Cyber Awareness & Training Lead - London (3 days a week) - up to £90,000 + bonus + benefits
La Fosse has partnered with a global financial services business to hire a Cyber Awareness & Training Lead into a newly created role within their international security function.
This is a key hire, focused on building and embedding a more mature security awareness programme across the organisation, with particular emphasis on high-risk users, in-person engagement, and mandatory annual training.
Responsibilities
* Own and develop the cyber awareness and training programme, creating a more structured and consistent approach across the business.
* Design, implement, and maintain mandatory annual security awareness training, ensuring it meets regulatory expectations and is relevant, engaging, and effective.
* Build out a broader programme of regular awareness activity, including targeted campaigns, bespoke communications, and more in-person training across the business.
* Work closely with high-risk user groups to deliver tailored education and support, helping reduce human-related security risk in key areas.
* Manage and enhance existing awareness tooling, including KnowBe4 and mock phishing simulations, using insights and results to improve the programme over time.
* Work with external consultancies where needed to support content creation, delivery, and programme development.
* Use findings from testing, incidents, and threat activity to continuously refine messaging and prioritise awareness efforts.
Requirements
* Strong experience in cyber security awareness, training, or human risk, ideally within a regulated or complex enterprise environment.
* Experience creating and delivering mandatory annual awareness training programmes, with a good understanding of regulatory expectations.
* Ability to design and deliver engaging in-person training sessions as well as online content and wider communication campaigns.
* Experience working with higher-risk user groups and tailoring awareness approaches based on audience, threat, and business context.
* Familiarity with awareness platforms such as KnowBe4 and phishing simulation programmes.
* Good understanding of how user behaviour contributes to cyber risk, with the ability to translate technical threats into practical guidance for the business.
* Strong stakeholder management skills, with the ability to work across security, IT, and the wider business to drive engagement and behavioural change.
* Comfortable operating in a role with plenty of scope, where there is the opportunity to build and shape the function from the ground up.
For more information, please apply.