Manager, Information Security (Cyber Culture) - Remote
Logistics at full potential.
At GXO, we’re constantly looking for talented individuals at all levels who can deliver the caliber of service our company requires. You know that a positive work environment creates happy employees, which boosts productivity and dedication. On our team, you’ll have the support to excel at work and the resources to build a career you can be proud of.
As the Manager, Information Security (Cyber Culture), you will lead the development and implementation of initiatives to improve workforces’ cyber behaviors and advance our cyber culture. You will create engaging medium to help colleagues at all levels understand their responsibilities and the threats we face.
Pay, benefits and more.
We are eager to attract the best, so we offer competitive compensation and a generous benefits package, including full health insurance (medical, dental and vision), 401(k), life insurance, disability and more.
What you’ll do on a typical day:
· Oversee the enhancement of our Human Risk Management platforms, monitoring our workforces’ cyber behaviors, and developing technical and non-technical measures to respond to risky actions taken.
· Direct and upskill colleagues through our company-wide and targeted learning initiatives, from needs analysis and content development to deployment.
· Shape and deliver clear, inclusive and on-brand proactive and reactive communications, partnering with internal communications and key stakeholders to promote the subject and maintain a variety of knowledge channels.
· Monitor the outcome of training activities against defined behavioral metrics, building automated and effective reports to demonstrate human cyber risk reduction, program maturity and compliance.
· Act as a ‘Human Security’ SME, liaising cross-functionally to ensure human behaviors are factored into, and considered during, the design of information security software and policies.
· Maintain relationships with Information Security training vendors and third parties operating within this field.
· Line manage and coach a team of Cyber Culture Specialists, including all aspects of performance management, development, conduct and recruitment.
What you need to succeed at GXO:
At a minimum, you’ll need:
· Bachelor’s degree in Information/Cyber Security, Communications, Psychology, or another related discipline or equivalent related work or military experience
· Security Awareness Professional Certification from a recognized professional body (e.g., SSAP)
· Robust understanding of human risk management and behavior science concepts.
· Understanding of technical information security controls and systems.
· Ability to analyze and compare large quantities of data and identify patterns and trends.
· Strong stakeholder management skills with the ability to collaborate, influence, and challenge decision-makers at all levels.
· Team-oriented with a high degree of initiative coupled with the ability to work within a defined remit with limited oversight.
· Ability to balance the need to develop strong positive working relationships while taking the difficult and unpopular decisions for the wider benefit as needed.
· Working knowledge of training requirements defined within industry standards (e.g., ISO27001 series, NIST, etc.) and an understanding of current and emerging information and cyber security risks/threats.
· Excellent communication skills, notably strong written, verbal and presentation/facilitation skills with the ability to translate technical language for non-technical audiences.
· Implementing, managing, and administrating human risk management and simulated phishing platforms (e.g., CybSafe, CultureAI), and associated technology.
· Building and deploying innovative and engaging communication campaigns and designing/creating training content (e.g., e-learning, presentations, animations/videos) suitable for global audiences.
· Use of learning management systems (e.g., Workday, Cornerstone) and management of company intranets.
· Metrics creation, gathering and presenting through use of data analytical tools (e.g., PowerBI, Microsoft Excel), using metrics to inform future activities.
· This role will require occasional travel and work from multiple sites/locations.
It’d be great if you also have:
· Experience leading a training program within a large multi-national organization containing a diverse workforce.
· Managing direct reports within a remote/hybrid environment operating across various time zones.
· Information Security and Data Privacy certifications from a recognized professional body (e.g., CISM, CISSP).
· Change Management Foundation & Practitioner Certification from a recognized professional body (e.g., APMG)
· Certification in Learning & Development from a recognized professional body (e.g., CIPD).
GXO is a leading provider of cutting-edge supply chain solutions to the most successful companies in the world. We help our customers manage their goods most efficiently using our technology and services. Our greatest strength is our global team – energetic, innovative people of all experience levels and talents who make GXO a great place to work.
We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.
GXO adheres to CDC, OSHA and state and local requirements regarding COVID safety. All employees and visitors are expected to comply with GXO policies which are in place to safeguard our employees and customers.
All applicants who receive a conditional offer of employment may be required to take and pass a pre-employment drug test.
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed. Review GXO's candidate privacy statement here.