Security and IT Trainer

Security & IT Training AnalystFlexible location – Peterborough, Milton Keynes, Birmingham, PrestonCompetitive salary, negotiable depending on your experience and expertise + benefits What Sets Us Apart At MHA, we’re about people first – our people, our clients, and the communities we serve. As one of the UK’s top 15 accountancy firms and a proud member of Baker Tilly International, the 9th largest network in the world, we are a hub of global knowledge with a strong local commitment. Our people-focused approach truly sets us apart. Here, you won’t just be another face in the firm; you’ll be part of an ambitious, driven team dedicated to continuous learning and growth. We invest in our people because they are the foundation of our success. We take immense pride in being awarded gold for Investors in People. This recognition reflects our deep commitment to nurturing talent and ensuring every individual feels valued and supported. Purpose of the RoleAs the Security & IT Training Analyst, you will be responsible for designing, delivering, and evaluating engaging technical and security training programmes that empower our employees to thrive in a secure, technology enabled environment. Acting as the crucial bridge between our technical controls and our people centric culture, you’ll ensure that all staff possess the IT knowledge and cyber awareness required to perform their roles effectively, securely, and in compliance with policy and regulatory requirements.You will work collaboratively with IT, HR, and system leads to identify training needs, improve digital literacy, and support the successful adoption of new technologies and systems. In addition, you’ll lead the development and upkeep of high-quality training materials spanning both general IT and IT security content and be accountable for reporting on key awareness metrics and training KPIs. Your efforts will ensure that every employee is not only a confident user of our systems but also a proactive first-line defender of our digital estate.Qualification and Essential SkillsQualifications:Demonstrable interest in cybersecurity and user education, with some hands-on experience supporting IT or security training initiatives.Working knowledge of key security concepts such as phishing, MFA, secure remote access, and data protection.Awareness of regulatory and compliance frameworks (e.g. ISO 27001, GDPR, Cyber Essentials), with a willingness to deepen understanding.Experience delivering or co-delivering training sessions whether in-person, virtually, or through recorded content with an appreciation for adult learning principles.Familiarity with Learning Management Systems (LMS) and/or e-learning tools like KnowBe4.Strong written and verbal communication skills, with the ability to break down complex topics into accessible, engaging language.Achieved or aspiration to achieve certifications in IT Security, Data Privacy, IT Training or similar. Collaborative, detail-oriented, and motivated to become a key advocate for secure, confident use of technology across the organisation.Main ResponsibilitiesTraining Programme Design & DeliveryDevelop and deliver a modular, business-aligned Security and IT training curriculum covering topics such as phishing, password hygiene, secure remote working, and core digital tools through classroom, virtual, and self-paced formatsAwareness & Behavioural Change CampaignsPlan and execute engaging security awareness initiatives using newsletters, posters, short-form videos, e-learning, and simulated phishing exercises to foster a proactive security culture across the organisation.LMS Administration & Training GovernanceManage learning journeys via the KnowBe4 Learning Management System (LMS), monitor participation and proficiency metrics, identify gaps, and ensure all training records support internal and external audit readiness.Risk-Informed Training EnhancementsCollaborate with the Head of IT Security to interpret cyber risk assessments, maintain the risk register, and shape training content that addresses emerging threats and control gaps.Process & Reporting OversightMaintain IT Security Management System (ISMS) documentation, support the upkeep of standard operating procedures, and generate data-driven training dashboards for senior stakeholders, focusing on completion rates, behavioural impact, and ROI.Cross-Functional EnablementWork with the IT Service & Systems teams to embed training into technology rollouts and ensure alignment with regulatory frameworks such as GDPR and ISO27001.User-Centric Control AdoptionSupport implementation of key security controls (e.g. MFA, endpoint protection) through tailored enablement materials “how-to” guides, live workshops, and FAQs bridging the gap between technical rollout and user adoption.Financial responsibilities and authority limitsTo ensure projects are delivered in line with the stated budget.Forecasting of future costs based on understand business demand and technology changes.All expenditure must be authorised in advance. CommunicationsFace 2 Face delivery of content, either in person or virtualIT Service and IT Systems teamsReporting to Management Board and RICO committeeTeam members open doorProviders and business partnersProblems and IssuesAligning Security requirements with business objectivesDecision Making ParametersMHA business plansResource requirementsMHA policies and proceduresOwn initiativeDelegationSystem Team members as agreed with Head of SystemsService Team members as agreed with Head of IT ServiceThe offering Genuine Work Life balance 33 days holiday Inc. bank holidays, plus the opportunity to buy or sell up to 5 days (28 days on a training contract, with the opportunity to buy 5 days) Competitive salary package Employee Recognition awards. Paid CSR Volunteering time. Accredited Investor in People. A new and improved programme for Succession planning and supportive management structure to help you realise your potential. And more!

Created: 2025-07-24