Logo for Johnson Controls

Sr Cybersecurity Analyst - Product Compliance - Remote

Role overview

Qualifications

  • Minimum of 10 years of experience with at least 5 years in a cybersecurity compliance role
  • BS/BA in cybersecurity, computer science, engineering, or related technical degree
  • Knowledge of cybersecurity compliance, regulations, industry standards and certifications
  • Cybersecurity certifications, e.g., CISSP, GSEC, Sec+, or related preferred

Responsibilities

  • Manage cybersecurity and privacy compliance efforts
  • Coordinate with stakeholders to ensure compliance with customer requirements and government regulations
  • Deliver timely, accurate responses to customer-driven cybersecurity audits and inquiries
  • Monitor product cybersecurity compliance with key customers

Key facts

Other skills

  • Customer Service
  • Problem Solving
  • Communication
  • Interpersonal Communications

About the company

Johnson Controls  logo

Johnson Controls

Machinery

At Johnson Controls (NYSE:JCI) we transform the environments where people live, work, learn and play. As the global leader in smart, healthy and sustainable buildings, our mission is to reimagine the performance of buildings to serve people, places and the planet. With a history of more than 135 years of innovation, Johnson Controls delivers the blueprint of the future for industries such as healthcare, schools, data centers, airports, stadiums, manufacturing and beyond through its comprehensive digital offering OpenBlue. With a global team of 100,000 experts in more than 150 countries, Johnson Controls offers the world`s largest portfolio of building technology, software as well as service solutions with some of the most trusted names in the industry. For more information, visit www.johnsoncontrols.com or follow us @johnsoncontrols on Twitter.

Company details

Company typeLarge
IndustryMachinery
Company size10001

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Job Details

The future is being built today, and Johnson Controls is making that future more productive, more secure and more sustainable.  We are harnessing the power of cloud, data analytics, the Internet of Things, and user design thinking to deliver on the promise of intelligent buildings and smart cities that connect communities in ways that make people’s lives – and the world – better.

What you will do

In this career defining and high impact opportunity within the Global Product Security organization, you will report directly to the Director, Product Cyber Experience and manage cybersecurity and privacy compliance efforts that position Johnson Controls to succeed in the marketplace.  You will coordinate with stakeholders to ensure company programs, products, and services are compliant with customer requirements and government regulations.  You will deliver timely, accurate, and consistent responses to customer-driven cybersecurity audits and inquiries and support activities that manage supply chain risk.  In this role, you will play a pivotal role in fostering customer relationships, confidence and trust.

                                          

How you will do it   

  • Provide lead guidance to customers and business leaders throughout all phases of strategic customer projects.

  • Support other security compliance analysts.

  • Coordinate with sales, field, and product teams to respond to customer audits and inquiries.

  • Coordinate with legal, privacy and other regulatory and compliance groups to ensure the company is compliant with key laws and regulations.

  • Support product certification projects. 

  • Coordinate across multiple functions (sales channels, product development, product security, and information security) to meet customer and company expectations and timelines.

  • Interface with sales channel leaders, field engineering managers, and product managers on approaches to improve cybersecurity compliance, drive security as a feature, collect voice-of-customer feedback, and identify ways to enhance the customer experience.

  • Curate library of standardized security and privacy responses to common customer questions, inquiries and audits.

  • Support activities which effectively manage supply chain risk and third-party components.

  • Continuously monitor product cybersecurity compliance with key customers.

  • Periodically report to senior leadership on health and status of compliance program.

  • Assist in cybersecurity risk and technology assessment of merger/acquisition opportunities.

  • Educate internal stakeholders on customer security and privacy requirements and trends.

  • Anticipate business and industry regulatory issues to provide recommendations and solutions.

  • Monitor product security remediation efforts to successful completion including the development of supporting evidence and documentation.

  • Develop and maintain security technical documentation for internal and external use.

  • Define, gather, and monitor meaningful metrics for compliance and continuous improvement.

  • Participate in product security committees, boards, councils and working groups.

What we look for

  • Knowledge of cybersecurity compliance, regulations, industry standards and certifications.

  • Demonstrated problem-solving skills to analyze customer cyber issues and requirements (regulatory, policy, customer, industry standard) and link to appropriate security controls.

  • Track record of demonstrated experience building and leading cohesive teams.

  • Experience with technology related compliance and risk management related frameworks such as RMF, NIST 800-53, ISA/IEC 62443, UL CAP, ISO 27001, GDPR, CSL, SOC 2 or other comparable.

  • Technical project management experience using agile methodologies.

  • Ability to assess and translate requirements from various sources into practical plans/schedules.

  • Ability to establish a high level of trust and confidence with customers and stakeholders.

  • Excellent written and verbal communication and presentation skills.

  • Experience serving in a security governance, risk, and compliance role.

  • Experience with Operational Technologies (e.g. Controls Systems, Building Management) a plus.

  • Customer relations acumen with ability to explain complex technical details to a wide audience.

  • Excellent interpersonal, organizational, written and verbal communication skills.

  • Minimum of 10 years of experience with at least 5 years professional work experience in cybersecurity in a compliance role.

  • BS/BA in cybersecurity, computer science, engineering, or related technical degree.

  • Cybersecurity certifications, e.g. CISSP, GSEC, Sec+, or related are preferred.

  • Travel is occasional up to 10-15%, including international.

Where legally permissible, if hired, candidate is required to be fully vaccinated against Covid-19 no later than his/her start date, unless candidate has a valid medical condition or sincerely held religious belief precluding he/she from receiving the vaccine

Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, sexual orientation, gender identity, status as a qualified individual with a disability or any other characteristic protected by law. To view more information about your equal opportunity and non-discrimination rights as a candidate, visit EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit here.

Apply once. Then go straight to the hiring manager.

After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

MR

Marcus Rivera

Chief Revenue Officer

m.rivera@company.com
linkedin.com/in/marcusrivera
Unlocked after you apply
·

Cybersecurity Analyst Related jobs

Other jobs at Johnson Controls

Premium

Reach out to the hiring manager directly.

Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

  • Full match report with fit score and gaps
  • Career diagnostics on how recruiters read you
  • Curated company matches and warm intros
  • 48h early access to new roles

Cancel anytime.