Principal Security Culture & Awareness Consultant

We are looking for a champion of cyber security who is eager to make a real impact in the world of developer education as a Principal Security Culture & Awareness Consultant.In this pivotal role, you’ll guide SCW’s customers on how to embed security awareness into their developer’s DNA, help develop security education programs that foster secure practices and mitigate cyber risks. You’ll collaborate with leaders, teams, and experts to help drive cultural change and ensure their cyber security strategy aligns with their organisational goals.In this role, you will be making a difference across multiple organisations and become their trusted Security Awareness confidante. Your success will be their success.Reporting to the Director of Customer Strategy, you will be part of a dynamic new Services team that will be providing security awareness strategic guidance to SCW customers.

Key Responsibilities

• Impactful Program Strategy: Work with a wide array of organisations to understand their unique business needs and develop tailored security awareness strategies. Your influence will span across industries, embedding security as a core element of multiple company cultures.
• Campaign Creation & Delivery: Design and deliver customised communications, awareness tactics, and campaigns that target key application security concerns. Leverage these campaigns to empower customer security awareness and application security teams and enhance developer engagement.
• Training Platform Setup & Integration: Configure and manage SCW training platform based on agreed curriculum requirements. Provide insights on the best product setup to maximise program efficiency and work with customer teams to ensure smooth execution.
• Vulnerability Analysis & Curriculum Recommendations: Gather security vulnerability data to provide input on security awareness training curriculum. Continuously gather feedback from developers and stakeholders to ensure the program is aligned with current security needs.
• Collaboration with Engineering Teams: Work with customers’ Engineering teams to identify developers, understand their organisational structure, and ensure security training is relevant and impactful.

What you will bring to the role

• Excellent communication skills, both verbal and written with strong presentation skills and the ability to articulate and present solutions, ideas and recommendations.
• Outstanding stakeholder engagement skills to build strong relationships and drive outcomes while effectively involving stakeholders throughout the process, fostering collaboration and buy-in. You will have gravitas and credibility in the large, complex, diverse structure of top tier companies.
• Strong problem-solving abilities to navigate complex challenges and adapt to evolving situations.
• Solid time management and organisational skills to prioritize tasks and meet deadlines efficiently.
• Creativity and innovation to bring fresh ideas and approaches to problem-solving and project development.
• Excitement to work at the bleeding edge, helping shape and grow a newly formed team. Your ability to adapt, innovate, and navigate uncharted territory will be key to driving success in this dynamic environment.

What is an essential requirement

• Tertiary qualifications in change management, organisational development, Information technology, cyber security, business or relevant equivalent experience.
• Prior experience working with application security and/or Engineering teams is a big plus
• Basic to intermediate knowledge of application security concepts such as the OWASP Top 10, and Engineering concepts such as Devops, CI/CD