POSITION/JOB TITLE

Global Security – SIEM Engineer

DEPARTMENT

Global Information Security

DIVISION

Corporate Global

LOCATION

Yardley(US)

HIRING MANAGER

Bistra Lutz

DEPARTMENTAL MANAGER

Anthony Vitello

Document History

Version

Date

Author

Comments

v1.0

5th Sept 2025

Bistra Lutz

Initial Version

Company Overview

Crown Holdings, Inc. is a global leader in the design, manufacture, and sale of packaging products for consumer goods. At Crown, we are passionate about helping our customers build their brands and connect with consumers around the world. We do this by delivering innovative packaging that offers significant value for brand owners, retailers, and consumers alike. With operations in 47 countries employing over 33,000 people and net sales of over $11 billion, we are uniquely positioned to bring best practices in quality and manufacturing to our customers to drive their businesses locally and globally. Sustaining a leadership position requires us to build a team of highly talented, dedicated, and driven individuals.

Department Overview

The Global Information Security Team’s mission is “protect Crown’s global information systems, data and employees from cyber-based security threats while ensuring the confidentiality, integrity and availability of information used by the Crown business units to product world class sustainable packaging solutions to our customers”.

You will join a fun, cohesive and collaborative team who love what they do and are committed to creating a safe and secure environment for the Crown family. Our team is nimble, lean and have dynamic backgrounds that foster an environment of continuous learning and growth.

Location

This is an office-based position in Yardley PA, and individuals are expected to be in the office daily.  Crown offers a flexible work hour schedule.

Summary of Position

The SIEM Engineer position is a cornerstone of our security operations, responsible for architecting, building, and mastering our threat detection and response ecosystem within Azure Sentinel. This is a deeply technical, hands-on role for a professional who thrives on managing the entire security data pipeline—from architecting log ingestion from multi-cloud sources to developing sophisticated KQL analytics and automated SOAR playbooks. More than just a platform administrator, this position is empowered to strategically enhance our security posture by creating insightful dashboards, defining the metrics that measure our success, and spearheading the development of our proactive threat hunting program.