Security Behaviours Officer

at  Liberty Global

ABOUT US

We’re building Tomorrow’s Connections Today, bringing people together through the power of our technology.
Liberty Global is a world leader in converged broadband, video and mobile communications and an active investor in cutting-edge infrastructure, content and technology ventures.
With our investments in fibre-based and 5G networks we play a vital role in society, currently providing over 85 million fixed and mobile connections and rolling out the next generation of products and services, while readying our networks for 10 Gbps and beyond.
We’re creating national champions, combining the best broadband and mobile networks under brands such as Virgin Media-O2 in the UK, VodafoneZiggo in The Netherlands, Telenet in Belgium, Sunrise in Switzerland, Virgin Media in Ireland and UPC in Slovakia.
Liberty Global Ventures, our global investment arm, has a portfolio of more than 75 companies and funds across content, technology and infrastructure, including strategic stakes in ITV, Univision, Plume, Lionsgate and the Formula E racing series.
Our scale enables us to transfer knowledge and expertise across our operations and investments, creating a dynamic family of brands united in the pursuit of innovation and excellence.
And we’re prioritising diversity, equity and inclusion in our workplace and communities, while reducing our impact on the environment. We are using technology as a force for good; for our people, our partners and the planet.

KEY ACCOUNTABILITIES

Security Behaviour Change Development and Delivery:

• Leading on the development and implementation of the cybersecurity behaviours program of activity.
• Building and maintaining an in depth understanding of business goals to constructively engage business leadership on security culture & behaviour development in a way that effectively balances security and business priorities.
• Create and maintain a behavioural framework that outlines expected security-related behaviours.
• Consult with senior leadership to ensure alignment between expected security behaviours and strategic security objectives.
• Design and implement strategies to instill a security-first mentality among employees at all levels – making it easy for employees to do the right thing.
• Conduct regular assessments to measure and analyse security behaviour change and security culture maturity.
• Assessing, reviewing, and challenging existing policies, procedures and processes where necessary, and working closely with business leadership to identify key areas for security improvement, ensuring that security policies and procedures are relatable, contextual and digestible.

Human Risk Management:

• Developing strong relationships in order to build a detailed understanding of the human cybersecurity risks that exist across the business.
• With a focus on Liberty Global Central, taking accountability for the identification, assessment and management of new and existing human risks in a way that balances security with business priorities.
• Regularly briefing the Liberty Technology Security senior leadership team on human risk management initiatives and trends – ensuring this information is delivered to the business with clarity.
• In partnership with the Security Risk management team, supporting the timely reporting of human risks to security and business leadership (including to MD audience).

Employee Training & Awareness

• Develop and deliver training programs to encourage and reinforce positive cybersecurity behaviors in employees.
• Design and deliver awareness campaigns to keep employees informed about current and emerging cybersecurity threats and trends.
• Expertly engage with teams across Group Security to facilitate the effective delivery of security awareness campaign activities.
• In close partnership with the Business Information Security Officer team:
• Assist in building business awareness of emerging security threats and risks to develop and strengthen security culture throughout the organization.
• Assist in the identification of key areas of focus for security education and awareness campaigns.

Communication & Branding

• Consult, influence and collaborate with business Learning & Development and Internal Communications teams ensuring alignment between security and business goals.
• In consultation and collaboration with Internal Communications, develop and deliver security communication plans to share updates on cultural initiatives and achievements, ensuring that security messaging aligns with the organization’s culture and values.

Compliance

• Collaborate with the Compliance team to deliver annual mandated security training, ensuring that these initiatives align with regulatory requirements.

KNOWLEDGE & EXPERIENCE

We tend to look for people with:

• Knowledge of current trends and best practices in organizational security culture and behaviour.
• Proven experience in a similar role focusing on leading cybersecurity change: building a security-based culture.
• Highly skilled in the design, development and delivery of security awareness campaign activity and security training programs.
• In-depth knowledge of cybersecurity principles, best practices, and emerging threats.
• Ability to see the bigger picture – always considering the wider impacts of security decision making.
• Experience of working with technical and non-technical audiences to embed positive security behaviours to meet business objectives.
• Exceptional communicator with demonstrable experience providing written and verbal presentations.
• Able to work independently to deliver high quality support to senior stakeholders and cultivate excellent relationship management skills across the organization.

Desirable Skills & Abilities:

• Analytical approach with the ability to use data to drive decisions and measure success
• Good understanding of security frameworks (e.g. ISO 27001, NIST etc).
• Comfortable with interpreting technical requirements, regulations and procedures and translating into clear, education and awareness-focused messages for non-technical audiences.
• Great teammate that enjoys collaborative solutioning.

PREFERRED EDUCATION/ QUALIFICATIONS:

• Certified Security Awareness Professional (SSAP or CSAP) / Certified Information Security Manager (CISM).

Benefits:

• Competitive salary + Bonus
• 25 days annual leave with the option to purchase 5 more
• Free access to LinkedIn Learning & Coursera to continue to develop and grow your career with us
• Company Pension Contributions
• Access to our car benefit scheme
• Access to wellbeing and mental health benefits such as the Calm app, personal medical, critical illness cover and dental insurance

Liberty Global is an equal opportunity employer. We embrace diversity and are committed to creating an inclusive environment for our people. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process. We’re 100% committed to having a workforce that represents every part of our society. So we’re keen to hear from candidates of all background and circumstances

The Security Academy team are at the heart of Liberty Global’s information security and transformation programme, ensuring that we continue to deliver on our purpose of putting security at the forefront of “delivering tomorrow’s connections today”.
The Security Behaviours Officer will design, implement, and maintain cybersecurity awareness campaigns and initiatives pertaining to our Security Behaviours Strategy which promotes a cybersecurity-conscious workplace culture, strengthening and developing our security posture.
Communication and collaboration are central to what the Academy does, and work with enablers and collaborators across the organization to ensure that cybersecurity is embedded at our core and that employees understand their role in maintaining a secure environment. This plays a crucial part in shaping and enhancing this, through planning, implementing and measuring positive security behaviours, and through the building and delivery of tailored security awareness content.
This role will best suit someone who is passionate about delivering positive cybersecurity behaviour change, is great at building relationships, and who seeks to make a positive difference by developing and promoting a strong security ethos.