Cybersecurity Senior Engineer

Company

Cox Automotive - USA

Information Technology

Cybersecurity Sr Engineer

Individual ContributorHybrid - Ability to work remotely part of the week

No

Day

Compensation

Compensation includes a base salary of $121,800.00 - $203,000.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate’s knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.

What You'll Do:

The Senior Cyber Security Engineer is a highly skilled, hands-on technical contributor responsible for engineering, deploying, administering, and continuously improving enterprise security technologies that protect both Corporate Computing (team member endpoints) and Enterprise Computing environments (on‑prem, cloud, and hybrid).

In this role, you will apply deep security engineering expertise, modern automation practices, and strong platform ownership to help ensure our security controls are resilient, scalable, and effective against evolving threats. You will collaborate closely with engineering, architecture, SOC, cloud, IAM, and product teams to embed security into platforms, services, and workflows.

This role is ideal for an experienced security engineer who thrives at the intersection of Security Engineering, DevSecOps, cloud security, platform automation, and emerging AI‑driven capabilities, and who enjoys solving complex technical problems at scale.

Key Responsibilities:

Security Tooling Engineering, Deployment & Administration

• Engineer, deploy, configure, tune, and maintain core security platforms including EDR, SASE, ZTNA, Email Security, Network Firewalls, DDoS, SIEM, SOAR, Firewall Audit,  KMS, and related endpoint, network, data protection, and cloud security technologies.
• Support lifecycle activities such as upgrades, feature adoption, performance tuning, and operational improvements across security platforms.
• Evaluate and test new vendor capabilities and enhancements, partnering with senior engineers and architects to operationalize improvements.
• Contribute to scalable, resilient architectures for endpoint and enterprise security systems across on‑prem, cloud, and SaaS environments.

Automation & Infrastructure-as-Code (IaC)

• Automate security infrastructure provisioning, configuration, and policy deployment using Terraform, Git-based workflows, CI/CD pipelines, and DevSecOps practices.
• Develop and maintain reusable modules, pipelines, and templates that standardize how security controls are deployed and integrated.
• Contribute to Security‑as‑Code and Policy‑as‑Code initiatives that embed security guardrails into engineering workflows.

Security Architecture & Engineering Collaboration

• Partner with engineering, cloud, and platform teams to provide hands-on security engineering guidance and design input.
• Contribute to secure-by-default patterns, architecture standards, reference implementations, and best practices.
• Identify security control gaps and work collaboratively to design pragmatic, scalable solutions.

AI‑Driven Security Engineering & Automation

• Apply AI and automation techniques to reduce manual effort, improve operational efficiency, and enhance security tooling integrations.
• Contribute to internal automation initiatives that support SOC workflows, threat investigation, identity security, and data protection.
• Assist with the evaluation and operational use of AI/ML features within security tools (e.g., risk scoring, behavioral analytics, anomaly detection).

Security Control Enhancement & Continuous Improvement

• Participate in proofs of concept (POCs), feature evaluations, and capability assessments across the security stack.
• Help develop dashboards, metrics, and telemetry that measure security control health, effectiveness, and drift.
• Collaborate with SOC and threat intelligence teams to align engineering improvements with real-world threat activity.

Cross‑Platform Security Coverage

• Engineer and support security controls across:
• Corporate Computing: team member endpoints (Windows, macOS, Linux), secure remote access, identity and access workflows
• Enterprise Computing: datacenter infrastructure, cloud platforms (AWS, Azure, GCP), containers/Kubernetes, and hybrid workloads

Who You Are:

Minimum Requirements:

• Bachelor’s degree in a related discipline and 4 years’ experience in a related field. The right candidate could also have a different combination, such as a master’s degree and 2 years’ experience; a Ph.D. and up to 1 year of experience; or 16 years’ experience in a related field
• 4 years of experience in Cyber Security Engineering, Security Architecture, Platform Engineering, or related disciplines.
• Strong hands-on experience administering and engineering major security platforms (e.g., EDR, SASE, ZTNA, Email Security, Network Firewalls, SIEM/SOAR, KMS).
• Demonstrated experience automating infrastructure and security tooling using Terraform, CI/CD pipelines, GitOps, and scripting languages (Python preferred).
• Solid understanding of cloud platforms, identity security, endpoint security, and zero‑trust architectures.
• Experience contributing to secure enterprise architectures at scale.
• Strong communication skills and the ability to collaborate effectively with cross‑functional engineering teams.

Preferred

• Experience applying AI or automation to security operations, detection engineering, or cloud security workflows.
• Hands-on experience with EDR tuning, DLP policy engineering, cloud workload protection, and modern SIEM/SOAR pipelines.
• Security or cloud certifications such as CISSP, CCSP, GCSA, GCPN, GCIA, or vendor-specific credentials.

Why Join Us

• Work on high‑impact security engineering initiatives across large-scale, complex hybrid environments.
• Operate and improve a world‑class security tool stack with growing investment in automation and AI.
• Collaborate with senior + lead engineers, architects, and security leadership to modernize security controls.
• Build deep technical expertise while directly improving the security posture of thousands of endpoints, cloud assets, and enterprise systems.

To be employed in this role, you’ll need to clear a pre-employment drug test. Cox Automotive does not currently administer a pre-employment drug test for marijuana for this position. However, we are a drug-free workplace, so the possession, use or being under the influence of drugs illegal under federal or state law during work hours, on company property and/or in company vehicles is prohibited.

The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, and parental leave.Through groundbreaking technology and a commitment to stellar experiences for drivers and dealers alike, Cox Automotive employees are transforming the way the world buys, owns, sells – or simply uses – cars. Cox Automotive employees get to work on iconic consumer brands like Autotrader and Kelley Blue Book and industry-leading dealer-facing companies like vAuto and Manheim, all while enjoying the people-centered atmosphere that is central to our life at Cox. Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page. Cox is an Equal Employment Opportunity employer – All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Cox provides reasonable accommodations when requested by a qualified applicant or employee with disability, unless such accommodations would cause an undue hardship.