Senior Cybersecurity Engineer

Denver CO WHQ, United States

Apply now Apply later

Who We Are

Johns Manville is a leading manufacturer and marketer of premium-quality insulation and commercial roofing, along with glass fibers and nonwovens for commercial, industrial and residential applications. Our products are used in a wide variety of industries including building products, aerospace, automotive and transportation, filtration, commercial interiors, waterproofing and wind energy.

A proud member of the Berkshire Hathaway family of companies, we serve customers in more than 80 countries around the globe. We are committed to delivering positive and powerful experiences, because we are successful only when our employees and customers thrive. We are passionate, we care about people, we perform at a superior level, and we protect others and our environments.

Pay Range

$116,600.00-$175,000.00 Annual

This is the base salary pay range that an applicant can expect to make upon hire.   Pay within this range will vary based upon relevant experience, skills, and education among other factors. In addition, this position is eligible for an incentive bonus. 

The Senior Cyber Security Engineer will design, implement and support a variety of complex projects supporting enterprise security solutions for network infrastructure, engineering environments, manufacturing plant floor, and other areas of JM.

This is a fully remote position, candidates must live within the US and be willing to travel to our corporate headquarters in Denver, CO on occasion.

Anticipated deadline to apply: 1/25/2025. This deadline is Johns Manville’s good faith estimate of when the application will close.  Johns Manville may extend the deadline and will update this posting promptly if it is extended.

Security Technology Strategy and Architecture (10%)

  • Advise on best practices, strategies, architecture, and design related to security technologies.
  • Assist with security policy and procedure documentation and diagramming.
  • Assist with the management, implementation, and support of secure mobility architecture.

Security Project Management (20%)

  • Utilize project management skills to ensure the timeliness of security projects related to production line firewalls, internet services, and security tool deployment.
  • Operationalizing tools and performing Incident Response

Operational Security Management (30%)

  • Support operational security management, including:
    • Experienced in utilizing offensive security and pentesting tools
    • SOAR Automation
    • Client and security agent management
    • Vulnerability scanning remediation

Technical Mentoring (10%)

  • Train and mentor security engineering personnel on security architecture, new technology, and incident troubleshooting.

Incident Handling and Forensic Analysis (30%)

  • Oversee security incident handling by executing the following or related tasks:
    • Strong Understanding of Incident Management framework and process
    • Review security events and perform analysis on detected or escalated events.
    • Identify and react to network attacks, viruses, and intrusions.
    • Develop and coordinate remediation plans if compromises occur.
    • Provide forensic analysis of security violations and report investigation details to legal, HR, and IT leadership. Analysis may be complex in nature, and this role would manage the effort with little supervision.

What You Bring to the Team:

  • Bachelor’s degree preferred with a minimum of 7 years of IT experience and a minimum of 4 years of experience in Network and/or Security areas.
  • At least one certification such as CISSP, CEH, SANS GCIH, GIAC, CCSP, CISM.
  • Demonstrated knowledge of switch, router, firewall, and Cisco wireless technologies. Experience consistent with a CCNA certification.
  • Significant expertise in web content filtering, with a preference for Cisco technologies.
  • Understanding of XDR/EDR Solutions with ability to write KQL queries
  • Expert expertise in IDS/IPS.
  • Proven expertise in VPN (site-to-site, client, and web-based).
  • Working knowledge of authentication systems such as Radius and Cisco ACS.
  • Fundamental load balancing experience with Cisco ACE or F5 preferred.
  • Proven expertise in Security Information and Event Management (SIEM) systems, .
  • Working knowledge of web proxies.
  • Excellent skills in web application firewalls.
  • Expert knowledge of best forensic practices for devices and networks.
  • Expert ability to design and integrate complex security solutions that improve the efficiency and security of the corporate network infrastructure.
  • Proven knowledge of high-performance, secure data centers.
  • Fundamental knowledge of manufacturing systems, SCADA, and process control networks preferred.
  • Strong understanding of web application design, function, and secure software development lifecycles preferred
  • Proven expertise in SSL certificates and Public Key Infrastructure
  • Experience and willingness to be on an on-call rotation
  • Ability to handle sensitive and confidential information
  • Moderate travel required (11–29 days per year)
  • Work environment is typical of an office setting; however, must be able to travel to manufacturing facilities globally for projects

Required Skills:

  • Proficiency with Microsoft Sentinel.
  • Proficiency with KQL, SPL query languages
  • Experience with offensive measures
  • Understanding of the MITRE ATT&CK framework, MITRE DEFEND, kill chain, and attack methodology

Incumbent must be physically able to perform essential job functions. Reasonable accommodations may be made to enable individuals with disabilities to perform essential job functions.

Please Keep in Mind

If you do not meet 100% of these requirements, we at JM still want to hear from you. So, if you are interested in the role, we encourage you to apply so we can learn how your skills and talents can contribute to our team.

Benefits

Johns Manville (JM) offers a wide range of benefits to employees. Some are subsidized by the company and others are fully employee-paid. Health benefits include a choice of comprehensive medical plans, a dental plan, vision plan, wellness program and critical illness insurance. JM sponsors a 401(k) plan which includes a sizeable company match. JM offers paid vacation and also provides paid sick and parental leave for eligible employees.

Additionally, Johns Manville provides basic life Insurance, short-term and long-term disability coverage, an employee assistance program, and business travel accident coverage. Supplemental life insurance and accidental death and dismemberment insurance are available as well. The company also offers a variety of tax saving accounts; health spending account, traditional flexible spending account, and a dependent care spending account. JM also offers a tuition reimbursement program for undergraduate and certain graduate programs.

Diversity & Inclusion

Johns Manville believes diversity and inclusion in our workplace is critical for the long-term success of our company. We are committed to retaining, developing and attracting a diverse workforce that fosters an inclusive work environment in which all employees are treated with dignity and respect. This is the right thing to do for our employees, our company and our communities. Our D&I council is composed of employees from locations across North American & Europe who meet regularly and work to promote and foster an environment of inclusion. Born from our D&I council is our network of employee resource groups (ERGs) that are focused on supporting diverse communities in the workplace. Review more about our diversity & inclusion initiatives on JM’s Career page.

Incumbent must be physically able to perform essential job functions. Reasonable accommodations may be made to enable individuals with disabilities to perform essential job functions.

We are proud to be an Equal Opportunity/Affirmative Action employer. We maintain a drug-free workplace and perform pre-employment substance abuse testing.

Apply now Apply later
Job stats:  2  0  0

Tags: Automation CCSP CEH CISM CISSP EDR Firewalls GCIH GIAC IDS Incident response Industrial IPS MITRE ATT&CK Offensive security Pentesting SANS SCADA Sentinel SIEM SOAR Strategy VPN XDR

Perks/benefits: 401(k) matching Career development Flex hours Flexible spending account Flex vacation Health care Insurance Medical leave Parental leave Salary bonus Team events Wellness

Regions: Remote/Anywhere North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.