Sr. Global Cybersecurity Engineer

Job Description

The Sr. Global Cybersecurity Engineer designs, implements, and operates enterprise security technologies that protect Axalta’s global technology environment. The role combines hands-on engineering expertise with architectural depth across Microsoft Azure, M365, Entra , and on-premises infrastructure to strengthen Axalta’s cybersecurity posture. Working within the Security Architecture, Engineering & Operations team, this position partners PMO, Infrastructure, Enterprise Architecture, Vulnerability & Exposure Management, and Governance, Risk & Compliance (GRC) teams to implement controls, manage risk, and maintain consistent protection of systems and data.

The Sr. Engineer supports core security platforms and capabilities, participates in incident response, and contributes to the design and adoption of secure standards and architectures that promote safe and resilient enterprise operations.

Requirements

• Minimum 8 years of cybersecurity engineering or architecture experience in a large, distributed enterprise environment with a mix of cloud and on-prem infrastructure.
• Proven hands-on experience implementing and managing enterprise security controls across Microsoft Azure, M365, and hybrid infrastructure environments.
• Strong technical knowledge of core protection domains including endpoint, server, and platform security; identity and access management; data-loss prevention and information protection; configuration hardening; and security configuration management.
• Extensive engineering experience with Entra/Active Directory, Windows and Linux Operating Systems, encryption, key-management, PKI, certificate lifecycle management, DNS, email security, and web filtering.
• Deep understanding and ability to operationalize Zero Trust and defense-in-depth principles, including segmentation, conditional access, and least privilege enforcement.
• Strong knowledge of Windows and Linux systems administration, networking fundamentals, and secure data flow design across hybrid architectures.
• Experience participating in or supporting CSIRT/incident response activities including alert analysis, containment, and post-incident control improvements.
• Familiarity with cloud security posture management (CSPM), data protection, and secure configuration practices across Azure and Microsoft security technologies such as Entra , Defender, and Intune.
• Proven ability to collaborate with Governance, Risk & Compliance and Threat & Exposure Management teams to assess control effectiveness, remediate vulnerabilities, and reduce enterprise risk.
• Proficiency with automation or scripting (e.g. Power Shell, Python) to streamline security configuration, monitoring, and control enforcement.
• Practical understanding of information security frameworks and standards including ISO 27000, NIST CSF, and CIS Controls, with ability to operationalize pragmatically in engineering and operations.
• Strong project and program management capabilities, with excellent organizational, problem-solving, and stakeholder engagement skills; able to manage multiple initiatives, drive accountability, and influence cross-functional teams.
• Excellent communication and collaboration skills with demonstrated ability to influence technical, operational, and business teams in a global organization.

Responsibilities

• Design, implement, and maintain enterprise security controls across cloud and on-premises infrastructure applying Zero Trust and defense-in-depth principles to strengthen protection and resiliency across Axalta’s global technology environment.
• Serve as a security subject matter expert for enterprise protection capabilities including endpoint, server, and platform protection covering anti-malware/EDR, DLP & information protection, configuration hardening, access control, and security configuration management to maintain secure design, configuration, and operation across the enterprise.
• Engineer and maintain enterprise security infrastructure supporting data protection,...

Education & Certification

• Bachelor’s in Information Technology, Computer Science, Cybersecurity, Computer Engineering, Security Risk Analysis, Information Security & Assurance or other relevant focus areas.
• Candidates must have a minimum of one of the following certifications or will be required to obtain within the first 12 months:
  • Microsoft Certified: Cybersecurity Architect Expert, Azure Security Engineer Associate, CISSP or GIAC equivalents.