Sr. Global Cybersecurity Engineer

Job Title: Sr. Global Cybersecurity Engineer

Job #:

Industry: Manufacturing (Paint Coatings)

Location: Glen Mills PA

Salary: $150k to $160k Yearly

Schedule: Hybrid - (Monday & Wednesday are Remote Workdays Tuesday Thursday & Fridays are in Office Workdays) (Monday thru Friday 8:00am to 5:00pm)

Education & Certification:

• Bachelors in Information Technology Computer Science Cybersecurity Computer Engineering Security Risk Analysis Information Security & Assurance or other relevant focus areas.

• Candidates must have a minimum of one of the following certifications or will be required to obtain within the first 12 months: Microsoft Certified: Cybersecurity Architect Expert Azure Security Engineer Associate CISSP or GIAC equivalents.

Job Description:

The Sr. Global Cybersecurity Engineer designs implements and operates enterprise security technologies that protect Axaltas global technology environment. The role combines hands-on engineering expertise with architectural depth across Microsoft Azure M365 Entra ID and on-premises infrastructure to strengthen Axaltas cybersecurity posture. Working within the Security Architecture Engineering & Operations team this position partners PMO Infrastructure Enterprise Architecture Vulnerability & Exposure Management and Governance Risk & Compliance (GRC) teams to implement controls manage risk and maintain consistent protection of systems and data. The Sr. Engineer supports core security platforms and capabilities participates in incident response and contributes to the design and adoption of secure standards and architectures that promote safe and resilient enterprise operations.

Requirements:

• Minimum 8 years of cybersecurity engineering or architecture experience in a large distributed enterprise environment with a mix of cloud and on-prem infrastructure.

• Proven hands-on experience implementing and managing enterprise security controls across Microsoft Azure M365 and hybrid infrastructure environments.

• Strong technical knowledge of core protection domains including endpoint server and platform security; identity and access management; data-loss prevention and information protection; configuration hardening; and security configuration management.

• Extensive engineering experience with Entra/Active Directory Windows and Linux Operating Systems encryption key-management PKI certificate lifecycle management DNS email security and web filtering.

• Deep understanding and ability to operationalize Zero Trust and defense-in-depth principles including segmentation conditional access and least privilege enforcement.

• Strong knowledge of Windows and Linux systems administration networking fundamentals and secure data flow design across hybrid architectures.

• Experience participating in or supporting CSIRT/incident response activities including alert analysis containment and post-incident control improvements.

• Familiarity with cloud security posture management (CSPM) data protection and secure configuration practices across Azure and Microsoft security technologies such as Entra ID Defender and Intune.

• Proven ability to collaborate with Governance Risk & Compliance and Threat & Exposure Management teams to assess control effectiveness remediate vulnerabilities and reduce enterprise risk.

• Proficiency with automation or scripting (e.g. PowerShell Python) to streamline security configuration monitoring and control enforcement.

• Practical understanding of information security frameworks and standards including ISO 27000 NIST CSF and CIS Controls with ability to operationalize pragmatically in engineering and operations.

• Strong project and program management capabilities with excellent organizational problem-solving and stakeholder engagement skills; able to manage multiple initiatives drive accountability and influence cross-functional teams.

• Excellent communication and collaboration skills with demonstrated ability to influence technical operational and business teams in a global organization.

Responsibilities:

• Design implement and maintain enterprise security controls across cloud and on-premises infrastructure applying Zero Trust and defense-in-depth principles to strengthen protection and resiliency across Axaltas global technology environment.

• Serve as a security subject matter expert for enterprise protection capabilities including endpoint server and platform protection covering anti-malware/EDR DLP & information protection configuration hardening access control and security configuration management to maintain secure design configuration and operation across the enterprise.

• Engineer and maintain enterprise security infrastructure supporting data protection encryption key-management PKI and certificate lifecycle management as well as DNS email security and web filtering capabilities that protect systems and information across the enterprise.

• Support the Governance Risk & Compliance function in assessing and validating technical controls participating in risk assessments and control assurance activities and providing technical evidence for audit and compliance initiatives.

• Partner with Threat & Exposure Management to interpret vulnerability and configuration data implement sustainable remediation and track closure of findings through architectural improvements configuration hardening and technical or process mitigations.

• Define and operationalize formal secure configuration baselines hardening standards and reference architectures to ensure consistent implementation of security controls across global platforms in alignment with program objectives.

• Participate in or lead project and architecture design reviews to embed security requirements throughout the system development lifecycle and guide secure implementation across infrastructure and application projects and initiatives.

• Function as a senior resource and team member in CSIRT operations including support of event analysis containment activities and post-incident reviews; develop and implement architectural or control improvements based on lessons learned.

• Provide operational support lifecycle management and continuous improvement for assigned security platforms to maintain reliability and performance.

• Collaborate globally with Security IT Infrastructure & Operations Enterprise Architecture Application and Business teams to secure data flows enforce policies and advance organizational cybersecurity maturity.

• Stay current with emerging threats Microsoft platform security capabilities and industry best practices to enhance Axaltas engineering capabilities and security posture.

Our Company:

Axalta has remained at the forefront of the coatings industry by continually investing in innovative solutions. We engineer technologies that protect customers products whether they are battling heat light corrosion abrasion moisture or chemicals and add dimension and beauty with colorful finishes. We have a vast and ever-evolving portfolio of brands primed to play an important part in everything from modernizing infrastructure around the world to enabling the next generation of electric and autonomous vehicles.

Axalta operates its business in two segments: Performance Coatings and Mobility Coatings which serve four end markets including Refinish Industrial Light Vehicle and Commercial Vehicle across North America EMEA Latin America and Asia-Pacific. Our diverse global footprint allows us to deliver solutions in over 140 countries and coat 30 million vehicles per year. Weve recently set an exciting 2040 carbon neutrality goal in addition to 10 other sustainability initiatives and we take pride in working with our customers to optimize their businesses and achieve their goals.

Axalta may use technology-assisted tools including artificial intelligence (AI) to support certain aspects of the recruitment and selection process. These tools may be used to help manage applications identify job-related qualifications and assist recruiter review. All hiring decisions involve human oversight and review.