Our Technology Risk and Compliance team are looking for a Product Manager to own the Security Training and Awarenessacross the business.

This role sits within the Security and Capability department of Tesco Technology.

About The Security & Capability Team

Our team is responsible for providing and maintaining tools used by Tesco in order to monitor and secure our systems, while also helping our colleagues globally.

We maintain global hybrid instances of our chosen tools for SIEM, Application Performance Monitoring, Log Monitoring, Backlog Management, Identity Access Management, Service Desk, self-help portals for colleagues and incident communications. In addition to the challenges delivering this capability brings, were also the team responsible for the security operations centre and our security architecture, working across Tesco globally to secure our systems and data! Our Technology Risk & Compliance team works tirelessly to further develop a risk aware culture and drive audit and regulatory improvements across the technology team in all Tesco countries.

We aim to provide colleagues with a great experience by providing world class tooling, processes and advice. We believe in solutions that are either self-service or invisible to the end user thats not always easy to achieve, but its what we strive for. With over 460,000 colleagues globally, this is an opportunity to make your mark.

Information Security Awareness and Training Manager

Whilst specific responsibilities will be dependent upon the changing needs of the Tesco business, the following provides an overview of the roles key responsibilities and measures:

• Have ownership of the information security training and awareness portfolio involving multiple internal / external stakeholders
• Quickly build market knowledge and assess new opportunities for educating colleagues on information security awareness across office, stores and distribution centres
• Identify and drive improvements to the way in which awareness campaigns are run and delivered to all colleagues globally
• Provide leadership and guidance to continuously improve the delivery of information security education across the business and increase compliance rate overtime
• Embed ongoing information security training within all new joiners processes across all channels (office, stores, distribution centres) and globally
• Manage the roadmap for information security training and awareness globally (includes Phishing campaigns)
• Accountability for the performance and adoption of the Technology security training platform
• Monitor industry best practice and local / overseas market trends for information security to keep training material relevant and up to date
• Drive improvements based on robust data-driven decisions
• Communicate vision and strategy of information security and awareness programme with all stakeholders globally
• This role will best suit an individual who enjoys working as part of a team, is well organised, pragmatic and a lateral thinker with an inquisitive mind who is motivated to make change for the better and, most importantly, puts our customers first.

Key Skills and Experience

Youll need to have demonstrated experience of:

• Experience of defining the training and awareness strategy for ISO 27001 within a large organisation
• Experience of authoring and delivering computer based training to a distributed workforce
• Experience of running Phishing campaigns globally
• Articulating a product strategy in terms of consumer and business value.
• Excellent verbal and written communication skills you must be able to articulate complex concepts to a diverse audience
• Experience of regular reporting to a diverse audience going all the way up to board level
• Data querying and manipulation
• Attitude and the aptitude to learn new product area/domain quickly.
• Having proven success in working on unstructured problems, defining hypothesis, creating MVPs, running experiments and analysing results to drive data-driven decisions
• Prioritising and decision making skills.

• Knowledge and experience of one or more of:
• Product / project management best practice & methodologies
• Security industry
• Retail industry

Personal

• Self-motivated and ambitious
• Flexibility, ability to plan and organise, responsiveness, creativity, self-starter
• Willingness to learn
• Able to build solid working relationships with peers and senior leadership
• Ability to demonstrate strong written, verbal communication and presentation skills to all levels of seniority and disciplines within the organisation.