Sr. Global Cybersecurity Engineer

Job Title: Sr. Global Cybersecurity Engineer 

Job #: 2025-16608

Industry: Manufacturing (Paint, Coatings)

Location: Glen Mills, PA

Salary: $150k to $160k Yearly

Schedule: Hybrid - (Monday & Wednesday are Remote Workdays, Tuesday Thursday & Fridays are in Office Workdays) (Monday thru Friday 8:00am to 5:00pm)

Education & Certification: 

• Bachelor’s in Information Technology, Computer Science, Cybersecurity, Computer Engineering, Security Risk Analysis, Information Security & Assurance or other relevant focus areas.   

• Candidates must have a minimum of one of the following certifications or will be required to obtain within the first 12 months: Microsoft Certified: Cybersecurity Architect Expert, Azure Security Engineer Associate, CISSP or GIAC equivalents. 

Job Description: 

The Sr. Global Cybersecurity Engineer designs, implements, and operates enterprise security technologies that protect Axalta’s global technology environment. The role combines hands-on engineering expertise with architectural depth across Microsoft Azure, M365, Entra ID, and on-premises infrastructure to strengthen Axalta’s cybersecurity posture. Working within the Security Architecture, Engineering & Operations team, this position partners PMO, Infrastructure, Enterprise Architecture, Vulnerability & Exposure Management, and Governance, Risk & Compliance (GRC) teams to implement controls, manage risk, and maintain consistent protection of systems and data. The Sr. Engineer supports core security platforms and capabilities, participates in incident response, and contributes to the design and adoption of secure standards and architectures that promote safe and resilient enterprise operations.

Requirements: 

• Minimum 8 years of cybersecurity engineering or architecture experience in a large, distributed enterprise environment with a mix of cloud and on-prem infrastructure. 

• Proven hands-on experience implementing and managing enterprise security controls across Microsoft Azure, M365, and hybrid infrastructure environments. 

• Strong technical knowledge of core protection domains including endpoint, server, and platform security; identity and access management; data-loss prevention and information protection; configuration hardening; and security configuration management. 

• Extensive engineering experience with Entra/Active Directory, Windows and Linux Operating Systems, encryption, key-management, PKI, certificate lifecycle management, DNS, email security, and web filtering. 

• Deep understanding and ability to operationalize Zero Trust and defense-in-depth principles, including segmentation, conditional access, and least privilege enforcement. 

• Strong knowledge of Windows and Linux systems administration, networking fundamentals, and secure data flow design across hybrid architectures. 

• Experience participating in or supporting CSIRT/incident response activities including alert analysis, containment, and post-incident control improvements. 

• Familiarity with cloud security posture management (CSPM), data protection, and secure configuration practices across Azure and Microsoft security technologies such as Entra ID, Defender, and Intune. 

• Proven ability to collaborate with Governance, Risk & Compliance and Threat & Exposure Management teams to assess control effectiveness, remediate vulnerabilities, and reduce enterprise risk. 

• Proficiency with automation or scripting (e.g. PowerShell, Python) to streamline security configuration, monitoring, and control enforcement. 

• Practical understanding of information security frameworks and standards including ISO 27000, NIST CSF, and CIS Controls, with ability to operationalize pragmatically in engineering and operations. 

• Strong project and program management capabilities, with excellent organizational, problem-solving, and stakeholder engagement skills; able to manage multiple initiatives, drive accountability, and influence cross-functional teams. 

• Excellent communication and collaboration skills with demonstrated ability to influence technical, operational, and business teams in a global organization. 

Responsibilities: 

• Design, implement, and maintain enterprise security controls across cloud and on-premises infrastructure applying Zero Trust and defense-in-depth principles to strengthen protection and resiliency across Axalta’s global technology environment. 

• Serve as a security subject matter expert for enterprise protection capabilities including endpoint, server, and platform protection covering anti-malware/EDR, DLP & information protection, configuration hardening, access control, and security configuration management to maintain secure design, configuration, and operation across the enterprise. 

• Engineer and maintain enterprise security infrastructure supporting data protection, encryption, key-management, PKI and certificate lifecycle management, as well as DNS, email security, and web filtering capabilities that protect systems and information across the enterprise. 

• Support the Governance, Risk & Compliance function in assessing and validating technical controls, participating in risk assessments and control assurance activities, and providing technical evidence for audit and compliance initiatives. 

• Partner with Threat & Exposure Management to interpret vulnerability and configuration data, implement sustainable remediation, and track closure of findings through architectural improvements, configuration hardening, and technical or process mitigations. 

• Define and operationalize formal secure configuration baselines, hardening standards, and reference architectures to ensure consistent implementation of security controls across global platforms in alignment with program objectives. 

• Participate in or lead project and architecture design reviews to embed security requirements throughout the system development lifecycle and guide secure implementation across infrastructure and application projects and initiatives. 

• Function as a senior resource and team member in CSIRT operations including support of event analysis, containment activities, and post-incident reviews; develop and implement architectural or control improvements based on lessons learned. 

• Provide operational support, lifecycle management, and continuous improvement for assigned security platforms to maintain reliability and performance. 

• Collaborate globally with Security, IT Infrastructure & Operations, Enterprise Architecture, Application and Business teams to secure data flows, enforce policies, and advance organizational cybersecurity maturity. 

• Stay current with emerging threats, Microsoft platform security capabilities, and industry best practices to enhance Axalta’s engineering capabilities and security posture. 

Our Company:

Axalta has remained at the forefront of the coatings industry by continually investing in innovative solutions. We engineer technologies that protect customers’ products – whether they are battling heat, light, corrosion, abrasion, moisture, or chemicals – and add dimension and beauty with colorful finishes. We have a vast and ever-evolving portfolio of brands primed to play an important part in everything from modernizing infrastructure around the world to enabling the next generation of electric and autonomous vehicles.  

Axalta operates its business in two segments: Performance Coatings and Mobility Coatings, which serve four end markets, including Refinish, Industrial, Light Vehicle and Commercial Vehicle, across North America, EMEA, Latin America and Asia-Pacific. Our diverse global footprint allows us to deliver solutions in over 140+ countries and coat 30 million vehicles per year. We’ve recently set an exciting 2040 carbon neutrality goal, in addition to 10 other sustainability initiatives, and we take pride in working with our customers to optimize their businesses and achieve their goals.

Axalta may use technology-assisted tools, including artificial intelligence (AI), to support certain aspects of the recruitment and selection process. These tools may be used to help manage applications, identify job-related qualifications, and assist recruiter review. All hiring decisions involve human oversight and review.