Security awareness coordinator

Division: Chief Information Security Office (CISO)

As a global critical financial infrastructure, the protection of Euroclear information and assets is fundamental to the company’s business. Information Security is at the core of our services, firmly embedded in the management systems and processes of the company. You will be joining our Chief Information Security Office in charge of putting in place the required controls to adequately and effectively protect our information assets.

About the tribe

The CISO Office Tribe is responsible for supporting the CISO organisation by providing different services such as Governance, Organisational Development (Learning & Development, skills management), Financial support (budget management), Communication, Reporting, and Relationship management as well as Security Awareness.

Your role

The function develops, delivers, and maintains the security training & awareness activities in line with the company strategy. You are accountable for the overall awareness of policies, providing knowledge to staff related to expected security behaviours and risks to mitigate the identified threats.

Your responsibilities:

• Contribute to the development and delivery of an innovative security awareness programme to change and reinforce behaviours and culture across the Group.
• Ensure staff awareness of and adherence to security policies and best practices.
• Contribute to the management and training of a network of security ambassadors representing all Euroclear divisions and departments.
• Create and deliver communications regarding existing and evolving security threats.
• Provide input to the development of the Security Management System and its associated policies and guidelines.
• Create a variety of fun, innovative, and engaging training sessions on security threats, expected security behaviours, policies, and best practices.
• Deliver staff training utilizing various delivery methods, including online and face-to-face, newsletters, and other means.
• Communicate 'ad hoc' awareness guidance to all staff related to evolving or persistent threats or non-compliant behaviours.
• Build a metrics framework and measure and report the results of awareness activities (Completion, reach, effectiveness, and improvements).
• Identify different behaviours and challenges of staff across the group, to tailor the content of training and awareness activities.
• Take a pivotal role in the designing, planning, delivering, and reviewing of Cyber Month activities.
• Organise quality and satisfaction surveys for the Group related to security awareness and human risk activities.
• Support group-wide risk assessments related to human risk management.
• Significant experience in the training or education field: e.g., in developing and delivering successful security awareness and education programmes, including campaigns, education, phishing resilience testing, and champions networks.
• Proven communication/presentation skills, the ability to build effective relationships with a range of stakeholders, and to adapt communication style to meet audience needs.
• Experience in developing active communities that share knowledge and experience around a domain.
• An excellent level of English is essential (oral and written).
• You like to work in a team but can also work independently, prioritising your own workload to achieve deadlines.
• Creative mindset.
• A strong focus on customer needs.
• Self-motivated with good problem-solving skills.
• CISM or equivalent certification desirable but not essential.

Will be considered an asset:

• Experience with Gamification.
• Professional security qualification or certification such as CISSP, CISM.
• Advanced Excel capability or knowledge of Power BI.

Methodology, tools & technologies

As Europe's largest cyber security center, we use the latest trends in our ways of working, tools, and application technologies by adopting the agile methodology to deliver our processes and projects.