Marmon Technologies India Private Limited is part of the global industrial organization Marmon Holdings, backed by Berkshire Hathaway. We are committed to making a positive impact on the world, providing diverse learning and working opportunities, and fostering a culture where everyone is empowered to be their best. The Lead Security Engineer will act as the primary authority for infrastructure security, responsible for strengthening the organization’s security posture across endpoints, servers and enterprise systems. Key Responsibilities Infrastructure Security Architecture Define and implement enterprise infrastructure security strategy Design controls across endpoints, servers, and enterprise environments Drive Zero Trust principles (device trust, least privilege, continuous validation) EDR/XDR & Endpoint Security Lead implementation and optimization of EDR/XDR solutions (Defender, SentinelOne, CrowdStrike, etc.) Define detection use cases Response playbooks Threat hunting practices Continuously improve threat detection coverage and response effectiveness Vulnerability Management (Core Function) Lead end-to-end vulnerability management lifecycle Discovery - Prioritization - Remediation - Reporting Manage tools like Qualys, Nessus, Defender VM Implement risk‑based prioritization SLA‑driven remediation tracking Provide executive dashboards on vulnerability posture Patch Management & Compliance Own enterprise patch management strategy Ensure timely OS and application patching Compliance tracking and reporting Collaborate with infrastructure teams for minimal disruption with maximum coverage Security Ratings & External Risk (BitSight) Manage and monitor BitSight and other external security rating platforms Track and improve organization security score Third‑party/vendor risk posture Drive remediation based on external exposure findings Reputation risks Provide leadership visibility on external attack surface and risk trends Security Awareness & Training Design and execute security awareness programs across the organization Lead initiatives like phishing simulations, targeted awareness campaigns Track user behaviour metrics and phishing susceptibility trends Drive continuous improvement in human risk reduction Governance, Compliance & Audits Ensure compliance with Marmon IT‑30 Security and Operations policies and CIS standards Support and participate in internal and external audits and assessments to evaluate the effectiveness of the security program Track audit findings and drive remediation efforts to closure Ensure alignment with relevant regulatory and industry standards (PCI‑DSS, ISO 27001, NIST, GDPR, CCPA, and regional regulations) Zero Trust & Security Architecture Lead and support the design and implementation of Zero Trust principles, including: Identity and access controls Network segmentation Device and user trust validation Continuous monitoring and verification Reporting & Metrics Develop and deliver executive‑level security reports and dashboards for the Group Senior Director of Information Technology Report on vulnerability trends, risk posture, phishing and awareness metrics, compliance status, and remediation progress Incident Response Coordination Lead incident response coordination Root cause analysis Long‑term remediation Integrate endpoint security tools with SIEM/SOAR platforms Required Qualifications Bachelor’s degree in information security, Computer Science, Information Technology or related field (or equivalent experience) 8+ years of experience in cybersecurity, information security, or risk management Demonstrated experience leading or mentoring security professionals Hands‑on experience with vulnerability management platforms (e.g., Qualys) Hands‑on experience with security ratings services (e.g., BitSight) Hands‑on experience with security awareness platforms (e.g., KnowBe4) Strong understanding of security frameworks and regulatory requirements (CIS, NIST, ISO 27001, PCI‑DSS, GDPR, CCPA) Strong expertise in EDR/XDR (Defender, SentinelOne, CrowdStrike) Strong expertise in vulnerability management (Qualys, Nessus) Strong expertise in patch management tools (SCCM, Intune, etc.) Experience with BitSight or similar security rating platforms Experience with security awareness tools (KnowBe4 or equivalent) Act as L3/L4 escalation for security incidents Lead incident response coordination Root cause analysis Long‑term remediation Integrate endpoint security tools with SIEM/SOAR platforms Preferred Qualifications Industry certifications such as CISSP, CISM, CRISC, or equivalent Experience supporting manufacturing or industrial environments Practical experience designing or implementing Zero Trust architectures Strong communication skills with the ability to translate technical risk into business impact Key Competencies Security leadership and governance Risk assessment and mitigation Regulatory compliance and audit support Cross‑functional collaboration Executive‑level reporting and communication Strategic and analytical thinking Following receipt of a conditional offer of employment, candidates will be required to complete additional job‑related screening processes as permitted or required by applicable law. #J-18808-Ljbffr