Senior Lead Workforce Identity Engineer

Company

Cox Automotive - USA

Job Family Group

Information Technology

Job Profile

Cybersecurity Sr Lead Engineer

Management Level

Sr Manager - Non People Leader

Flexible Work Option

Hybrid - Ability to work remotely part of the week

Travel %

No

Work Shift

Day

Compensation

Compensation includes a base salary of $144,900.00 - $241,500.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate’s knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

Job Description

​​

Cox Automotive is seeking a highly skilled and experienced Senior Lead Cybersecurity Engineer to work on Workforce Identity initiatives with a focus on SailPoint IdentityNow. This role will be responsible for architecting and working with the identity team to implement, and maintain identity governance solutions that ensure secure, compliant, and efficient access for all workforce users across the enterprise.

Primary Responsibilities:

• Manage the design and implementation of a Role-Based Access Control (RBAC) framework aligned with the principle of least privilege to ensure secure and scalable access management across the organization

• Oversee the integration of SailPoint with key enterprise systems, including Active Directory, Azure AD, HRIS platforms, and cloud infrastructure
• Collaborate with IT, HR, and compliance teams to align identity processes with business and regulatory requirements.
• Define and implement identity governance policies, workflows, and access review campaigns.
• Strong understanding of identity lifecycle management, RBAC, and access governance.
• Experience with Java, Bean Shell, or scripting for SailPoint customization.
• Familiarity with authentication protocols (LDAP, SAML, OAuth2, OpenID Connect).
• Excellent analytical, troubleshooting, and communication skills.

Minimum Requirements:

Required Education/Experience

• Bachelor’s degree in a related discipline and 8 years’ experience in a related field. The right candidate could also have a different combination, such as a master’s degree and 6years’ experience; a Ph.D. and 3 years’ experience in a related field; or 20 years’ experience in a related field. 

Required Soft Skills 

• Clearly articulate the objective of specific cybersecurity policies and procedures to technical and non-technical stakeholders. 

• Excellent customer service skills, writing, and executive presentation skills. 

• Strong relationship building skills to create a productive working environment with key stakeholders and collaborate closely with other Cox entities’ cybersecurity teams to implement cybersecurity best practices.   

• Consultative nature to work through controversial or complex topics to employees, leaders, and/or senior leadership. 

• Evaluate risks and make recommendations based on impact and likelihood of the risk to the business. 

Required Technical Skills 

• Hands-on experience with enterprise IAM platforms such as SailPoint, Okta, Entra ID or Ping Identity 

• Strong understanding of identity lifecycle management, including provisioning, de-provisioning, and access certification 

• Expertise in designing and managing role-based access control (RBAC) and enforcing least privilege principles 

• Proficiency with Active Directory, LDAP, and Azure Active Directory 

• Solid knowledge of authentication and federation protocols such as SAML, OAuth2, OpenID Connect, and Kerberos 

• Experience conducting access reviews, entitlement analysis, and role mining 

• Familiarity with segregation of duties (SoD) and regulatory compliance standards  

• Proficiency in scripting languages such as PowerShell, Python, or SQL for automation and data analysis 

• Experience integrating IAM solutions with enterprise systems and APIs for automated workflows 

 

Preferred Technical Skills 

• Experience in Role Based Access (RBAC) role automation 

• Experience integrating IAM solutions with cloud platforms (AWS, Azure, GCP) and SaaS applications 

• Proficiency in automating identity workflows using APIs, connectors, or orchestration tools 

• Exposure to DevSecOps and CI/CD pipelines with a focus on secure identity integration 

Drug Testing

To be employed in this role, you’ll need to clear a pre-employment drug test. Cox Automotive does not currently administer a pre-employment drug test for marijuana for this position. However, we are a drug-free workplace, so the possession, use or being under the influence of drugs illegal under federal or state law during work hours, on company property and/or in company vehicles is prohibited.

Benefits

The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.

About Us

Through groundbreaking technology and a commitment to stellar experiences for drivers and dealers alike, Cox Automotive employees are transforming the way the world buys, owns, sells – or simply uses – cars. Cox Automotive employees get to work on iconic consumer brands like Autotrader and Kelley Blue Book and industry-leading dealer-facing companies like vAuto and Manheim, all while enjoying the people-centered atmosphere that is central to our life at Cox. Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page. Cox is an Equal Employment Opportunity employer – All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Cox provides reasonable accommodations when requested by a qualified applicant or employee with disability, unless such accommodations would cause an undue hardship.

Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship.