Security Specialist (GRC & Awareness)

St. Louis, MORemoteusvia direct

// Job Type

Full Time

// Salary

USD 140,000 - 160,000/year

// Salary Range

140,000–160,000 USD / year

// Posted

6 days ago

// Work Mode

hybrid

About the Role

Role Overview This Security Specialist role will serve as a lead for cybersecurity awareness & training program responsible for the execution and continuous improvement of the firm’s cybersecurity awareness and training program across all Focus firms. This role serves as the primary owner for delivering engaging, effective, and risk‑based cybersecurity training to employees at all levels of the organization. Reporting to the Head of Cybersecurity Governance, this individual‑contributor role works in close partnership with Legal, Privacy, Regulatory Compliance, HR, IT, and Security teams to ensure training content aligns with regulatory requirements, internal policies, and evolving cyber threats. The role plays a critical part in strengthening the firm’s security culture and reducing human‑driven cyber risk. This role is hybrid with 3 days per week onsite in our St. Louis office   Key Responsibilities Cybersecurity Awareness & Training Program Delivery <ul> <li>Execute the firm‑wide cybersecurity awareness and training program across all Focus firms.</li> <li>Deliver mandatory annual security training, role‑based training, and targeted campaigns addressing key cyber risks (e.g., phishing, social engineering, data protection).</li> <li>Manage and execute phishing simulation programs, including campaign design, delivery, analysis, and follow‑up education.</li> <li>Coordinate training rollouts, schedules, and communications to ensure consistent adoption across diverse business units.</li> </ul> Content Development & Continuous Improvement <ul> <li>Develop, maintain, and refresh cybersecurity training content to ensure relevance, clarity, and engagement.</li> <li>Tailor training materials for different audiences, including employees, advisors, leadership, and specialized roles.</li> <li>Incorporate lessons learned from incidents, phishing results, regulatory feedback, and emerging threat trends into training content.</li> <li>Balance regulatory requirements with practical, user‑friendly messaging that supports business productivity.</li> </ul> Regulatory, Legal & Compliance Partnership <ul> <li>Work closely with Legal, Privacy, and Regulatory Compliance teams to ensure training content aligns with applicable laws, regulations, and contractual obligations.</li> <li>Support regulatory examinations, audits, and client due diligence efforts by providing training materials, metrics, and evidence.</li> <li>Maintain documentation demonstrating compliance with cybersecurity training and awareness requirements.</li> <li>Monitor regulatory expectations related to security awareness and adjust training accordingly.</li> </ul> Measurement, Reporting & Risk Reduction <ul> <li>Define and track key training and awareness metrics (e.g., completion rates, phishing susceptibility, behavioral improvements).</li> <li>Analyze trends and results to identify risk areas and inform targeted training initiatives.</li> <li>Provide regular reporting and insights to the Head of Cybersecurity Governance and other stakeholders.</li> <li>Demonstrate the effectiveness of training programs in reducing human‑driven cyber risk.</li> </ul> Cross‑Functional Collaboration <ul> <li>Partner closely with Cybersecurity Risk, Engineering, and Operations teams to align training with real‑world threats and controls.</li> <li>Coordinate with HR and Communications teams to support onboarding, policy acknowledgment, and change‑management initiatives.</li> <li>Serve as a trusted advisor to business teams on security awareness best practices.</li> </ul>   Qualifications & Experience <ul> <li>5–8+ years of experience in cybersecurity awareness, training, GRC, or related security roles.</li> <li>Hands‑on experience delivering cybersecurity training programs in a regulated or complex environment.</li> <li>Strong understanding of common cybersecurity risks, user behavior factors, and awareness best practices.</li> <li>Experience partnering with Legal, Privacy, and Compliance teams on regulatory or audit‑driven initiatives.</li> <li>Excellent communication and content‑development skills, with the ability to explain security concepts to non‑technical audiences.</li> <li>Highly organized and self‑directed, with the ability to manage multiple initiatives across a distributed organization.</li> </ul> Preferred Qualifications <ul> <li>Experience in financial services or similarly regulated industries.</li> <li>Familiarity with cybersecurity frameworks and regulatory requirements (e.g., NIST CSF, NYDFS, GLBA).</li> <li>Experience with phishing simulation and training platforms.