Cyber Security Awareness & Phishing Program Lead
The full job description covers all associated skills, previous experience, and any qualifications that applicants are expected to have.
We are seeking an experienced Cyber Security Awareness & Phishing Program Lead to define, implement, and manage a comprehensive phishing awareness strategy across a large and diverse organization of approximately 10,000 employees. Reporting to the Security Business Development Manager within the CSO organization, the consultant will play a key role in strengthening the organization's cyber security culture through targeted awareness campaigns, stakeholder engagement, and measurable improvements in employee resilience against phishing attacks.
Key Responsibilities
* Assess the current phishing awareness maturity level and review existing analyses and findings.
* Define and structure a comprehensive phishing awareness strategy covering a 12- to 24-month horizon.
* Design and maintain a phishing simulation campaign catalogue, including:
* Various attack scenarios
* Multiple difficulty levels
* Targeted audiences and employee profiles
* Plan, implement, configure, and execute phishing simulation campaigns end-to-end.
* Analyze campaign results and provide actionable recommendations to improve cyber security awareness.
* Develop and contribute to a multi-channel internal communication plan in collaboration with key stakeholders, including Cyber Security, Internal Communications, and business departments.
* Define KPIs, maturity indicators, success metrics, and reporting dashboards to measure program effectiveness.
* Monitor progress and continuously improve awareness initiatives based on campaign outcomes and organizational needs.
* Deliver knowledge transfer and coaching to ensure long-term internal ownership and autonomy in managing phishing awareness campaigns.
* Act as a trusted advisor to stakeholders on cyber security awareness and behavioral change initiatives.
Required Qualifications & Experience
* Proven experience in cyber security awareness, phishing simulation programs, and security culture development.
* Strong expertise in Cyber Security and Information Security frameworks, including ISO 27001.
* Experience working within Microsoft 365 environments, including Exchange Online.
* Demonstrated experience in change management and user adoption initiatives.
* Ability to design awareness strategies and translate them into practical, measurable action plans.
* Strong analytical skills with the ability to interpret data and generate meaningful insights.
* Excellent communication, presentation, and stakeholder management skills. xphnsxz
* Customer-focused mindset with a strong solution-oriented approach.
Required Skills
* Cyber Security (Expert)
* Security Awareness & Phishing Programs (Expert)
* Change Management (Expert)
* Analytics & Reporting (Expert)
* Microsoft 365 / Exchange Online (Expert)
* ISO 27001 (Expert)
Languages
* Native or bilingual proficiency in Dutch or French (mandatory)
* English (preferred)
Seniority
Senior Cyber Security Consultant / Security Awareness Lead