Solution Manager - Information Security Awareness [Remote Eligible]

Company: Campbells
Location: Camden
Posted on: May 13, 2022

Job Description:

Imagine ...working for a company that knows that its people are the key to its success in the marketplace. A company in which achieving extraordinary results and having a stimulating work experience are part of the same process. We cultivate and embrace a diverse employee population. We recognize that people with diverse backgrounds, experiences and perspectives fuel our growth and enrich our global culture. We are looking for an individual who enjoys working in a fast-paced, team oriented environment, likes to be challenged, and values the opportunity to make a difference. The Solution Manager - Information Security Awareness will be the communications outlet for the Information Security organization, responsible for the development and delivery of training and awareness campaigns on enterprise security policies and standards, industry leading practices, and current events. This role requires the ability to communicate complex information security topics to a non-technical audience. In addition, this high visibility role will be responsible for developing and executing an Information Security Awareness strategy for the enterprise to instill the values of a CyberFit workforce within the Campbell employee community. This will include establishing the training and communication strategic plan, complete with milestones, deliverables, and reporting of key performance indicators. The ideal candidate will have experience with communications and instructional design and possess the ability to analyze data to present meaningful reports to an executive audience, included Campbell IT leadership and the Board of Directors. Essential responsibilities will include but not be limited to: Develop and Manage Information Security Awareness Education and Training Program

• Ensure employees and third parties understand, and acknowledge required policies at a defined cadence, e.g., during onboarding, annually.
• Design and deliver annual information security awareness education roadmap focused on latest industry leading practices in adult education and leading concepts of instructional design.
• Communicate and educate the organization on information security requirements, best practices, and relevant current events.
• Develop new and updates existing information security training and education activities for onboarding, annual, and periodic programs.
• Develop, review, implement, and maintain role-based training programs that are engaging, interactive and memorable.
• Create KPIs and learning metrics to measure return on training investment and analyze data to influence security awareness program strategy. Develop and Manage Information Security Awareness Marketing and Communication Campaign
  • Research and identify top human risks to the organization and the behaviors that must change to mitigate those risks across the multiple environments (e.g., office, manufacturing and at the third-party managed service providers).
  • Act as the marketing and communication function of the information security department. Develop and Manage Information Security Awareness Marketing and Communication Campaign
    • Develop and continuously improve the information security awareness marketing and communication strategic plan.
    • Maintain a keen understanding of industry trends affecting clients and make appropriate recommendations regarding communication strategy surrounding them.
    • Develop and maintain employee audience personas for tailored communication and engagement strategies.
    • Engage the employee population to develop a culture of Information Security throughout the organization in both the corporate and manufacturing environment.
    • Introduce new and innovative learning methods to the organization (microlearning, gamification, etc.) to drive employee engagement and interaction with the information security department.
    • Edit and update promotional material and publications (brochures, videos, social media posts etc.).
    • Manage the organization's social engineering education and simulation program.
    • Monitor and measure the effectiveness of programs through the development of key performance indicators.
    • Ensure that awareness program is effectively changing behaviors to create CyberFit employees who act securely, reducing the most risk to our organization. Job Complexity:
      • Manage multiple, concurrent project and task assignments, placing proper priorities on tasks and attention to detail to follow through all assignments to completion.
      • Document and explain information security concepts to both business leaders and technical stakeholders.
      • Communicate information security concepts to employees outside Information Security in a way that consistently drives objective decisions about risk that optimize the trade-off between risk mitigation and business performance.
      • Provide thought leadership and communications expertise in the development of policies, standards, procedures, and other communication for the department.
      • Establish key performance indicators for measuring success objectively in an area that is highly ambiguous and subject to interpretation. We are looking for the following abilities and skills: Minimum education required: Bachelor's degree (Degree in Marketing, Communications, Information Technology, or Instructional Design is preferred) Education desired: Master's Degree with Emphasis on Business and Communications Years of relevant experience: 8 + Years. Knowledge, skills, and abilities required:
        • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner.
        • An ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization.
        • A background or experience in corporate communications and/or marketing.
        • Demonstrated experience designing and developing corporate learning and development programs such as Information Security Awareness programs.
        • An ability to coordinate activities on behalf of Information Security with HR, Risk Management, and Compliance functions.
        • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
        • Strong critical thinking and analytical skills including how to ensure that Company policies and awareness programs meet compliance standards and regulatory requirements.
        • Understanding of information security frameworks such as NIST CSF, COBIT, IS027001, NIST 800-53 is preferred.
        • Mastery of Microsoft PowerPoint.
        • Executive presence and ability to present to an executive level audience.
        • Excellent interpersonal skills, presentation skills and verbal/written communication skills.
        • Exceptional communication skills including the ability to present and address a Board of Directors.
        • Excellent prioritization capabilities, with an aptitude for breaking down work into manageable parts, effectively assessing the priority and time required to complete each part. ACR The Company is committed to providing equal opportunity for employees and applicants in all aspects of the employment relationship, without regard to race, color, sex, sexual orientation, gender identity, national origin, citizenship, marital status, veteran status, disability, age, religion or any other classification protected by law. In that regard, U.S. applicants and employees are protected from discrimination based on certain categories protected by Federal law. Click here for additional information.

Keywords: Campbells, Camden , Solution Manager - Information Security Awareness [Remote Eligible], Executive , Camden, New Jersey