Head of Information Security at Aurora shaping security strategy and governance in a software - focused global business. Leading security efforts to ensure resilience and compliance across operations.
About the role
- Phishing Simulation Program Lead at MUFG managing enterprise-wide training and campaigns to combat email threats while ensuring organizational security readiness.
Responsibilities
- Lead all aspects of the phishing simulation program, including campaign development, operational workflows, analytics, and reporting.
- Design and launch sophisticated simulations (phishing, smishing, quishing, deepfakes, spear-phishing, whaling, social engineering) using tools such as ProofPoint ZenGuide, Adaptive Security, KnowBe4, and Cofense PhishMe.
- Conduct research on current threats and attack techniques, including those driven by generative AI, to ensure simulations reflect the latest risks.
- Develop and deliver training materials and sessions to educate enterprise users on detection and risk/threat prevention related to email exploitation.
- Analyze simulation results, manage reporting metrics (including 1x/2x/3x clickers), and provide actionable insights to stakeholders.
- Work closely with other security teams to integrate simulation results into broader security awareness and data protection initiatives.
- Continuously refine simulation strategies and techniques based on feedback, analytics, and evolving threat landscapes.
Requirements
- 3-5 years’ experience supporting a security awareness program, including phishing simulations.
- 2+ years’ experience in Financial Services or Banking, with a focus on information technology and information security (preferred).
- Hands-on experience with phishing simulation platforms: ProofPoint ZenGuide, Adaptive Security, KnowBe4, Cofense PhishMe.
- Strong technical skills in campaign development, threat analysis, and security research.
- Proficient in data analytics and Microsoft platforms.
- Prior project or program management experience; ability to manage multiple activities simultaneously and influence indirect resources to achieve required outcomes.
- Self-starter with the ability to coordinate activities across a global organization; able to work independently and as part of a team.
- Excellent written and verbal communication skills.
- Certification in information security or data privacy protection (e.g., Security+, CISSP) is a plus.
Benefits
- Comprehensive health and wellness benefits
- Retirement plans
- Educational assistance and training programs
- Income replacement for qualified employees with disabilities
- Paid maternity and parental bonding leave
- Paid vacation, sick days, and holidays
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Senior Security Engineer specializing in penetration testing and security strategies for fintech. Collaborating with teams to enhance security for AI applications and financial systems.
Principal Cyber Security Engineer for Identity Access Management at MSK managing identity solutions and advanced identity platforms. Partnering with stakeholders to align identity strategy and lead IAM initiatives.
Join The Missing Link as a Security Engineer, leveraging 3 - 4 years of IT Security experience. Lead projects in a collaborative environment with a focus on innovation and impact.
Engineer in Health, Safety and Environment for ArianeGroup focusing on industrial risk management. Involves audits, assessments, and safety training participation.
Senior Product Security Engineer at Red Hat focusing on security and compliance for digital sovereign products while collaborating across global teams and enhancing automation.
Security Engineer safeguarding K - 12 student data in several locations for EduTech startup. Designing secure software systems and ensuring data protection to comply with privacy standards.
Security Engineer focusing on data protection and privacy for Kira Learning's educational technology. Safeguarding K - 12 student data while collaborating with engineering teams on secure software development.
Senior Cybersecurity Engineer responsible for protecting Advansys and its clients' IT infrastructure. Designing, implementing, and managing security solutions, while mentoring junior engineers.
Security Engineer responsible for incident response and security protocol design at Sinch. Joining a global team to safeguard sensitive information and enhance cybersecurity measures.