Information Security Awareness Analyst

JOB DESCRIPTION

Calling all originals: At Levi Strauss & Co., you can be yourself — and be part of something bigger. We’re a company of people who like to forge our own path and leave the world better than we found it. Who believe that what makes us different makes us stronger. So add your voice. Make an impact. Find your fit — and your future.

Summary of the role:

The Information Security Awareness Analyst will be responsible for the development, review, implementation, and maintenance of the organization’s information security awareness program. They will ultimately reduce risk throughout the organization by driving employee behavior change. This is accomplished by engaging, educating, and reinforcing secure behaviors and mindsets across the enterprise. This role will report to the Director, Cyber Program Management within the CISO organization.

About the role (Key Responsibilities include but are not limited to):

• Identifies Human Risks and Defines the Awareness Program

• Identifies and evaluates top human cybersecurity risks to the organization and the behaviors that must change to mitigate those risks
• Develops, reviews, implements, and maintains a cybersecurity awareness program to mitigate human risks present in the organization’s extant operating environment
• Creates and manages a metrics framework that effectively measures employee behavior and compliance with cybersecurity policies, and tracks the overall effectiveness of the cybersecurity awareness program
• Establishes, and then maintains, an understanding of employee awareness around the organization
• Works with relevant business units to improve cybersecurity awareness and meet regulatory and compliance standards

• Develops and Delivers Campaigns to Change Employee Behavior

• Creates and manages effective awareness training, communications, and marketing
• Targets campaigns to specific segments of the employee population
• Ensures employees and third parties understand, acknowledge, and fulfill all applicable information security policies
• Encourages employees to move beyond compliance of policies and toward adopting a security mindset
• Encourages employee engagement with security broadly

• Promote a culture of security awareness throughout the organization by communicating security messages regularly and effectively

·Tracks Progress and Optimizes the Awareness Program

• Ensures security awareness trainings, communications, and marketing are engaging and influences changes in employees’ behavior
• Assesses effectiveness of each major campaign using a metrics framework and incorporates employee feedback
• Iterates and continuously improves upon existing awareness campaigns as appropriate
• Stay up-to-date on the latest security threats and trends and ensure that the training program is updated accordingly.

About you:

• Education:
  • Bachelors or Masters degree in Cyber Security, Communications, Psychology, Learning & Development or a related field
• Experience:
  • 4+ years of relevant work experience, preferably in similar roles and/or either Cyber Security, Communications, Psychology, Learning & Development
  • Demonstrable experience in technical training, adult education, or learning & development

• Technical and Business Experience

• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood and actionable manner
• An ability to effectively influence and convince others to make appropriate changes in their priorities and behaviors for the benefit of the organization
• An ability to coordinate activities on behalf of Information Security with HR, Risk Management, and Compliance functions
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• Experience with security awareness training tools and platforms. This may include experience with learning management systems (LMSs), authoring tools, and other training delivery platforms.
• Experience with project management and delivery. This includes the ability to develop and implement training plans, track progress, and measure results.
• Experience with adult learning principles. This includes the ability to design and deliver training that is relevant and effective for adult learners.
• Experience with marketing and/or business communication. This includes internal HR communication to employees, external marketing or other roles involving mass communication in a business or professional setting.

• Knowledge and Skills

• An ability to communicate risks to employees outside Information Security in a way that consistently drives objective decisions about risk that optimize the trade-off between risk mitigation and business performance
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• Excellent prioritization capabilities, with an aptitude for breaking down work into manageable parts, effectively assessing the priority and time required to complete each part

• Personal Attributes:

• Strategic thinker with the ability to align initiatives with business goals.
• Detail-oriented with strong analytical skills
• Excellent problem-solving skills with the ability to handle high-pressure situations.
• Team player who can build collaborative relationships across diverse teams and stakeholders.

Benefits
We put a lot of thought into our programs to provide you with a benefits package that matters. Whether it is for medical care, taking time off, improving your health or planning for retirement, we've got you covered.

Here's a small snapshot:

• Complimentary preventive health check-up for you & your spouse
• OPD coverage
• Best in class leave plan including paternity & family care leaves
• Counselling sessions to prioritizing mental well-being
• Exclusive discount vouchers on Levi’s products

We are an Equal Opportunity Employer committed to empowering individuals from all walks of life to achieve their professional goals with us, regardless of race, religion, gender, gender identity, pregnancy, disability, sexual orientation, age, national origin, citizenship status, or genetic information. We actively seek and encourage applications from diverse candidates, including those with disabilities, and offer accommodations throughout the selection process upon request.

To ensure that our products and culture continue to incorporate everyone's perspectives and experience, we never discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. 

LOCATION

FULL TIME/PART TIME

Current LS&Co Employees, apply via your Workday account.