Application Guide
How to Apply for Cybersecurity Behavior and Culture Specialist
at Xylem
🏢 About Xylem
Xylem is a global water technology company dedicated to solving the world's most critical water challenges through innovation and sustainability. Working here means contributing to a mission that combines environmental stewardship with cutting-edge technology, making a tangible impact on water conservation and reuse. The company's culture emphasizes purpose-driven work and offers a remote-first environment, appealing to those who value flexibility and meaningful contributions.
About This Role
This role is at the intersection of cybersecurity and human behavior, focusing on reducing cyber risk by influencing employee actions and culture. You'll lead initiatives like phishing simulations and awareness campaigns, directly impacting the organization's security posture by addressing the human element. Your work will translate complex threat intelligence into engaging, educational experiences that empower employees to be the first line of defense.
💡 A Day in the Life
A typical day might start with reviewing phishing simulation results and segmenting users for follow-up micro-trainings. You could then collaborate with the communications team to draft a newsletter on a new social engineering trend, followed by a meeting with HR to align on a culture initiative. After lunch, you might analyze dashboards to prepare an executive report on human risk metrics, and end the day by brainstorming creative ideas for Cybersecurity Awareness Month.
🚀 Application Tools
🎯 Who Xylem Is Looking For
- A blend of cybersecurity knowledge and behavioral science understanding, with proven experience in designing human-centric security programs.
- Expert in phishing simulation design and execution, able to map simulations to real-world attack patterns and organizational risk.
- Strong data storyteller, capable of creating risk-based metrics and executive reports that drive decision-making and targeted interventions.
- Creative communicator who can translate technical threats into relatable, engaging content for diverse audiences across a global company.
📝 Tips for Applying to Xylem
Tailor your resume to highlight specific metrics from past phishing campaigns or awareness programs, such as reduction in click rates or improved reporting behaviors.
In your cover letter, explicitly connect your experience to Xylem's mission of water sustainability, showing how human-centric security supports broader company goals.
Mention any experience with remote work or distributed teams, as Xylem is fully remote; demonstrate your ability to collaborate virtually.
Showcase any cross-functional collaboration with HR, communications, or learning & development teams, as this role requires partnering beyond IT.
Research Xylem's current cybersecurity challenges (e.g., water infrastructure threats) and propose a brief, relevant idea for a campaign or simulation in your application.
✉️ What to Emphasize in Your Cover Letter
["Emphasize your passion for the human side of cybersecurity and how you've successfully changed behaviors through creative programs.", 'Highlight your ability to measure and communicate human risk to executives, using data to justify investments in awareness initiatives.', "Demonstrate understanding of Xylem's mission and how your role contributes to protecting water solutions from cyber threats.", 'Mention specific methodologies you use (e.g., COM-B model, Fogg Behavior Model) to design behavior change interventions.']
Generate Cover Letter →🔍 Research Before Applying
To stand out, make sure you've researched:
- → Read Xylem's latest sustainability report and understand how cybersecurity supports their water conservation goals.
- → Explore Xylem's company culture and values, especially their commitment to 'Empowering innovative water solutions'.
- → Look into recent cybersecurity incidents in the water sector (e.g., Oldsmar attack) to understand the threat landscape relevant to Xylem.
- → Review Xylem's public statements or blog posts about cybersecurity to gauge their current maturity and focus areas.
💬 Prepare for These Interview Topics
Based on this role, you may be asked about:
⚠️ Common Mistakes to Avoid
- Don't focus solely on technical hacking skills; this role is about behavior change, not penetration testing.
- Avoid generic statements like 'I'm passionate about cybersecurity' without linking to human-centric or awareness-specific examples.
- Don't neglect to mention remote collaboration tools or experience; failing to address virtual teamwork could be a red flag for a remote role.
📅 Application Timeline
This position is open until filled. However, we recommend applying as soon as possible as roles at mission-driven organizations tend to fill quickly.
Typical hiring timeline:
Application Review
1-2 weeks
Initial Screening
Phone call or written assessment
Interviews
1-2 rounds, usually virtual
Offer
Congratulations!