Information Security & Privacy Training Manager

Hogan Lovells
London
GBP 100,000 - 125,000
Job description

Information Security & Privacy Training Manager

Hogan Lovells - One of the world's top law firms advising on corporate, finance, litigation, regulatory and IP law, at the intersection of business and government. Wherever you do business, our lawyers are nearby.

Keen to become part of a truly global, collaborative team of professionals? Your journey begins here.

Job Title: Information Security & Privacy Training Manager

Department: Office of the General Counsel

Office Location: Birmingham or London

Reports To: Chief Information Security Officer

Working Hours: 35 hours per week, 9:30am to 5:30pm but additional hours may be required. We are happy to consider agile and flexible working patterns. Our approach to hybrid working allows for up to 40% of time working from home and 60% working in the office.

Firm Description: Hogan Lovells is one of the leading global law firms. Our distinctive market position is founded on our exceptional breadth of our practice, on deep industry knowledge, and on our 'one team' global approach.

Department Description: The General Counsels’ office is legal counsel to the firm. We are involved with all legal matters relating to conflicts, ethics, engagement terms and business intake; compliance with law and legal requirements in all of our jurisdictions; interactions with regulators; general firm policies; risk management and matters affecting the reputation of the firm; and legal issues in the business of the firm such as contracts and agreements.

Role Overview: The Information Security and Privacy Training Manager will:

  1. Identify and monitor security and privacy training needs within the organization;
  2. Create a strategic, global plan to measurably improve security and awareness within the firm and with targeted employee groups;
  3. Design, plan, and implement security and privacy training programs, campaigns, policies, and procedures that fulfil those needs.

The Manager will leverage content from vendors and will also be responsible for developing our own curriculum, facilitating various virtual and in-person training workshops for executive audiences, and monitoring the success of such programs.

Key Responsibilities / Accountabilities:

  1. Own, develop, and mature a global information security and privacy training and awareness program.
  2. Develop and implement security and privacy awareness program charter and strategy.
  3. Review existing training programs; suggest enhancements and modifications to improve engagement, learning, and retention.
  4. Ensure training materials and programs are current, accurate, and effective.
  5. Manage the firm’s phishing simulation testing program.
  6. Collaborate with vendors and third-party training providers to arrange employee registration for and participation in outside training programs.
  7. Ensure that training milestones and goals are met while adhering to approved training budgets.
  8. Conduct or facilitate required and recommended training sessions.
  9. Define ambitious measurable goals, objectives, and identify metrics and solutions that show impact and growth over time.
  10. Support cross-functional collaboration to ensure projects are delivered according to agreed scope and budget.
  11. Perform other related duties as assigned.

Person Specification:

Qualifications and Training: Preference provided to individuals holding industry-relevant certifications (CIPP-E, CIPP-US, CISM, Security+, CISSP, etc). Education or training in executive education, professional development, corporate communications, or related areas preferred.

Skills & Experience:

  1. Organized and detail-oriented.
  2. Strong executive presence, with an ability to moderate large, executive level meetings, both in person and virtually.
  3. At least five years’ experience in delivering, developing, and managing training development.
  4. At least three years’ experience in the cybersecurity / privacy fields.
  5. Experience in reviewing policies and requirements from the user perspective, providing a pragmatic approach to improving awareness.
  6. Experience with requirements gathering, analysis, and recommendations development.
  7. Experience in effectively communicating with both technical and non-technical roles.
  8. Experience with risk and issue management.
  9. Good organizational and time management skills; ability to be flexible and solve problems.
  10. Strong interpersonal skills, with the ability to build strong relationships with peers and executives.
  11. Strong project planning and management skills; ability to break down complex problems into manageable goals.
  12. Outstanding oral and written communication skills; with strong graphic design abilities.
  13. Knowledge of cyber security frameworks, such as NIST, ISO, MITRE, etc is desirable.
  14. Knowledge of privacy regulations, such as GDPR, HIPAA, CCPA, PIPL, etc, is desirable.

Agile Working Statement: Our goal is to embed flexibility across our business by giving everyone the opportunity to work in an agile way, whether as a regular pattern or on an ad hoc basis.

It is the policy of Hogan Lovells to provide equal opportunities for all employees in relation to recruitment, training and promotion. Decisions in these areas will be made only by reference to the requirements of the job and shall not be influenced by any consideration of racial or ethnic origin, religion, sex, gender and gender identity, age, sexual orientation, marital and civil partnership status, pregnancy or disability.

Get a free, confidential resume review.
Select file or drag and drop it
Avatar
Free online coaching
Improve your chances of getting that interview invitation!
Be the first to explore new Information Security & Privacy Training Manager jobs in London