Security Awareness Program Manager

The Security Awareness Program Manager is responsible for developing, executing, and continuously improving an enterprise-wide security awareness and training program that integrates cybersecurity and physical security. This individual leads efforts to promote a culture of security, accountability, and vigilance across the company's employees and contractors by aligning training content with national standards, internal values, and emerging threats. Reporting to the Director of Security Resilience and Intelligence, the Program Manager collaborates cross-functionally within CPS Energy as well as oversees and coordinates external experts to ensure the workforce is performing their duties and responsibilities in defending, detecting, and responding to evolving security risks. This role requires strategic vision, instructional design expertise, and strong communication skills to deliver impactful, engaging learning experiences-supported by metrics that inform leadership at all levels.

Grade: 17
Deadline to apply: 8/18/2025

• Lead the design and execution of an enterprise-wide security awareness program.
• Source and coordinate guest speakers, subject matter experts, and external partners to deliver specialized security and safety training.
• Coordinate and lead security-related events and campaigns, including Cybersecurity Awareness Month and internal communications.
• Continuously improve training effectiveness by aligning with evolving threats, regulatory standards (e.g., ISTE, NIST, DHS, NERC CIP), and internal risk insights.
• Collaborate with Governance teams, Threat Intelligence, Risk, and Incident Management teams to ensure accurate, timely, and technically deep training content.
• Demonstrate strong ability to influence and persuade others, effectively guiding them to shift perspectives and take meaningful actions.
• Exhibit proficiency across diverse communication methods, including in-person instruction, written narrative, computer-based training (CBT) development, social influencer strategies, and gamification.
• Forge relationships with business units to promote Integrated Security equities and build awareness within the enterprise.
• Develop and manage training schedules, enrollment tracking, attendance, LMS integration, and reporting.
• Build, curate, and maintain training materials and systems, including participant/facilitator guides, assessments, e-learning content, and visual aids.
• Measure program impact through assessments, simulations (e.g., phishing), and performance based KPIs; provide reports to executive stakeholders.
• Apply adult learning theory to design and deliver training through various media (instructor-led, eLearning, webinars, simulations).
• Conduct training needs assessments, analyze performance gaps, and customize learning solutions for diverse roles and teams.
• Market and promote awareness initiatives through internal channels, aligned with corporate values and safety culture.
• Collaborate, coach, and support internal training staff, ensuring consistency in delivery and instructional quality.
• Evaluate and implement new training technologies, benchmarking best practices to evolve the program.
  
  

• Master's degree in Business, Education, Communication, or Cybersecurity with a strong emphasis on grammar and writing skills, curriculum development, instructional design.
• Relevant professional certifications, such as CISSP, SSAP, APTD, CPTD, or state/national teaching credentials.
• Experience leading a security awareness or training program within a regulated or critical infrastructure environment.
• Experience in the energy or utilities sector, or in other highly regulated industries.
• Knowledge of LMS platforms and course authoring tools, including SCORM, xAPI, or equivalent.
• Demonstrated success developing and implementing multi-format training (classroom, CBT, e-learning, mobile).
• Experience sourcing and managing external training vendors and speakers.
• Strong influence and relationship-building skills, particularly with executives and cross-functional stakeholders.
• Track record of embedding training into organizational processes, driving behavior change and culture transformation.