Principal Cybersecurity - Privileged Access Management
Charlotte, North Carolina
This position requires office presence of a minimum of 5 days per week and is only located in the location(s) posted. No relocation is offered.
Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won’t just imagine the future-you’ll create it.
What you’ll do:
The Principal Cybersecurity – Privileged Access Management (PAM) role is responsible for driving enterprise adoption of privileged access controls and ensuring that all systems, applications, databases, and operating systems follow centralized identity and PAM onboarding standards.
This role partners closely with PAM Engineering, Infrastructure teams, Database teams, Application teams, and Security leadership to coordinate onboarding efforts, define onboarding requirements, streamline workflows, and ensure alignment with identity governance and Zero Trust principles.
This is a leadership, coordination, and enablement role, not a hands-on engineering build position.
What you’ll need:
Privileged Access Onboarding & Support
Lead the enterprise onboarding program for privileged accounts across applications, databases, servers, and operating systems.
Coordinate with PAM Engineering to translate onboarding requirements into implementation tasks and ensure correct technical execution.
Work with Infrastructure, Windows, Linux, Unix, Cloud, and Database teams to plan and schedule onboarding activities.
Partner with Application Owners to identify privileged accounts, service accounts, admin roles, and compliance gaps.
Active Directory / Entra ID Integration for Databases & Operating Systems
Drive adoption of centralized identity authentication models using Entra ID / Active Directory across:
Database platforms (Oracle, SQL Server, PostgreSQL, MySQL, MongoDB, etc.)
Operating systems (Windows, Linux, Unix)
Ensure all platforms follow identity standards (Kerberos, LDAP, AD binding, identity federation).
Collaborate with Engineering teams to validate readiness and ensure identity patterns are correctly applied.
Define business and security requirements for integrating DB and OS authentication into centralized identity.
Program Management & Cross‑Functional Engagement
Serve as the primary liaison between Cybersecurity, PAM Engineering, Infrastructure, and Application teams.
Maintain onboarding roadmaps, prioritization, timelines, and reporting metrics.
Facilitate onboarding workshops, requirements sessions, and recurring intake discussions with stakeholders.
Identify blockers, manage dependencies, and escalate issues that affect onboarding readiness or compliance.
Governance, Compliance & Risk Reduction
Ensure privileged accounts follow enterprise controls such as vaulting, rotation, JIT access, and access governance requirements.
Lead privileged access discovery efforts to identify unmanaged accounts across platforms.
Align onboarding practices with SOC 2, HIPAA, NIST, PCI, and ISO 27001 controls.
Provide evidence and reporting for compliance audits and risk assessments.
Track onboarding completion, policy exceptions, and remediation actions.
Operational Support & Issue Resolution Coordination
Partner with PAM Engineering to ensure issues, defects, or onboarding failures are properly routed and resolved.
Engage Infrastructure and Application teams to resolve configuration problems affecting onboarding.
Oversee validation and testing of newly onboarded accounts and workflows to ensure compliance and operational readiness.
Stakeholder Enablement & Training
Provide onboarding guidance, best practices, and security awareness to Application, DB, and Infrastructure teams.
Develop documentation, playbooks, and onboarding criteria for privileged accounts.
Guide teams through adoption of least privilege and secure admin access models.
What you’ll bring:
Required Skills & Experience:
10+ years in Cybersecurity, IAM, PAM, or related governance/identity roles.
Strong understanding of PAM concepts, privileged access risks, and identity governance.
Experience coordinating with Infrastructure, Application, and Engineering teams on large-scale onboarding projects.
Familiarity with Active Directory, Entra ID, LDAP, Kerberos, and enterprise authentication patterns.
Experience with PAM platforms (CyberArk, Delinea) at a functional level (not engineering).
Strong communication, stakeholder management, and program leadership skills.
Preferred Qualifications:
CyberArk, Azure, or IAM-related certifications.
Experience with audit support, compliance programs, and risk governance.
Exposure to databases and OS authentication models (functional, not engineering).
Strong understanding of Zero Trust and privileged identity frameworks.
Education/Experience:
Bachelor’s degree (BS/BA) desired in Computer Science or Cybersecurity. 7+ years of related experience. Certification is required in some areas.
Supervisor:
No
Our Principal Cybersecurity, earns between $155,400-$233,200 USD Annual, Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.
Joining our team comes with amazing perks and benefits:
Medical/Dental/Vision coverage
401(k) plan
Tuition reimbursement program
Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
Paid Parental Leave
Paid Caregiver Leave
Additional sick leave beyond what state and local law require may be available but is unprotected
Adoption Reimbursement
Disability Benefits (short term and long term)
Life and Accidental Death Insurance
Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
Employee Assistance Programs (EAP)
Extensive employee wellness programs
Employee discounts up to 50% off on eligible AT&T mobility plans and accessories,
AT&T internet (and fiber where available) and AT&T phone.
#LI-Onsite – Full-time office role-
Ready to join our team? Apply today.
Weekly Hours:
40Time Type:
RegularLocation:
USA:NC:Charlotte / Ibm Dr - Adm:8505 Ibm DrSalary Range:
$155,400.00 - $233,200.00It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.
Job ID R-98588 Date posted 02/12/2026
Benefits
Your needs? Met. Your wants? Considered. Take a look at our comprehensive benefits.
- Paid Time Off
- Tuition Assistance
- Medical and dental plans
- Discounts
- Training & Development
Our hiring process
Apply Now
Confirm your qualifications align with the job requirements and submit your application.
Assessments
You may be required to complete one or more assessments, depending on the role.
Interview
Get ready to put your best foot forward! More than one interview may be necessary.
Conditional Job Offer
We’ll reach out to discuss a conditional job offer and the next steps to joining the team.
Background Check
Timing is important – complete the necessary actions to proceed with onboarding.
Welcome to the Team!
Congratulations! It’s time to experience #LifeAtATT.
Check your email (and SPAM) throughout the process for important messages and next steps.
Connect today
Didn’t find what you were looking for here? Sign up for our job alerts so we can connect and share the latest.