Security Awareness

Summary

Join Kaseya, a leading provider of IT infrastructure and security management solutions, as a Security Awareness Analyst. This remote, full-time position involves planning, coordinating, and executing security awareness initiatives to enhance Kaseya's security posture. You will develop and implement security awareness policies, lead training programs, and collaborate with cross-functional teams. The ideal candidate possesses extensive experience in security awareness, strong communication and project management skills, and relevant certifications. Kaseya offers a competitive compensation package, including comprehensive benefits and a casual work environment.

Requirements

• Prior experience as a security focused Security Awareness leader is required, the candidate must have experience and demonstrate capability in this domain
• This person must have effective written and oral communication skills as well as project management skills
• Excellent leadership and project management skills, with the ability to inspire and motivate teams
• Expert knowledge of technology, Security Awareness and experience in working and collaborating with cross functional teams leading Security Awareness programs
• Extensive relevant industry experience in Security Awareness, Information Technology, Cyber Security, Technology Risk, or GRC
• In-depth knowledge of standard cyber controls frameworks, including CIS Top18, NIST Cyber Security Framework, NIST 800.53-5, NIST 800.171 and CMMC
• Strong verbal and written communication skills, with the ability to communicate with peers and executive leadership
• Knowledge and experience of key legal and regulatory compliance, e.g. PCI, SOC2, FedRAMP, GDPR, CCPA
• Experience managing a Security Awareness program and improving Security Awareness processes
• Self-starter and ability to perform independently and synthesize information from disparate sources
• Proven experience in navigating complex organizations and effective relationship management
• Familiarity with On-prem, Cloud, and Hybrid Cloud environments
• Ability to track, manage, and resolve Security Awareness issues and requests using a ticket system
• Understanding of Request, Incident, and Change Management practices
• Possess at least one recognized security certification, which demonstrates advanced expertise in designing, implementing, and managing premier cybersecurity programs
• Strong understanding of Security Awareness principles, practices, and tools, with the ability to develop and implement effective Security Awareness procedures and corrective measures
• Proficient in assessing, prioritizing, and addressing Security Awareness issues, including handling escalations and providing security consultation across business units

Responsibilities

• Develop Security Awareness policies and procedures, coupled with the recommendation, implementation, and enforcement of relevant information security frameworks and standards
• Lead executing and maintaining a comprehensive Security Awareness framework
• Lead Security Awareness strategy projects and develop and manage those practices
• Collaborate with cross-functional teams to assess risk, plan for, and test Security Awareness
• Lead the development and production of large enterprise exercises and other business continuity framework cycles
• Leads all aspects of building the Cybersecurity Awareness and Training program including strategic program and project planning and execution; developing business cases for new resource and budget needs; and creating new approaches to operationalizing delivery
• Leads the development and delivery of educational security content (e.g., print/digital signage, newsletters, website, virtual/in-person training, etc.) across multiple platforms that is engaging, relevant, and ensures security best practices and adherence to policies to reduce cybersecurity risks
• Develops annual, ad hoc, and role-based training plans, and e-learning for employees and contractors
• Manages the third-party security awareness and phishing platform, including simulated phishing exercises, and other email-based tools that enhance email security
• Collaborates with corporate and market communications teams, corporate executives, compliance, and other subject matter experts to create content and execute awareness campaigns
• Tracks key training, awareness outreach, and phishing metrics to measure program impact
• Ensures the Security Awareness and Training program meets all industry regulations, standards, and compliance requirements (e.g., SOC2, NIST, ISO, SOX, etc.) and company guidelines
• Maintain, develop and track Security Awareness policy, standard and procedures documentation
• Project Manager Security Awareness team initiatives, ensuring on time delivery
• Lead and collaborate with various geographically spread, cross-functional teams including IT, Product, Engineering, Architecture teams, Sales, Marketing, Finance and Legal
• Perform other security-related duties as assigned

Preferred Qualifications

• Prior experience as a Security Awareness Analyst or similar role
• Ability to effectively lead a Security Awareness program with multiple projects in an extremely fast paced environment
• One or more certifications such as CISA, CISM, CISSP, CRISC, CIA, or CGEIT are desired
• Can translate complex technical topics into easy-to-understand concepts fostering understanding and collaboration between technical and business stakeholder
• Knowledge and experience working with, Cloud technologies/environments, AWS, Azure, GCP or other related cloud experience is required
• Strong written and verbal communication skills, with a passion for documentation
• Ability to quickly demonstrate an understanding of internal Security Awareness controls, business processes in a fast-paced environment
• Strong work ethic and an insatiable desire to learn
• Thrives in a team-based environment, leaving ego at the door
• Proficiency with Atlassian products: Jira and Confluence
• Solid organizational skills, including the ability to consistently meet project deadlines, while maintaining quality, attention to detail, and accuracy in work
• Develop and enforce policies, standard, procedures, methodologies, processes, and tools
• Identify trends in need of a larger solution, beyond the scope of the immediate problem
• Design and champion best practices within the organization
• Solve complex and challenging problems with simple, maintainable, and scalable solutions

Benefits

• Coverage for medical, dental, vision, life and disability
• Paid Parking
• Paid Holidays
• Generous PTO
• Casual and fun work environment
• Education assistance
• A relocation subsidy may also be available
• 401K Fidelity