Key skills
Cyber SecurityLeadershipCommunicationCollaboration
About this role
Role Overview
- Lead the development, review, update, and publication of cybersecurity policies and procedures.
- Maintain a structured and scalable policy lifecycle process including intake, review cycles, approvals, and publication workflows.
- Ensure policies and procedures align to recognized frameworks (e.g. NIST CSF and 800-53, ISO 27001, PCI-DSS, SOX, SOC 2 and other applicable standards).
- Maintain mapping between policies, procedures, and control requirements.
- Identify content gaps and drive continuous improvement in documentation quality and clarity.
- Communicate policy updates effectively to relevant stakeholders to support adoption and awareness.
- Lead execution of the global cybersecurity training and awareness program.
- Manage phishing simulations, reporting, and target education initiatives.
- Develop and coordinate annual and secondary cybersecurity content and delivery.
- Track awareness metrics and drive continuous improvement of engagement and reporting rates.
- Partner with stakeholders to promote a strong culture of security awareness across the enterprise.
- Work closely with IT, Legal, Privacy, HR, and business teams to integrate policies and procedures into operational practices.
- Support compliance efforts by ensuring documentation reflects implemented controls and operational processes.
- Provide structured updates and reporting to leadership on program status, maturity, and key initiatives.
Requirements
- Bachelor's Degree (completed and verified prior to start)
- 7+ years of relevant Cybersecurity or IT experience
- 3+ years of leadership or program management experience
- Experience managing cybersecurity policies program for a new and growing company
- Strong written communication and documentation skills
- Technical writing experience a plus
- Experience leading or supporting cybersecurity awareness and phishing simulation programs
- Strong cross-functional collaboration and stakeholder engagement skills and relationship building
- Experience working with common cybersecurity and compliance frameworks (NIST, ISO, PCI, SOX, SOC-2, etc.)
Tech Stack
- Cyber Security
Benefits
- Medical, Dental & Vision
- Health Savings Accounts
- Health Care & Dependent Care Flexible Spending Accounts
- Disability Benefits
- Life Insurance
- Voluntary Benefits
- Paid Absences
- Retirement Benefits