DIRECTV
media and telecommunications
Principal,CybersecurityEng1
Neural analysis suggests this role is
optimal for Lead candidates.
“Principal, Cybersecurity Eng 1 at DIRECTV. Skills: Cybersecurity, GRC, Risk Management. Adapt and maintain security guidance, policies, and standards. Support implementation and oversight of GRC mechanisms”
Industry & Context.
May require a background check due to job duties requiring routine access to DIRECTV and DIRECTV customer’s proprietary data
What They're Looking For.
Must Have
3 – 5 years of progressive experience in cybersecurity with a concentration in GRC, Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field, Demonstrated experience leading enterprise-level GRC programs in a complex, matrixed organization, Deep working knowledge of the NIST Cybersecurity Framework (CSF), Familiarity with regulatory compliance requirements relevant to the media and telecommunications industry, Experience developing and maintaining security policies, standards, and control documentation, Proven track record managing supplier information security programs, including assessments, remediation tracking, and contract-level security requirements, Experience collaborating with Procurement and Legal teams to embed security into vendor lifecycle processes, Hands-on experience designing and managing phishing simulation programs, Ability to analyze awareness program data and translate findings into targeted training strategies, Experience coordinating enterprise-wide security awareness campaigns across diverse stakeholder groups, Demonstrated ability to lead security projects from initiation through completion, managing timelines, risks, and executive-level communications, Experience mentoring and developing cybersecurity professionals
Nice to Have
advanced degree a plus, Prior involvement in M&A cybersecurity due diligence, risk assessments, and post-merger integration planning is strongly preferred, CISSP, CISM, CRISC, or equivalent industry-recognized certification
What You'll Do.
Adapt and maintain security guidance
Support implementation and oversight of GRC mechanisms
Provide GRC subject matter expertise
Develop and maintain documentation for compliance reporting
and enforce Supplier Information Security Requirements
Manage ongoing supplier security relationships
Collaborate with Procurement
and evaluate phishing simulation campaigns
Analyze simulation results and awareness data
Coordinate security awareness training completion
Develop communication strategies for security awareness
Provide cybersecurity GRC support for M&A activities
Identify and communicate security risks
Recommend risk mitigation strategies
Lead security project engagements
Develop project plans
Communicate status to senior leadership
Provide expert guidance and mentoring
Serve as escalation point for GRC issues
How You'll Work.
Team & Collaboration
Work cross-functionally with Legal, Procurement, HR, and executive leadership; Collaborate with Procurement, Legal, and business teams; Collaborate with cross-functional M&A teams; Coordinate with technical teams, business stakeholders, and external partners
Communication Scope
Develop communication strategies
Process & Methodology
Lead security project engagements from initiation through completion, Develop project plans, Track milestones, Manage risks, Communicate status to senior leadership
Full Job Description
DIRECTV is seeking a seasoned cybersecurity leader to serve as Principal, Cybersecurity Engineering with a focus on Governance, Risk, and Compliance. This is a high-impact role responsible for shaping and sustaining DIRECTV's cybersecurity posture across multiple critical domains. The ideal candidate will lead the development and enforcement of security policies, manage third-party vendor risk, drive security awareness initiatives, and provide GRC expertise in support of mergers and acquisitions activity. This role operates with a high degree of autonomy and serves as an escalation point and subject matter authority for complex GRC matters. The successful candidate will work cross-functionally with Legal, Procurement, HR, and executive leadership, including the CSO organization, while also mentoring junior cybersecurity team members and driving program maturity across the enterprise. **Here’s what you’ll do:** **Governance, Risk, and Compliance Program Leadership** * Adapts and maintains DIRECTV security guidance, policies, and standards based on the NIST Cybersecurity Framework (CSF), ensuring alignment with DIRECTV's Official Security Standard (DOSS) and evolving regulatory and threat landscapes. * Supports the implementation and ongoing oversight of GRC mechanisms including monitoring of control effectiveness, compliance reporting, and audit preparation activities. * Contributes to the DIRECTV Security Governance Committee processes by providing GRC subject matter expertise and policy recommendations. * Develops and maintains documentation supporting accurate regulatory compliance reporting and internal audit readiness. **Supplier Information Security Management** * Develops, maintains, and enforces Supplier Information Security Requirements (SISR) to ensure third-party vendors and partners meet DIRECTV's security standards. * Manages ongoing supplier security relationships, including conducting security assessments, tracking remediation activities, and escalatin
Applying for this Principal, Cybersecurity Eng 1 role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about DIRECTV?
Real rants from real employees. Read before you apply.