Cybersecurity Human Risk Program Manager

Cybersecurity Human Risk Program Manager Job Description

Cybersecurity Human Risk Program Manager

Monday – Friday 8:00 – 5:00

Remote/Hybrid

We are seeking a dynamic Cybersecurity Human Risk Program Manager to drive security education and communication programs that empower our workforce to embrace a culture of confidentiality and make informed, risk‑based decisions. This role serves as the face of Enterprise Security, driving engagement and awareness across the organization.

In today’s rapidly evolving threat landscape—where AI‑driven attacks and social engineering tactics are increasingly sophisticated—our mission is to ensure every employee understands their critical role in protecting the organization. We’re looking for a confident communicator who brings empathy, creativity, and a passion for cybersecurity education to strengthen our security culture.

Some of the things you’ll be doing:

• Human
  
  Risk Management:
  
  Identify top human risks and develop programs that change behaviors, ensuring employees act securely and reduce organizational risk.
• Engaging
  
  Education:
  
  Design dynamic, interactive education that captivates diverse audiences and transforms complex cybersecurity concepts into clear, actionable knowledge.
• Policy Development:
  Document and maintain IT and information security policies, standards, and guidelines aligned with regulatory requirements and business risk appetite.
• Phishing Simulations:
  Conduct simulated phishing exercises and develop creative campaigns to raise awareness of security responsibilities.
• Risk Management:
  
  Identify and communicate IT and security risks to leadership and stakeholders and drive mitigation.
• Program Management:
  Plan, manage, and maintain engaging, organization‑wide security programs.
• Content Creation:
  Build engaging SharePoint sites and slide decks, and leverage technology for effective knowledge building and engagement.

What technical skills, experience, and qualifications do you need?

• Minimum 4+ years in enterprise communications and 1+ years in cybersecurity, risk management, or security awareness.
• Skilled in technology and content development, including SharePoint site creation, multi‑channel communication strategies, and interactive training tools.
• Practical understanding of security risk management and human risk factors; familiarity with frameworks such as NIST or ISO 27001.
• Proven experience managing large‑scale culturally aware awareness programs for a global organization, coordinating stakeholders, and measuring impact through metrics.
• Excellent presentation skills – both in content development and owning the stage, presenting to both novice and executive audiences.
• Bachelor’s degree in computer science, information assurance, MIS, education, journalism, communication, or equivalent industry experience.
• Security, audit or risk certifications a plus, such as SANS SSAP.

CSC is a global business, legal, and financial services company based in Wilmington, Delaware, USA, providing knowledge‑based solutions to clients worldwide with offices and capabilities in over 140 jurisdictions. ยัง are the business behind business.

• Job Identification 14598 falsch
• Job Category Technology
• Posting Date 01/13/2026, 01:58 PM
• Job Schedule Full time
• Locations 251 Little Falls Dr., Wilmington, DE, 19808, US (Hybrid)