Cyber Security Engineer II

About the role

Johns Manville is a leading manufacturer and marketer of premium-quality insulation and commercial roofing, along with glass fibers and nonwovens for commercial, industrial and residential applications. Our products are used in a wide variety of industries including building products, aerospace, automotive and transportation, filtration, commercial interiors, waterproofing and wind energy. A proud member of the Berkshire Hathaway family of companies, we serve customers in more than 80 countries around the globe. We are committed to delivering positive and powerful experiences, because we are successful only when our employees and customers thrive. We are passionate, we care about people, we perform at a superior level, and we protect others and our environments. Pay Range $101,900.00-$152,900.00 Annual This is the base salary pay range that an applicant can expect to make upon hire. Pay within this range will vary based upon relevant experience, skills, and education among other factors. In addition, this position is eligible for an incentive bonus. The Senior Cyber Security Engineer will lead the design, implementation, administration, and support of complex enterprise security initiatives across Johns Manville's global environment. This role is responsible for securing enterprise infrastructure, cloud environments, engineering systems, manufacturing plant floor operations, and critical business technologies through advanced security engineering, operational security management, incident response, and security architecture activities. The ideal candidate will possess deep technical expertise in cloud security, SIEM/SOAR technologies, vulnerability management, incident response, detection engineering, and security automation, along with strong project leadership and collaboration skills. This position plays a critical role in advancing the organization's cybersecurity maturity, improving threat visibility, reducing operational risk, and supporting business continuity. This is a remote/hybrid position. Candidates must reside within the United States and be willing to travel occasionally to the corporate headquarters in Denver, CO and other JM facilities as required.

Responsibilities

• Security Architecture and Engineering (10%)
• Lead the design, implementation, and support of enterprise cybersecurity solutions and security architecture initiatives.
• Conduct security research, evaluate emerging technologies, and recommend solutions to improve the organization's security posture.
• Design and implement security controls across enterprise infrastructure, cloud platforms, endpoints, identity systems, and manufacturing environments.
• Develop and maintain secure configurations, security standards, and technical documentation.
• Security Project Management and Implementation (10%)
• Lead and support cybersecurity projects involving multiple business units, technical teams, vendors, and stakeholders.
• Manage implementation of enterprise security technologies and security enhancement initiatives.
• Coordinate project timelines, technical deliverables, testing, validation, and operational transition activities.
• Support security integration efforts for cloud services, endpoint technologies, vulnerability management platforms, SIEM/SOAR solutions, and identity security initiatives.
• Participate in planning and execution of security modernization and operational improvement projects.
• Operational Security Management (30%)
• Serve as a senior technical expert for enterprise cybersecurity operations and security technologies.
• Administer, maintain, and optimize security platforms including: Cloud security technologies
• Endpoint Detection and Response (EDR/XDR)
• Email security
• Identity and access management
• Data protection technologies
• SIEM and SOAR platforms
• Vulnerability management platforms
• Threat intelligence integrations
• Develop, tune, and maintain advanced threat detections, correlation rules, analytics, dashboards, and automation workflows.
• Utilize Kusto Query Language (KQL) to develop advanced threat hunting queries, detections, reporting, and security investigations within Microsoft Sentinel, Microsoft Defender, and related security platforms.
• Develop and maintain SOAR playbooks and automation workflows to improve incident response efficiency and reduce manual operational tasks.
• Perform advanced threat hunting and log analysis across cloud, endpoint, network, and identity environments.
• Support secure cloud operations and security monitoring across platforms such as Microsoft Azure, Microsoft 365, AWS, and related enterprise technologies.
• Vulnerability Management and Risk Reduction (15%)
• Lead vulnerability management initiatives across enterprise infrastructure, cloud services, servers, endpoints, applications, and operational technology environments.
• Maintain in-depth knowledge and operational experience with vulnerability management and scanning platforms such as Tenable, Qualys, Rapid7, Defender Vulnerability Ma

Benefits

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Johns Manville? Share your experience