Cybersecurity Engagement & Awareness Lead

  • Full Time
  • Dublin

Website ESB

Technology plays a leading role in enabling and delivering ESB’s strategy of achieving Net Zero emissions by 2040, but it’s our people who will make this Brighter Future a reality.

With almost 800 people working across our IT Delivery and CIO functions, together we design, build and support a broad range of technologies and services to deliver on our mission to bring sustainable and competitive energy solutions to all customers. We achieve this by harnessing all our resources, investing in our people and working collaboratively together.

We operate one of the most advanced and critical technology landscapes in Ireland, managing a vast array of enterprise IT and OT technologies. These technologies reside in our state-of-the art data centres, in our power generation plants, and in our critical operations centres. In addition to enterprise IT applications, databases, and platforms, we also operate critical SCADA systems, OT and Plant/Industrial Controls Systems and critical Telecom’s systems – all requiring the appropriate level of security to protect our business.

This role will be required to build on ESB’s well-established cybersecurity culture change and awareness program and to evolve the program to cater for ESB’s future requirements as well as the continued evolution of cyber malicious threats and activities. This role is imperative towards reducing risk to ESB by ensuring all employees, staff and contractors are aware of ESB’s security policies, standards and requirements and ultimately how to operate in a cyber secure manner.

Key Responsibilities

  • Operate and evolve ESB’s cybersecurity change and awareness program.
  • Provide leadership and mentorship on cybersecurity awareness, training, documentation, and knowledge management across ESB.
  • Develop and oversee cybersecurity awareness plans to effectively change behaviours of our people in a secure manner.
  • Ensure that ESB’s cybersecurity awareness program meets all industry regulations, standards, and compliance requirements.
  • Ensure that the ESB cybersecurity awareness program communicates ESB security policies and requirements so that people know, understand, and can follow them.
  • Identify the top human risks to ESB and the behaviours that need to change to mitigate those risks.
  • Create a positive awareness across ESB program that engages all, to include focusing on changing behaviours both at home and at work.
  • Structure and maintain this program to be long term, so ultimately, we are not changing just behaviours but culture.
  • Develop and maintain reporting dashboards that can effectively measure the maturity and the success of the cybersecurity awareness program across the various business units.
  • Develop and mature long-term relationships through a cybersecurity champion network.
  • Participate in the development and evaluation of cybersecurity policies, standards & procedures.
  • Manage any third-party awareness suppliers including platforms.

Experience & Qualifications

Essential

  • Minimum of 5 + years’ relevant experience, including experience delivering cultural and change programmes for organisations.
  • Be proactive in self-learning and research with proven ability to translate it into cultural and change programmes of work.
  • Experience with and knowledge of change management principles, methodologies and tools.
  • Proven ability to lead and influence change and to clearly articulate messages to a variety of audiences.
  • Strong proficiency of MS Office suite including Word, PowerPoint, Excel, Visio & SharePoint.
  • Previous experience leading a team.
  • Ideally have some familiarity or background with cyber, the cyber threat landscapes, regulatory standards, NIST and other information security standards.
  • Excellent x-company stakeholder management experience.
  • Excellent communication and presentation skills (in-person, off-site and virtually).
  • A good understanding of emerging technologies and methodologies from a risk and compliance perspective (e.g., cloud technologies).
  • Relevant 3rd level degree or equivalent work experience.

Desirable

  • Ideally have previous technical knowledge or experience working in IT, Change Management or Cybersecurity environments.
  • Reporting experience, for example, leveraging PowerBi.
  • Some background in marketing or may have previously worked on marketing campaigns with knowledge of cybersecurity concepts and technologies.
  • Understanding or previous experience in Risk and Compliance.
  • Previous experience working in a Utility Industry would be a bonus.

To apply for this job please visit careers.esb.ie.