Full Job Description
(Candidate should be located in one of the following Metro locations: Louisville KY, NYC Metro, Dallas Metro, Charlotte NC Metro, South Florida, Washington DC metro, Chicago, Boston, Atlanta, Nashville).
The Associate Director, CyberSecurity Engineering will lead the enterprise Privileged Access Management (PAM) program, overseeing privileged account security, vaulting, and governance across cloud, on-premises, and subsidiary environments. This role is responsible for advancing PAM strategy and improving the consistency of privileged controls across the organization. The leader will guide modernization efforts and partner with stakeholders to improve privileged access hygiene. This position requires strong technical leadership, operational excellence, and effective cross-functional collaboration.
Key Responsibilities:
37 Lead and mentor direct reports and other teammates, fostering a culture of technical excellence, service, and accountability.
37 Drive the enterprise privileged cloud migration (Pcloud), including planning, stakeholder engagement, change-champion coordination, and post-cutover stabilization.
37 Lead privileged access efforts across subsidiaries, establishing a repeatable framework for onboarding new entities and remediating posture gaps.
37 Manage high-risk privileged reduction initiatives with a focus on strong organizational change management execution.
37 Partner across engineering, security, and business teams to resolve blockers, improve privileged access design, and implement consistent vaulting and governance controls.
37 Develop and deliver a unified application onboarding experience for PAM, including playbooks, checklists, and privilege-mapping guidance.
37 Build VP-level privileged access scorecards and integrate PAM metrics into enterprise Problem Management to identify incidents involving privileged misuse.
37 Serve as the primary liaison for Risk and Compliance partners to address audit findings, risks, and control improvements.
37 Support operational processes including vendor renewals, case management, program reporting, and on-call escalation responsibilities.
37 Stay current on industry trends, emerging PAM technologies, and regulatory expectations related to privileged access security.
Use your skills to make an impact
Role Essentials:
37 7+ years of experience in technical leadership roles driving complex cybersecurity or IAM programs.
37 Proven experience leading PAM engineering or operations teams and delivering privileged access solutions at enterprise scale.
37 Deep technical expertise in privileged access concepts including vaulting, rotation, service accounts, SUDO policies, and elevated-access governance.
37 Strong understanding of Active Directory/Entra ID, Windows/Linux/Mac operating systems, and cloud privileged access patterns.
37 Demonstrated success driving modernization initiatives and reducing high-risk privileged access.
37 Excellent leadership, communication, and stakeholder engagement skills.
37 Hands-on, collaborative approach to problem-solving and solution delivery.
37 Ability to participate in and oversee on-call support for PAM services.
Preferred Requirements:
37 Masters degree in Cybersecurity, Information Technology, Computer Science or related field.
37 Industry certification such as, but not limited to, CISSP, CCSP or CISM.
37 Experience leading projects in both agile and waterfall methodologies. Project management certifications such as PMP or CSM preferred.
37 Experience in budget planning and management for technologies, services, and staffing resources
Remote/WAH requirements:
37 WAH requirements: Must have the ability to provide a high speed DSL or cable modem for a home office. Associates or contractors who live and work from home in the state of California will be provided payment for their internet expense.
37 A minimum standard speed for optimal performance of 25x10 (25mpbs download x 10mpbs upload) is required.
37 Satellite and Wireless Internet service is NOT allowed for this role.
37 A dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information
Work at Home Requirements
To ensure Home or Hybrid Home/Office employees ability to work effectively, the self-provided internet service of Home or Hybrid Home/Office employees must meet the following criteria:
At minimum, a download speed of 25 Mbps and an upload speed of 10 Mbps is required; wireless, wired cable or DSL connection is suggested. In certain roles, the minimum recommended internet speed required by Humana may not be sufficient for business needs. Humana reserves the right to require associates to upgrade their internet service if necessary.
Work from a dedicated space lacking ongoing interruptions to protect member PHI / HIPAA information.
Travel: While this is a remote position, occasional travel to Humanas offices for training or meetings may be required.
Scheduled Weekly Hours
40
Pay Range
The compensation range below reflects a good faith estimate of starting base pay for full time (40 hours per week) employment at the time of posting. The pay range may be higher or lower based on geographic location and individual pay will vary based on demonstrated job related skills, knowledge, experience, education, certifications, etc.
$156,600 - $215,400 per year
This job is eligible for a bonus incentive plan. This incentive opportunity is based upon company and/or individual performance.
Description of Benefits
Humana, Inc. and its affiliated subsidiaries (collectively, Humana) offers competitive benefits that support whole-person well-being. Associate benefits are designed to encourage personal wellness and smart healthcare decisions for you and your family while also knowing your life extends outside of work. Among our benefits, Humana provides medical, dental and vision benefits, 401(k) retirement savings plan, time off (including paid time off, company and personal holidays, paid parental and caregiver leave), short-term and long-term disability, life insurance and many other opportunities.
Application Deadline: 07-14-2026