This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.

Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.

What you’ll do:

The Principal Cybersecurity – Privileged Access Management (PAM) role is responsible for driving enterprise adoption of privileged access controls and ensuring that all systems, applications, databases, and operating systems follow centralized identity and PAM onboarding standards.

This role partners closely with PAM Engineering, Infrastructure teams, Database teams, Application teams, and Security leadership to coordinate onboarding efforts, define onboarding requirements, streamline workflows, and ensure alignment with identity governance and Zero Trust principles.

This is a leadership, coordination, and enablement role, not a hands-on engineering build position.

What you’ll need:

Privileged Access Onboarding & Support

 Lead the enterprise onboarding program for privileged accounts across applications, databases, servers, and operating systems.

Coordinate with PAM Engineering to translate onboarding requirements into implementation tasks and ensure correct technical execution.

Work with Infrastructure, Windows, Linux, Unix, Cloud, and Database teams to plan and schedule onboarding activities.

Partner with Application Owners to identify privileged accounts, service accounts, admin roles, and compliance gaps.

Active Directory / Entra ID Integration for Databases & Operating Systems

Drive adoption of centralized identity authentication models using Entra ID / Active Directory across:

Database platforms (Oracle, SQL Server, PostgreSQL, MySQL, MongoDB, etc.)

Operating systems (Windows, Linux, Unix)

Ensure all platforms follow identity standards (Kerberos, LDAP, AD binding, identity federation).

Collaborate with Engineering teams to validate readiness and ensure identity patterns are correctly applied.

Define business and security requirements for integrating DB and OS authentication into centralized identity.

Program Management & Cross‑Functional Engagement

Serve as the primary liaison between Cybersecurity, PAM Engineering, Infrastructure, and Application teams.

Maintain onboarding roadmaps, prioritization, timelines, and reporting metrics.

Facilitate onboarding workshops, requirements sessions, and recurring intake discussions with stakeholders.

Identify blockers, manage dependencies, and escalate issues that affect onboarding readiness or compliance.

Governance, Compliance & Risk Reduction

Ensure privileged accounts follow enterprise controls such as vaulting, rotation, JIT access, and access governance requirements.

Lead privileged access discovery efforts to identify unmanaged accounts across platforms.

Align onboarding practices with SOC 2, HIPAA, NIST, PCI, and ISO 27001 controls.

Provide evidence and reporting for compliance audits and risk assessments.

Track onboarding completion, policy exceptions, and remediation actions.

Operational Support & Issue Resolution Coordination

Partner with PAM Engineering to ensure issues, defects, or onboarding failures are properly routed and resolved.

Engage Infrastructure and Application teams to resolve configuration problems affecting onboarding.

Oversee validation and testing of newly onboarded accounts and workflows to ensure compliance and operational readiness.

Stakeholder Enablement & Training

Provide onboarding guidance, best practices, and security awareness to Application, DB, and Infrastructure teams.

Develop documentation, playbooks, and onboarding criteria for privileged accounts.

Guide teams through adoption of least privilege and secure admin access models.

What you’ll bring:

Required Skills & Experience:

10+ years in Cybersecurity, IAM, PAM, or related governance/identity roles.

Strong understanding of PAM concepts, privileged access risks, and identity governance.

Experience coordinating with Infrastructure, Application, and Engineering teams on large-scale onboarding projects.

Familiarity with Active Directory, Entra ID, LDAP, Kerberos, and enterprise authentication patterns.

Experience with PAM platforms (CyberArk, Delinea) at a functional level (not engineering).

Strong communication, stakeholder management, and program leadership skills.

Preferred Qualifications:

CyberArk, Azure, or IAM-related certifications.

Experience with audit support, compliance programs, and risk governance.

Exposure to databases and OS authentication models (functional, not engineering).

Strong understanding of Zero Trust and privileged identity frameworks.

Education/Experience:

Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity. 7+ years of related experience. Certification is required in some areas.

Supervisor:

No

Our Principal Cybersecurity, earns between $155,400-$233,200 USD Annual, Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.  

Joining our team comes with amazing perks and benefits:

Medical/Dental/Vision coverage  

401(k) plan  

Tuition reimbursement program  

Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)  

Paid Parental Leave  

Paid Caregiver Leave  

Additional sick leave beyond what state and local law require may be available but is unprotected  

Adoption Reimbursement  

Disability Benefits (short term and long term)  

Life and Accidental Death Insurance  

Supplemental benefit programs: critical illness/accident hospital indemnity/group legal  

Employee Assistance Programs (EAP)  

Extensive employee wellness programs  

Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,

AT&T internet (and fiber where available) and AT&T phone.

#LI-Onsite – Full-time office role-

Ready to join our team? Apply today.

Weekly Hours:

40

Time Type:

Regular

Location:

USA:NC:Charlotte / Ibm Dr - Adm:8505 Ibm Dr

Salary Range:

$155,400.00 - $233,200.00

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.

Job ID R-98588 Date posted 02/12/2026