Be the reason

Staples is business to business. You’re what binds us together.

Join Staples Digital Solutions as a Security Awareness Program Manager and play a pivotal role in reducing organizational cyber risk and fostering a culture of secure behaviors across a global enterprise. You’ll be at the forefront of innovation, collaboration, and education—empowering teams through influential programs and creative campaigns that protect our company and our customers.

Our ideal candidate will be able to work a 3 day/week hybrid schedule from our Headquarters facility in Framingham, MA, but we will consider strong candidates that would need to work remote.

What you’ll be doing:

• Develop and oversee the company-wide Cybersecurity Training and Awareness Program, ensuring compliance with all relevant laws and standards (e.g., PCI DSS, NIST).
• Build, maintain, assign, track, and audit annual Security & Privacy Training for all employees and contractors.
• Lead annual Developer Secure Code Training initiatives, identifying audiences and driving high completion rates.
• Manage robust phishing simulation and voice phishing programs, including monthly and periodic campaigns.
• Design and execute year-round security awareness events, such as Security Champions, CSAM, Data Privacy Week, and Internet Safety Month, featuring interactive activities, speakers, and engaging materials.
• Develop compelling communications for all cybersecurity projects and initiatives in partnership with Security, L&D, HR, and Communications teams.
• Manage third-party vendor relationships from RFP through onboarding, project delivery, and performance accountability.
• Utilize AI-driven graphic design and innovative tools for posters and content creation.
• Maintain and update Security intranet and SharePoint sites to ensure effective communication and resource access.
• Analyze and report on training effectiveness and phishing simulation outcomes, leveraging metrics to improve strategies.
• Mentor less experienced staff and lead cross-functional project teams or small teams of contractors/specialists.
• Stay current on the latest in security awareness trends, regulatory changes, and attack vectors, integrating these insights into program improvements.

What you bring to the table:

• Excellent written and verbal communication skills with a flair for storytelling and instructional design, able to clearly convey technical concepts to all audiences.
• Creativity and innovation in developing engaging, educational campaigns and content.
• Organizational agility and project management skills to juggle multiple initiatives and stakeholders.
• Demonstrated ability to analyze risk trends and human behavior metrics and adjust strategies accordingly.
• Ability to operate with significant autonomy, exercising independent judgment in program design, vendor selection, and execution strategy.

What’s needed- Basic Qualifications:

• Bachelor’s degree in Cybersecurity, Information Technology, Communications, Education, or a related field or equivalent work experience.
• Minimum 7+ years of relevant experience in training and development, communications, or related disciplines.
• At least 3+ years of direct experience developing and managing a security awareness program or equivalent function.
• Experience with LMS tools and/or phishing simulation platforms.
• Excellent project and vendor management skills.

What’s needed- Preferred Qualifications:

• Strong knowledge of cybersecurity frameworks and standards (e.g., NIST CSF, PCI DSS, ISO 27001).
• Security certifications such as CISSP, CISM, CISA, or SSAP (SANS Security Awareness Professional).
• Certifications in adult learning, instructional design, or change management (e.g., CPLP, Prosci).
• Experience working in regulated industries or global organizations with compliance requirements (e.g., GDPR, HIPAA).
• Familiarity with scripting or automation tools (e.g., Python, PowerShell, APIs) used in awareness programs.

We Offer: 

• Inclusive culture with associate-led Business Resource Groups 
• 22 days of PTO and Holiday Schedule (7 observed paid holidays + 1 floating holiday) 
• Online and Retail Discounts, Company Match 401(k), Physical and Mental Health Wellness programs, and more! 

#LI-DN1 

Chez Staples, « inclusion » est un mot d'action. Il représente ce que nous faisons pour garantir que tous les employés se sentent valorisés et soutenus afin de contribuer à leur plein potentiel. Lorsque nous opérons de manière inclusive, la diversité suit naturellement. C'est pourquoi nous travaillons dur pour favoriser une culture inclusive, car nous recherchons des employés ayant des perspectives uniques et variées et des domaines d'expertise divers. Le résultat est un meilleur environnement de travail et une réflexion innovante qui nous aide à dépasser les attentes de nos clients – grâce à la force des personnes derrière notre marque emblématique.

Staples est un employeur garantissant l'égalité des chances. Tous les candidats qualifiés seront pris en considération pour un emploi sans distinction de race, couleur, religion, âge, sexe, orientation sexuelle, identité de genre, origine nationale, statut de vétéran protégé, handicap ou toute autre base protégée par la loi fédérale, étatique ou locale.