Global Information Security Training Lead
Crown Cork & Seal USA, Inc., YARDLEY, Pennsylvania, United States, 19067
The Company:
CROWN Cork & Seal USA, Inc., a wholly owned company of Crown Holdings, Inc. is a global leader in the design, manufacture and sale of packaging products for consumer goods. At Crown, we are passionate about helping our customers build their brands and connect with consumers around the world. We do this by delivering innovative packaging that offers significant value for brand owners, retailers, and consumers alike. With operations in 40 countries employing over 26,000 people and net sales of nearly $13 billion, we are uniquely positioned to bring best practices in quality and manufacturing to our customers to drive their businesses locally and globally. Sustaining a leadership position requires us to build a team of highly talented, dedicated, and driven individuals.
The Team:
The mission of the Global Security Team is to protect Crown’s global information systems, data and employees from cyber-based security threats while ensuring the confidentiality, integrity and availability of information used by the Crown business units to produce world class sustainable packaging solutions to our customers’.
You will join a fun, cohesive and collaborative team who love what they do and are committed to creating a safe and secure environment for the Crown family. We are a nimble with dynamic backgrounds that foster an environment of continuous learning and growth.
The Job:
We are seeking a Global Cybersecurity Training and Awareness Lead, who will directly impact the overall security posture of Crown by focusing on one of the most critical elements of a company’s security portfolio, human risk! You will join the Global Information Security team to own the security awareness strategy and execution for the organization.
This position is focused on creating and managing global awareness campaigns and programs, with an emphasis on educating and training team members around the world. Your role will be crucial in not only mitigating human-related risks but also fostering a security-conscious culture across the organization.
This is a highly visible role, and you will be consistently partnering and collaborating with the CISO and regional IT and security executive leadership.
Day to Day:
As the Global Cybersecurity Training and Awareness Lead, your work will be key in shaping how employees understand and engage with security protocols. Here’s a quick overview of what your responsibilities might include:
- Strategy Development: Craft and refine a comprehensive security awareness strategy that aligns with Crown’s overall security goals and risk management framework.
- Campaign Management: Design, implement, and oversee global awareness campaigns to educate employees on best practices, emerging threats, and compliance requirements.
- Training Programs: Develop and manage training programs that are engaging, relevant, and effective for employees at all levels and in various regions.
- Metrics and Reporting: Monitor and measure the effectiveness of awareness programs through metrics such as participation rates, knowledge retention, and incident reductions. Report on these metrics to senior management.
- Content Creation: Create or coordinate the development of security awareness materials such as newsletters, e-learning modules, videos, and interactive activities.
- Email Security: Create and launch monthly phishing simulations using Proof Point. Create and launch role-based training for key roles, tracking and reporting training completion status, supporting end-users access issues with the third-party solution, and manager the vendor relationship.
- Incident Response Support: Collaborate with the incident response team to provide post-incident training and updates to prevent recurrence of similar issues.
- Cultural Adaptation: Ensure that awareness and training programs are culturally sensitive and tailored to the diverse needs of a global workforce.
- Collaboration: Work closely with Plant management and other departments, including HR, IT, and legal, to integrate security awareness into broader organizational initiatives and ensure consistency in messaging
- Employee Engagement: Foster a culture of security mindfulness through engaging and interactive methods that encourage ongoing participation and vigilance.
- Continuous Improvement: Stay updated on the latest security threats and awareness trends to keep the program current and effective.
Location:
Yardley, PA. This is an office-based position, and individuals are expected to be in the office daily. Crown offers a flexible work hour schedule.
How to Qualify
- Bachelor’s degree
- Minimum of 3 years’ experience developing and delivering security awareness and development of comms and or learning content preferably in IT, Info Security.
- Experience with executing mixed-method trainings, creating course design documents, and program evaluation
- Experience using third party phishing simulation tools
- Excellent interpersonal skills with the ability to communicate confidently and effectively both verbally and in writing, with Executive Leadership as well as all levels within the organization, including both technical and non-technical personnel
- A high degree of proficiency in MS Office, and the ability to translate complex concepts/data into graphically appealing and easy to understand presentations
- Highly organized and able to multi-task and manage concurrent deadline
- Ability to travel 5-10%