What you will do:
As the subject matter expert for Security Architecture & Engineering you will maintain current knowledge of regulatory requirements, trends, best practices and solutions in your scope of expertise
You will consult on security policies, standards and guidelines, working to make security requirements clear and accessible
You will develop reference architectures and reference implementation patterns
You will provide consulting to Enterprise Architecture and to Solutions Architects, providing security requirements for planned projects and methods for meeting those requirements
You will be part of the Enterprise Architecture and Security Architecture review and approval process
You will be part of the Enterprise Risk Management function, helping to educate stakeholders across TU about risks and helping create and maintain process and tools to allow the business to effectively evaluate and manage risk
You will conduct proof-of-concept and prototyping activities and assist InfoSec engineers and other engineers in their design and testing
How you will do it:
Microsoft Identity Manager, Beyond Trust, CyberArk, etc.) in client environments
Experience developing technical strategies, architectures, and roadmaps
Good knowledge of software development principles and design patterns
Outstanding communication and presentation skills. Able to articulate complex, technical concepts to non-technical audiences
Act as a key influencer in IAM proof of concepts (POCs), requests for proposals (RFPs), and vendor selection
Experience with IDaaS providers such as Okta, Azure AD, Ping Identity, Google Cloud Identity
Experience with cloud architectures particularly Azure and GCP native IAM controls
Experience with Identity Governance processes and solutions such as Saviynt or Sailpoint
Experience with User Behavior Analytics
Experience with WorkDay, SAP, or SalesForce
Experience with O365, Active Directory and ADFS
Experience with MDM capabilities such as InTune or Airwatch
Experience with API Gateway and microservices architectures
Knowledge of Applied Cryptography and PKI
Experience with Python, PowerShell, Java, Java Script, JSON, REST
Understanding of trends and regulations to ensure effectiveness and compliance with all regulations and frameworks (NIST, HIPPA-HITECH, HITRUST, PCI, GDPR)
Excellent written and verbal communication and organizational skills
Strong interpersonal and communications skills to build/ maintain ongoing business relationships
What we look for:
5+ years experience implementing enterprise Identity and Access Management (IAM), Privileged Access Management (PAM) solutions (e.g. Saviynt, Okta, SailPoint,
2+ years of experience using an Identity and Access Management technology (Saviynt, Okta, RSA IGL, SailPoint, Beyond Trust, MFA applications or equivalent experience)
2+ years of experience directory services (Active Directory, Okta Universal Directory or equivalent experience)
2+ years of experience or equivalent education for high level scripting language, e.g. PowerShell, C#, Java, other.
Identity and Access Management system architecture including RBAC and Single Sign-On Federation using SAML/OAuth 2.0 standards.
Coding experience preferred in one or more: Java, ASP, VB/Java script, Shell script, .Net/C#, Powershell
3-5+ years of experience in Identity Management, Security or related field
2-3+ years of experience directly related to ILM/IDM/IAM and SSO integration
Knowledge of ITIL processes and methods. ITIL Foundations certification preferred.
Strong project management skills and global experience
Strong technical and non-technical communication skills.
Johnson Controls is a global diversified technology and multi industrial leader serving a wide range of customers in more than 150 countries. Our commitment to sustainability dates back to our roots in 1885, with the invention of the first electric room thermostat. We are committed to helping our customers win everywhere, every day and creating greater value for all of our stakeholders through our strategic focus on buildings.
Johnson Controls is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, status as a qualified individual with a disability, or any other characteristic protected by law. For more information, please view EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit www.johnsoncontrols.com/tomorrowneedsyou.
Johnson Controls, Inc.