensure that our security awareness program communicates our security policies and requirements so that people know, understand and can follow them.
Create a positive program that engages employees, to include focusing on changing behaviours both at home and at work to enable employees to demonstrate the same secure behaviours regardless of where they are or the devices they are using.
Structure and maintain security awareness program to be long term, so ultimately GSK is not changing just behaviours but culture.
Create a metrics framework that can effectively measure these requirements.
Partner with the service provider to ensure that the security awareness program is delivered and well embedded within GSK
Preferred to hold one of the following or equivalent certifications: CISSP or Global Information Assurance Certification (GIAC) in related area, or other equivalent certification.
Project management experience, the ability to plan, manage and maintain a complex, organization wide program over the longer term.
Display practical knowledge of different message distribution techniques to ensure end user communities understand and continually apply the required behavioural change necessary to reduce the ‘human factors’ risk.
Ability to form complex ‘communications / messages’ in a simple, clear and concise manner to the various communities within GSK. This can include different cultures, nationalities, international locations and languages.
Ability to communicate with and coordinate the activities of others.
Understanding of the concepts of information risks and the different elements that make up risk. In addition, have at a minimum a basic understanding of the different concepts of information security.
Experience and knowledge across different frameworks and standards such as ISO 27001, NIST, CIS etc.
Demonstrated experience and understanding of cyber security principles, IT security controls, and related technologies and products
Prior experience in delivering security awareness program across the enterprise
Stakeholder/ internal business management experience
Strong verbal/written communication in English, with the ability to effectively interact with professionals at all levels of responsibility and authority
Ability to prioritize, delegate, and foster the development of high-performance teams to lead/support an environment driven by customer service and teamwork
Ability and experience of leading a diverse team
Influencing action across various business lines and geographies to achieve program objectives.
Computer Science graduate
This is how we organize our work
This is how we work
- in house
- you have influence on the choice of tools and technologies
- you have influence on the product
- you focus on product development
What we offer
Task-based work shift
sharing the costs of professional training & courses
remote work opportunities
flexible working time
retirement pension plan
parking space for employees
extra social benefits
sharing the costs of tickets to the movies, theater
employee referral program
one shorter working day
sport and recreation cards
canteen for employees at site (with discounts)
flexible working options available for most positions
Phone interview with Recruiter
Teams interview with Hiring Manager
Teams interview with Hiring Manager and Hiring Manager+1
GSK is one of top 10 pharmaceutical companies, having a robust portfolio in vaccines, oncology and severe asthma treatments.