Security Consultant I

Join our team and what we'll accomplish together

The TELUS Health CSO Provides comprehensive security oversight for TELUS Health services with particular emphasis on protecting Protected Health Information (PHI) and maintaining regulatory adherence.

We partner with industry leaders to meet the cyber security needs of both TELUS Health and our customers to meet the demands of an increasingly complex and ever-changing cyber security landscape. We are passionate about learning and growing as individuals and as a team, all of which enables us to thrive in a dynamic, fast-paced environment.  

As Cybersecurity Awareness Consultant I, you will be responsible for the administration and development of our new and dedicated security awareness and education platform to help foster the behaviours and a security culture that protects both our customers and team members. You will help to ensure we meet our numerous compliance and regulatory requirements through training and awareness activities. You will develop, curate, and deploy training material that our team members find insightful and relevant to their day to day roles across TELUS Health.

What you will do

• Lead the day to day operation of the security awareness and training platform, to execute on our strategy to mature and improve behaviours and  TELUS Health security posture
• Provide support and guidance to users globally to navigate the platform and associated processes including onboarding and ongoing support.
• Proactively address issues and troubleshoot team member related queries as and when they arise.
• Monitor progress and drive enforcement of mandatory training/activities through provision of associated metrics and generate reports for leadership and/or various audit requirements.
• Provide input and drive decision-making on security awareness and education material, and review available content from the platform to generate training modules relevant to TELUS Health.
• Engage across TELUS Health CSO to generate content and plans for training materials, utilising data from a range of sources to identify gaps in team member understanding of cyber security.
• Manage the set up process and onboarding of new business acquisitions to the platform, synchronisation of new team members and develop draft communications as required.
• Identify opportunities for optimisation of tooling and associated processes.
• Use your creative skills to enhance team member engagement and experience of cyber security awareness training. 
    

What you bring

• Post secondary diploma/certification in Information Security, Computer Science, Cybersecurity, or equivalent combination of education and experience
• 1-3 years’ experience in cybersecurity awareness and training, internal communications, change management or related fields.
• Experience with content creation, cyber security awareness communications, presentations, designing engaging infographics for virtual training.
• Knowledge/understanding of cyber security frameworks such as CIS, NIST CSF and 800 series, ISO 27001/2 and PCI DSS considered an asset.
• Strong interpersonal skills, particularly the ability to understand technical subject matter and translate into business impact.
• Awareness of changes in global regulations and ensure content and training content comply with relevant compliance requirements.
• A passion for problem solving, creative brainstorming, and excellent writing/editing skills.
• Ability to participate in cross-functional team projects and gain consensus working with a large network of stakeholders.
• A desire to help and empower end users by creating positive associations with security and great end user experiences

Great- to haves

• Experience designing and implementing educational experiences (ie. e-learning storyboards, micro-trainings, and quizzes)
• Experience with internal cybersecurity awareness communications campaigns with demonstrable results in driving awareness and building engagement in a globally distributed workforce.
• Experience working in a large, complex organization with global operations
• Experience with security awareness and training platforms (ie. Beauceron, KnowBe4, Terranova, Metacompliance etc.) 

If you don't have 100% of the experience listed above, you should still apply. We'd love to connect and learn about your unique skills and motivation to do meaningful work by leveraging the experience you DO have.

 
Advanced knowledge of English is required because you will most of the time interact in English with external parties (clients, suppliers, candidates, external partners, etc.); interact in English with internal parties (colleagues, internal partners, stakeholders, etc.); and work with IT tools whose interface is only accessible in English as part of this position's main responsibilities given its national scope.