Lead Cybersecurity - Privileged Access Management
Charlotte, North Carolina
This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.
Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.
What you’ll do:
We are seeking a Lead Cybersecurity Engineer to support and expand our Privileged Access Management (PAM) and Identity Integration programs. In addition to leading onboarding of privileged accounts into CyberArk and Delinea AD Bridging, this role now carries responsibility for driving enterprise-wide integration of Database and Operating System platforms (Windows / Unix / Linux) into Entra ID / Active Directory.
This position works closely with infrastructure, database, and application teams to ensure secure identity integration, centralized authentication, and proper controls for all platform flavors. The role also maintains operational oversight of PAM onboarding, access governance, and policy adherence.
What you’ll need:
Privileged Access Onboarding & Support
Coordinate onboarding of application, database, and service accounts into CyberArk and Delinea AD Bridging.
Support CyberArk CPM, CCP, and ASCP integrations for password rotation and secrets delivery.
Guide teams on best practices for privileged account vaulting, access policy mapping, and lifecycle operations.
Provide operational oversight for PAM onboarding, troubleshooting, and documentation.
Active Directory / Entra ID Integration for Databases & Operating Systems
Drive enterprise adoption and integration of all database platforms (Oracle, SQL Server, MySQL, PostgreSQL, etc.) into Entra ID / AD.
Lead integration of all operating systems (Windows, Unix, Linux) with Entra ID / AD, ensuring consistent authentication and centralized access governance.
Work with infrastructure and engineering teams to define integration patterns, standards, and security controls.
Oversee configuration, deployment, and validation of identity connectors, AD Bridging agents, and authentication modules.
Ensure secure implementation of Kerberos, LDAP, SSSD/WinBind, and certificate-based authentication as required.
Cross‑Team Collaboration & Enablement
Serve as a liaison among PAM engineering, OS/DB platform teams, application owners, and security stakeholders.
Lead workshops, training sessions, and office hours for teams integrating with PAM or migrating to AD/Entra ID.
Maintain onboarding roadmaps, integration timelines, status trackers, and communication plans.
Security Compliance & Governance
Ensure all integrations adhere to corporate security standards and regulatory frameworks (HIPAA, SOC2, NIST, PCI, etc.).
Maintain audit documentation for PAM and AD/Entra ID integrations.
Support access reviews, recertification, and audit responses.
Troubleshooting & Operational Support
Assist teams with technical issues related to account integration, authentication failures, password rotation, and AD Bridging.
Coordinate with engineering and vendors for escalations.
Develop and maintain runbooks, troubleshooting guides, and integration standards.
What you’ll bring:
Required Skills & Experience
5+ years in Cybersecurity, PAM, IAM, or infrastructure security.
Hands‑on experience with CyberArk (CPM, CCP, ASCP) and Delinea AD Bridging.
Strong understanding of Active Directory, Entra ID, LDAP, Kerberos, and integration for non‑Windows systems.
Experience integrating Linux/Unix servers and databases with AD/Entra ID.
Familiarity with database authentication models, service accounts, and privileged operations.
Excellent communication and cross‑functional coordination skills.
Preferred Qualifications
CyberArk or Delinea certifications.
Experience with NIST, PCI DSS, HIPAA, SOC2 compliance frameworks.
Scripting knowledge (PowerShell, Bash, Python, SQL).
Experience with cloud identity integrations (Azure, hybrid identity models).
Education/Experience: Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity. 5+ years of related experience. Certification is required in some areas.
Supervisor:
No
Our Lead Cybersecurity, earns between $141,300-$211,900 USD Annual, Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.
Joining our team comes with amazing perks and benefits:
Medical/Dental/Vision coverage
401(k) plan
Tuition reimbursement program
Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
Paid Parental Leave
Paid Caregiver Leave
Additional sick leave beyond what state and local law require may be available but is unprotected
Adoption Reimbursement
Disability Benefits (short term and long term)
Life and Accidental Death Insurance
Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
Employee Assistance Programs (EAP)
Extensive employee wellness programs
Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
AT&T internet (and fiber where available) and AT&T phone.
#LI-Onsite – Full-time office role-
Ready to join our team? Apply today.
Weekly Hours:
40Time Type:
RegularLocation:
USA:NC:Charlotte / Ibm Dr - Adm:8505 Ibm DrSalary Range:
$141,300.00 - $211,900.00It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.
Job ID R-98589 Date posted 02/12/2026
Benefits
Your needs? Met. Your wants? Considered. Take a look at our comprehensive benefits.
- Paid Time Off
- Tuition Assistance
- Medical and dental plans
- Discounts
- Training & Development
Our hiring process
Apply Now
Confirm your qualifications align with the job requirements and submit your application.
Assessments
You may be required to complete one or more assessments, depending on the role.
Interview
Get ready to put your best foot forward! More than one interview may be necessary.
Conditional Job Offer
We’ll reach out to discuss a conditional job offer and the next steps to joining the team.
Background Check
Timing is important – complete the necessary actions to proceed with onboarding.
Welcome to the Team!
Congratulations! It’s time to experience #LifeAtATT.
Check your email (and SPAM) throughout the process for important messages and next steps.
Connect today
Didn’t find what you were looking for here? Sign up for our job alerts so we can connect and share the latest.