IT Security Architect
The future is being built today, and Johnson Controls is making that future more productive, more secure, and more sustainable. We are harnessing the power of cloud, data analytics, the Internet of Things, and user design thinking to deliver on the promise of intelligent buildings and smart cities that connect communities in ways that make people’s lives – and the world – better!
What you will do
The Cloud and Platform Security Manager is a position reporting into the Global Information Security Engineering Integration Manager with responsibility of development and implementation of integrations between infrastructure (cloud and on-premises), security platforms, and compute management platforms to implement technical security controls that significantly improve the JCI security posture. This position will work closely with Global Operations and Technology groups, the Identity management group, and other infrastructure architecture members when designing and implementing technical controls integrations across the various components of the JCI IT infrastructure and capabilities.
The successful candidate will ensure compliance with established architecture direction and standards, work with stakeholders to collect functional requirements and engineer the most effective solution. The position also works with other security engineering functions to understand current operational metrics, challenges, and problems to optimize the solution design accordingly.
This role offers flexibility in working from home.
How you will do it
You will be a passionate information security professional with the ability to communicate to different business and IT leaders. In addition, you will:
Serve as a Technical Manager on all Cyber matters from best practices to Cloud controls covering required compliance requirements based on data classification for public and private cloud
Act as the lead Subject Matter Expert for security aspects of core Microsoft technologies such as Active Directory, Azure Active Directory, Endpoint Manager, Azure IaaS and Microsoft O365
Translate policies, standards, and compliance requirements into functional technical controls by engineering solutions that utilize security capability across the various IT and security infrastructure platforms
Identify integration improvements and optimizations.
Provide management with accurate and complete status information.
Stay abreast of current and evolving technologies in cloud security.
Adhere to change and problem management policies and procedures.
Help foster and grow a culture of ownership and accountability by being a role model for team members
Educate, mentor, and empower team members to become subject matter experts. You will demonstrate drive, intelligence, maturity, and energy and will be a proven team leader and security strategist.
Champion platform changes through engineering review and change management processes
Ensure security platforms are maintained on supportable baselines
Develop competencies in securing containers and multi-cloud environments
What we look for
Minimum of 8 years of experience in core Microsoft technologies such as active directory, Microsoft server, endpoint operating systems and virtualization technologies
Experience with programming/scripting in PowerShell, VBScript, Python, VB.net, etc.
Strong experience with Active Directory, SCCM, and Endpoint Manager (a.k.a. Intune)
Understanding of the Microsoft end point and server ecosystem and security configurations.
Experience with network security methodologies, tactics, techniques, and procedures.
Knowledge of network security architecture, understanding of the TCP/IP protocol, and remote access security techniques/products.
Experience with enterprise anti-virus/malware solutions.
Candidate must be able to react quickly, decisively, and deliberately in high stress situations.
Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, to technical and non-technical audiences at different seniority levels and interact with customers.
Highly motivated individual with the ability to self-start, prioritize, multi-task and work in a global team setting.
Ability to create and maintain good business relationships with counter parts, customers, and external entities to achieve the security engineering management goals
Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters
Familiarity of regulatory compliance requirements (PCI-DSS, HIPAA, FISMA, SOX)
Familiarity in National Institute of Standards and Technology (NIST) as they apply to FISMA
Where legally permissible, if hired, candidate is required to be fully vaccinated against Covid-19 no later than his/her start date, unless candidate has a valid medical condition or sincerely held religious belief precluding, he/she from receiving the vaccine
A minimum Bachelor’s degree in computer engineering, computer security or computer science discipline or a combination of education and experience as determined by Johnson Controls
Strong scripting skills in multiple languages including Python, PowerShell, Bash, XML, SPL, and Json
Desired Certifications (but not required):
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified Information Systems Auditor (CISA)
Certified Ethical Hacker (CEH)
Cisco Certified Network Associate Security (CCNA Security)
Cisco Certified Network Associate (CCNA)
Cisco Certified Network Professional Security (CCNP Security)
Cisco Certified Network Professional (CCNP)
Server Platform Certifications (Microsoft, Linux)
Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, sexual orientation, gender identity, status as a qualified individual with a disability or any other characteristic protected by law. To view more information about your equal opportunity and non-discrimination rights as a candidate, visit EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit here.