Cyber Security Engineer II

About The Company
Johns Manville is a leading global manufacturer dedicated to providing innovative and sustainable building and construction products. With a rich history of over 180 years, the company specializes in insulation, roofing, and engineered products that enhance energy efficiency and durability in residential, commercial, and industrial applications. Committed to safety, quality, and environmental responsibility, Johns Manville operates across multiple regions worldwide, serving a diverse customer base with a focus on continuous improvement and technological advancement.
About The Role
We are seeking a highly skilled Senior Cyber Security Engineer to join our dynamic team. This role is pivotal in designing, implementing, and managing complex cybersecurity solutions across our global enterprise environment. The successful candidate will lead critical security initiatives, oversee incident response activities, and collaborate with cross-functional teams to ensure the integrity and security of our technological infrastructure. This position offers the flexibility of remote or hybrid work arrangements, with occasional travel to our Denver headquarters and other facilities. The Senior Cyber Security Engineer will play a key role in safeguarding Johns Manville’s digital assets and supporting our commitment to operational excellence and security resilience.
Qualifications

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field, with a minimum of 7 years of IT experience, or 7–10 years of overall IT experience with at least 7 years focused on cybersecurity and network security.
• Two or more relevant certifications such as CISSP, GIAC, Microsoft Security, Azure Security, or equivalent.
• Master’s degree in Cybersecurity, Information Security, or related disciplines is acceptable in lieu of some experience.
• Expert-level experience supporting enterprise cybersecurity technologies and operations.
• Advanced knowledge of SIEM and SOAR platforms, including automation, orchestration, and incident response workflows.
• Strong proficiency with KQL (Kusto Query Language) for threat hunting, analytics, and detection development.
• Proficiency in PowerShell scripting and automation tools.
• Deep understanding of incident response, forensic analysis, and threat detection engineering best practices.
• Extensive experience with vulnerability management programs, scanning platforms, remediation processes, and risk assessment.
• Hands-on experience with security technologies in cloud, hybrid, and on-premises environments, including platforms like Microsoft Sentinel, Microsoft Defender, CrowdStrike, Tenable, Qualys, and Rapid7.
• Knowledge of cloud security operations in Microsoft 365, Azure, AWS, or hybrid setups.
• Understanding of secure software development, DevSecOps principles, and application security.
• Strong analytical, troubleshooting, communication, and project management skills.
• Ability to handle sensitive information with discretion and professionalism.
• Self-motivated with the capacity to lead complex technical initiatives independently.
• Willingness to participate in after-hours support and on-call rotations.
• Moderate travel availability (11–29 days annually) to various facilities and locations.
• Ability to maintain a secure and productive remote or hybrid working environment.

Responsibilities

• Lead the design, implementation, and support of enterprise security architecture across infrastructure, cloud platforms, endpoints, identity systems, and manufacturing environments.
• Conduct security research, evaluate emerging technologies, and recommend innovative security solutions to enhance organizational resilience.
• Develop and maintain secure configurations, technical standards, and comprehensive documentation for security systems.
• Manage and support cybersecurity projects involving multiple stakeholders, vendors, and business units, ensuring timely delivery and successful integration of security technologies.
• Administer and optimize security platforms including cloud security tools, EDR/XDR, email security, identity and access management, SIEM/SOAR, and vulnerability management solutions.
• Create advanced threat detection rules, dashboards, automation workflows, and perform threat hunting using KQL across various security platforms.
• Lead vulnerability management initiatives by coordinating remediation efforts, prioritizing risks, and reporting to senior leadership.
• Support penetration testing activities, track vulnerabilities, and implement effective remediation strategies.
• Collaborate with engineering, cloud, networking, DevOps, and business teams to implement secure solutions and resolve security issues.
• Mentor cybersecurity engineers and analysts, providing training and developing procedural documentation to enhance team capabilities.
• Lead incident response activities by investigating, containing, eradicating, and recovering from security incidents, ensuring minimal impact on operations.
• Develop and maintain detection mechanisms, incident response processes, and forensic analysis procedures across SIEM, EDR/XDR, and cloud platforms.
• Analyze escalated alerts, create custom detection logic, and prepare detailed incident reports and root cause analyses for executive review.
• Utilize scripting and automation tools such as PowerShell to streamline investigations and improve operational efficiency.

Benefits

• Comprehensive health, dental, vision, wellness, and critical illness insurance coverage.
• 401(k) retirement plan with company matching contributions.
• Paid vacation, sick leave, and parental leave policies.
• Basic life insurance, short-term and long-term disability coverage, and employee assistance programs.
• Supplemental life and accidental death and dismemberment insurance options.
• Tax-advantaged accounts including health savings accounts, flexible spending accounts, and dependent care accounts.
• Tuition reimbursement programs for undergraduate and select graduate studies.
• Opportunities for mentoring, professional development, and internal/external training.

Equal Opportunity
Johns Manville is an Equal Opportunity Employer and values diversity in our workforce. We do not discriminate against applicants or employees based on race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, sexual orientation, or any other protected class under federal, state, or local law. We are committed to creating an inclusive environment where all employees feel welcomed, respected, and empowered to contribute their best.