Company

Cox Enterprises

Information Technology

Cybersecurity Principal Engineer

DirectorHybrid - Ability to work remotely part of the week

No

Day

Compensation

Compensation includes a base salary in the range of $163,400.00 - $272,300.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate’s knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

The Privileged Access Management Director provides enterprise-wide leadership and oversight for privileged access security. This role ensures the development, implementation, and governance of strategies, policies, and technologies that protect critical systems and sensitive data from unauthorized access. The leader collaborates with IT, Engineering, Legal, and business leaders to embed security into all aspects of technology and operations, aligning PAM initiatives with organizational risk posture and regulatory requirements.

What You'll Do:

• Define and implement the corporate PAM strategy aligned with cybersecurity and business objectives.
• Establish strategic goals for improving privileged access controls, monitoring, and compliance.
• Develop and enforce PAM policies, standards, and procedures to ensure regulatory compliance.
• Direct and evaluate activities of subordinate managers, teams, and third-party service providers.
• Oversee integration of PAM solutions into enterprise architecture and systems.
• Establish systems for continuous monitoring of privileged access threats and vulnerabilities.
• Drive deployment and optimization of PAM tools and technologies.
• Engage with senior leaders to ensure PAM priorities are understood and supported across the enterprise.
• Ensure repeatable processes for privileged account lifecycle management, access reviews, and risk remediation.
• Develop metrics and scorecards to measure PAM effectiveness and risk reduction.
• Remains current on security and industry trends and the evolving threat landscape.

Required Skills & Competencies

• Apply advanced analytical techniques to complex cybersecurity and privileged access challenges.
• Demonstratable track record for executing and building security solutions and programs focused on driving business value.  
• Exemplary skills partnering with teams, building relationships and executing in a matrixed environment.
• Identify root causes of security risks and develop innovative, practical solutions.
• Use structured methodologies and data-driven insights to evaluate alternatives and select optimal strategies.
• Deep understanding of organizational strategy, financial drivers, and industry trends.
• Align PAM initiatives with business objectives to minimize risk while enabling operational efficiency.
• Communicate implications of security decisions to senior leadership in business terms.
• Serve as a trusted advisor to internal stakeholders on PAM strategy, technology, and compliance.
• Translate technical concepts into actionable business recommendations.
• Build consensus across diverse teams and influence decision-making at executive levels.
• Design and implement robust internal control frameworks for privileged access governance.
• Ensure audit readiness and compliance with internal and external standards.
• Conduct periodic reviews and assessments to validate effectiveness of PAM controls.
• Comprehensive knowledge of regulatory requirements impacting privileged access (SOX, GDPR, PCI-DSS).
• Ensure PAM policies and processes adhere to applicable laws and industry standards.
• Monitor evolving regulations and adjust PAM strategy accordingly.
• Builds Partnerships: Develop strong relationships across IT, business units, and external vendors to drive PAM initiatives.
• Communicates with Impact: Deliver compelling presentations and reports to executive stakeholders.
• Establishes Strategic Direction: Define long-term PAM vision and roadmap, aligning with enterprise cybersecurity strategy.
• Guides Team Success: Inspire and mentor teams, fostering a culture of accountability and innovation.

Who You Are:

Minimum Qualifications:

• Bachelor’s degree from an accredited university in Computer Science, Information Technology, Cybersecurity, or a related discipline and 10+ years of progressive experience in leading diverse Cybersecurity functions
• Professional security certifications such as CISSP, CISM, or CISA are highly valued
• Demonstrated experience setting and executing cybersecurity strategies across a variety of security disciplines. (Architectures, IDM, Vulnerability management, B2B/B2C security solutions, etc)
• Proven experience designing, implementing, and managing enterprise-level PAM programs.
• Deep knowledge of PAM platforms such as CyberArk, BeyondTrust, or similar solutions.
• Expertise in Privileged Session Management, Credential Vaulting, Password Rotation, and Just-In-Time (JIT) Access models.
• Ability to integrate and architect PAM solutions with Active Directory, LDAP, Cloud IAM platforms, and DevOps toolchains.
• Strong understanding of IAM principles, including RBAC, ABAC, and least privilege enforcement.
• Experience with MFA, SSO, and federated identity management.
• Strong understanding of directory services, identity governance, and access certification processes.
• Conduct risk assessments, threat modeling, and gap analysis for privileged access.
• Knowledge of Zero Trust Architecture and its application to privileged access.
• Hands-on experience ensuring PAM compliance with SOX, PCI-DSS, HIPAA, GDPR, and other regulatory standards.
• Ability to map PAM controls to frameworks such as NIST CSF, ISO 27001, and CIS Controls.
• Expertise in monitoring privileged sessions, detecting anomalies, and responding to potential misuse or compromise.
• Familiarity with SIEM integration for PAM event correlation and alerting.
• Knowledge of cloud-native PAM solutions for AWS, Azure, and GCP.
• Understanding of container security and DevSecOps practices for managing privileged access in CI/CD pipelines.
• Awareness of AI-driven threat detection and behavioral analytics for privileged accounts.
• Ability to evaluate and select PAM technologies, negotiate vendor contracts, and manage large-scale deployments.
• Skilled in creating technical roadmaps, solution architectures, and integration strategies for PAM.
• Consulting background and big four experience managing teams, solutions, and customers preferred.

The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.As our primary divisions Cox Automotive and Cox Communications drive new waves of innovation, Cox Enterprises is entering spaces like cleantech, healthcare, esports and more. We're a family business guided by a legacy of bold innovation that’s driven by those who want to make their mark. Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page. Cox is an Equal Employment Opportunity employer – All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Cox provides reasonable accommodations when requested by a qualified applicant or employee with disability, unless such accommodations would cause an undue hardship.

 

 

Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship. No OPT, CPT, STEM/OPT or visa sponsorship now or in future.