Job Description

Security Awareness & Enablement Coordinator

Department: IT

Employment Type: Permanent - Full Time

Location: Cape Town

Reporting To: Stephen Smith

Key Responsibilities

• Design, schedule and deliver the security awareness programme — onboarding training, refresher modules, role-specific content and ad-hoc campaigns.
• Run regular phishing simulations: plan scenarios, execute campaigns, analyse results, and report on trends and high-risk areas.
• Develop engaging communications — intranet posts, newsletters, posters, short-form video, Teams updates — that turn policy into something people actually read and remember.
• Champion a "security is everyone's job" culture and act as a visible, approachable point of contact for security questions across the business.

• Communicate Info Sec & Cyber policies, standards and guidance in plain language to non-technical audiences.
• Act as a first-line security advisor to business teams — triaging questions, signposting the right specialist, and handling simple queries yourself.
• Work with HR, IT, Legal and business unit leads to make sure new joiners, leavers and movers are handled securely.

• Coordinate projects and initiatives on behalf of the Info Sec team — build and maintain project plans, track actions, chase owners, and keep momentum.
• Run the operational rhythm of the team: stand-ups, status reports, RAID logs, steering pack preparation.
• Produce regular operational reporting and dashboards — KPIs, training completion, phishing results, audit actions, risk register movement.
• Deliver simple items end-to-end yourself (e.g. policy refresh comms, training rollouts, audit evidence gathering) so the wider team is freed up for deeper technical work.

• Brief other teams (Delivery, Sales, Product, Managed Services, Customer Success) on Info Sec & Cyber updates so they can position security confidently with customers and within their own work.
• Drive training and enablement activities for cyber security across the business — owning the schedule, logistics and engagement, while subject matter experts contribute content and delivery.
• Support customer-facing security activities where needed — questionnaires, due diligence responses, audit evidence — coordinating inputs from the right specialists.

Skills Knowledge and Expertise

• 1–3 years' experience in a coordination, project support, communications, learning & development, or junior security/IT/compliance role.
• Strong organisational skills — comfortable running multiple workstreams, chasing actions, and keeping plans, trackers and reports up to date without being asked.
• Excellent written and verbal communication in English — able to translate technical concepts into clear, engaging messages for non-technical audiences.
• Confident working with stakeholders at all levels, from new joiners through to senior leaders.
• A genuine interest in cyber security and a desire to build a career in the field — and the curiosity and self-discipline to learn the domain quickly.
• Solid working knowledge of everyday productivity tools — Microsoft 365 (Outlook, Teams, SharePoint, PowerPoint, Excel), and comfort picking up new platforms.
• A delivery mindset: you finish things, you follow up, and you sweat the operational detail.
• Based in South Africa with the right to work locally, and comfortable working with colleagues across UK, Europe and other Sabio regions.

• Exposure to security awareness platforms and phishing simulation tools (e.g. KnowBe4, Proofpoint Security Awareness, Hoxhunt, Mimecast Awareness Training, Microsoft Defender Attack Simulation Training).
• Familiarity with common security frameworks and standards (ISO 27001, NIST CSF, Cyber Essentials, SOC 2, PCI-DSS, POPIA / GDPR) at an awareness level — you don't need to be an auditor, but you should know what they're for.
• Experience running internal communications or learning campaigns — newsletters, intranet content, training rollouts.
• Project coordination experience using tools such as Jira, Azure DevOps, Asana, Monday, MS Planner or similar.
• Basic data and reporting skills — pulling together dashboards or status packs from multiple sources (Excel, Power BI or similar).
• Experience working in a regulated, customer-facing or managed services environment.

• Foundation-level security certification (e.g. ISC2 Certified in Cybersecurity (CC), CompTIA Security+, ISO 27001 Foundation) — or active progress toward one.
• Exposure to GRC tooling, risk registers or audit evidence management.
• Experience supporting customer security questionnaires, due diligence requests or RFP security responses.
• Background in adult learning, instructional design or behaviour-change communications.

Benefits

• Remote/Flexible work
• Discovery Medical Aid
• Connectivity Allowance
• 15 days paid holiday a year- (this includes three Sabio days)
• Momentum EAP