Skip to content
Technology – Information Security Awareness and Education
| Company | Creative Artists Agency |
|---|
| Location | Los Angeles, CA, USA |
|---|
| Salary | $139000 – $160000 |
|---|
| Type | Full-Time |
|---|
| Degrees | Bachelor’s |
|---|
| Experience Level | Senior, Expert or higher |
|---|
Requirements
- Minimum 8 years of Information Security experience with a Bachelor’s Degree
- Minimum 3 years experience in a Security Awareness function
- Experience in a leadership or managerial position is required
- Ability to communicate complex messages in a clear and concise manner with stakeholders at all levels
- Excellent organizational skills and ability to communicate with internal/external entities and executives
- Effective leadership skills with demonstrated ability to coordinate people and teams to project/activity completion
- Ability to work in team environment sharing responsibilities
- Ability to work in a flexible environment where requirements and procedures continuously evolve
- Experience with contractual and regulatory standards such as PCI, GDPR
- A capable professional writer, able to research and prepare high quality, clearly written awareness, and training materials
- Proactive and self-motivated, taking the lead on security awareness and training activities
Responsibilities
- Lead an information security awareness program that effectively engages employees resulting in measurable improvements in behavior
- Partner with key teams such as Service Desk, HR Learning, Privacy and Compliance, to develop training to support the security awareness and data protection efforts
- Proactive identification of current security events, determine applicability to CAA, and develop appropriate communications
- In collaboration with other IRM team members, create and distribute training or awareness communication for IRM programs
- Effective communication of CAA Policies and Standards to the Tech team and broader Agency and cross functional stakeholders
- Develop and implement real-time awareness capabilities triggered at the point of risky behaviors identified in incident response or other technology workflows
- In coordination with CAA Tech functional owners and the user community, provide solutions to reduce risk of sensitive information workflows and developing risk mitigations and training plans
- Plan and administer information security and privacy training through online learning management systems and in person methods
- Prepare and deliver targeted awareness campaigns (cybersecurity month, phishing simulations, security newsletter)
- Develop and maintain metrics measuring the results of individual campaigns and overall program effectiveness
- Play an active role in CAA’s security incident response efforts, working to identify and mitigate information security threats
Preferred Qualifications
- Marketing or Communications experience a plus
- Certification in information security (CISSP, CISM, GIAC, or equivalent) preferred
