Specialist, Awareness and Training

at  Teck

CLOSING DATE: FEBRUARY 28, 2025

Teck is a leading Canadian resource company focused on responsibly providing the metals essential for global development and the energy transition while caring for the people, communities and land that we love.
Teck’s two regional business units, North America and Latin America, oversee Teck’s assets through all phases of safe, sustainable development, operation and closure. The business units are supported by enterprise-wide functions that set strategic direction, establish standards and provide governance, as well as supporting the business through shared services, centers of excellence and business partnering.
Reporting to the Manager, Digital Risk Strategy, the Specialist, Awareness and Training is responsible for reducing cyber risk by managing the enterprise cyber security awareness and training programs. This outstanding individual will educate personnel across the organization on cyber security policies, standard processes and emerging threats to promote a cyber safe workplace! The successful candidate will collaborate with diverse departments to cultivate a culture of risk management and security awareness throughout the organization.
Don’t miss out on this opportunity to be part of one of Canada’s leading mining companies and join our team!

QUALIFICATIONS

• Undergraduate degree or equivalent experience in Business, Arts, Technology or a related field
• 5+ years of demonstrable experience working in cyber security awareness and education
• You live the Teck values in your daily activities by being responsible and courageous, respectful and inclusive, and humble and driven
• Strong knowledge of information security principles, risk management and practices
• Society for Technical Communications, SANS GSEC, CompTIA Security+ or similar certifications
• Experience in technical writing and crafting engaging content
• Strong analytical and problem-solving skills using business analysis techniques and tools
• Proven capacity to facilitate requirements gathering workshops and collaborate with business partners, both in-person and virtually
• Experience in collaborating with cyber security teams to improve security maturity and posture
• Superb communication, presentation, and interpersonal skills
• You are aware of and have the ability to increase maturity by building on context, manage risk and trade-offs, alongside standardizing processes through writing and review
• Demonstrated personal accountability, clarity and a growth mindset

• Be a courageous safety leader, adhere to and sponsor safety and environmental rules and procedures
• Champion the 3 lines of defense model for risk management and act as a 2nd line of defense facilitator regularly interacting with the 1st line of defense
• Continuously improve and maintain comprehensive cyber security awareness and training programs tailored to various levels and roles
• Lead a network of Cyber Security Champions who act as internal change leaders, answering inquiries from colleagues and promoting safe practices
• Curate engaging and interactive content and materials (e.g., articles, newsletters, digital signage, posters) to educate personnel about cyber security risks, trends, and standard processes through internal communication channels
• Implement training, workshops, webinars, and lunch-and-learn sessions to inform personnel on critical cyber security topics including password hygiene, social engineering, and data protection
• Evaluate the efficiency of programs through feedback mechanisms and phishing simulation campaigns
• Regularly analyze training metrics against key performance and risk indicators, apply PowerBI, and adjust training programs based on data-driven insights
• Stay informed about industry ideal processes and incorporate them into the training programs
• Maintain the security awareness & training standard, and guideline, in collaboration with the digital risk and compliance team
• Collaborate with HR, Corporate Affairs and other groups to align security training initiatives with organizational goals
• Serve as a point of contact for security education