</li> <li>Professional certifications such as CISSP, CISM, Security+, or relevant security awareness credentials</li> </ul>   #LI-KJ2   This position is an exempt position. The annualized base pay range for this role is expected to be between $140,000–$160,000 base salary compensation range. Actual base pay may vary based on factors including, but not limited to, experience, subject matter expertise, geographic location where work will be performed, and the applicant’s skill set. The base pay is just one component of the total compensation package. Other rewards may include an annual cash bonus and a comprehensive benefits package, including but not limited to medical, dental, vision, life insurance, and 401(k). Please note that the job title is subject to change based on the selected candidate’s experience and education.  <div class="content-conclusion">About Focus Financial Partners Focus is a leading financial services firm comprised of integrated wealth management, family office, and business management services. Blending deep expertise and expansive resources with a boutique, client-first fiduciary philosophy, Focus helps individuals, families, and institutions navigate complex financial situations with highly personalized solutions tailored to their unique needs. To learn more about Focus, visit <a href="https://protect.checkpoint.com/v2/___https:/mcas-proxyweb.mcas.ms/certificate-checker?login=false&originalUrl=http%3A%2F%2Fwww.focusfinancialpartners.com.mcas.ms%3FMcasTsid%3D20892&McasCSRF=17a55f8bbf7c1a828873b443c93438c90f956e865b157078ce47695678ecb61e___.YzJ1OmZvY3VzcGFydG5lcnM6YzpvOjk5ZjFkMmE2MWY3YWJhOWM1MTUyMTUzMGI3NWMyY2VhOjY6NWQxYjo5M2Q1NmZiMDc3OTdlMzc1YTg0ZmRiYzVjOTA3MDk2OTcyZWIyOGI1YzNmZmI4MDc2MGMwZWM4YzIyOGE0N2NkOnA6VDpO">www.focusfinancialpartners.com</a> or follow the company on <a href="https://protect.checkpoint.com/v2/___https:/www.linkedin.com/company/focus-financial-partners___.YzJ1OmZvY3VzcGFydG5lcnM6YzpvOmQ1YjM0NmNjMjMzMTcwZmViMGI3OWExNTFmZmM3NjQwOjY6YjQ0OTpmNWViYzRmODkzYTRhYmYwNjBkNmFmMGJlYjE5ZWI3Njc1MTZiNmExYjBmNWVmMGEyMjdkNzM5NTBhYTQ3OTE1OnA6VDpO">LinkedIn</a>. Focus is an equal opportunity employer and bases its employment decisions on the employee or candidate’s skillset, and without regard to an employee or candidate’s race, color, religion, sex (including pregnancy), gender identity, sexual orientation, national origin, age, disability, genetic information, veteran status, or any other characteristic protected by local, state and/or federal law.  Focus complies with federal and state disability laws and makes reasonable accommodations for applicants and employees with disabilities. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact <a href="mailto:careers@focuspartners.com">careers@focuspartners.com</a>. The following language is for US based roles only For California Applicants: Information on your California privacy rights can be found <a id="menur4dt" class="fui-Link ___1q1shib f2hkw1w f3rmtva f1ewtqcl fyind8e f1k6fduh f1w7gpdv fk6fouc fjoy568 figsok6 f1s184ao f1mk8lai fnbmjn9 f1o700av f13mvf36 f1cmlufx f9n3di6 f1ids18y f1tx3yz7 f1deo86v f1eh06m1 f1iescvh fhgqx19 f1olyrje f1p93eir f1nev41a f1h8hb77 f1lqvz6u f10aw75t fsle3fq f17ae5zn" href="https://focus-financial.files.svdcdn.com/production/documents/Privacy-Notice-Personnel-Supplement-for-CA-residents-Jan-1-2025-Final-Clean.pdf?dm=1740065249" target="_blank">here</a> For Indiana Applicants: It is unlawful for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component. For Maryland Applicants: I UNDERSTAND THAT UNDER MARYLAND LAW, AN EMPLOYER MAY NOT REQUIRE OR DEMAND, AS A CONDITION OF EMPLOYMENT, PROSPECTIVE EMPLOYMENT OR CONTINUED EMPLOYMENT, THAT ANY INDIVIDUAL SUBMIT TO OR TAKE A POLYGRAP OR SIMILAR TEST.  AN EMPLOYER WHO VIOLATES THIS LAW IS GUILTY OF A MISDEMEANOR AND SUBJECT TO A FINE NOT EXCEEDING $100.  For Massachusetts Applicants: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment.  An employer who violates this shall be subject to criminal penalties and civil liability.  For Montana Applicants: If hired, the employment relationship is governed by the Wrongful Discharge from Employment Act. Mont. Code Ann. Section 39-2-901. For Rhode Island Applicants: Focus is subject to Chapters 29-38 of Title 28 of the General Laws of Rhode Island and is therefore covered by the state’s workers’ compensation law. If you willfully provide false information about your ability to perform the essential functions of the job, with or without reasonable accommodations, you may be barred from filing a claim under the provisions of the Workers’ Compensation Act of the State of Rhode Island if the false information is directly related to the personal injury that is the basis for the new claim for compensation.  The Company complies fully with the Americans with Disabilities Act.</div>

View on Original Source

Interested in this job?

Use our AI to tailor your resume for this Security Specialist (GRC & Awareness) position at Focus Financial Partners.