IT Analyst

Primary Responsibilities

• Provide team support with validating security controls.
• Ensure third-party solutions used within Cyber Security adhere to all Johnson Controls standards.
• Act as an internal consultant to business units and Infrastructure IT.
• Provide management with accurate and complete status information.
• Contribute technical input into security-related standards, technology roadmaps, support requirements, and infrastructure design management.
• Stay abreast of current and evolving technologies in Cyber Security.
• Adhere to all current change and problem management policies and procedures.

Candidate Profile

We are looking for a passionate information security professional with strong communication skills, capable of engaging with various business and Project Managers. The ideal candidate can execute the Cyber Security Engineering management strategy defined by leaders and demonstrates drive, intelligence, maturity, and energy, along with proven team leadership and security strategy expertise.

• A minimum bachelor’s degree in computer engineering, computer security, or computer science discipline, or equivalent experience.
• 10 years of Cyber Security related experience, including work with security operations, incident analysis, application development, and security applications.
• Experience with validation security tools.
• Experience with security features, assessments, and validation of security controls for both Linux and Windows-based systems.
• Familiarity with network security methodologies, tactics, techniques, and procedures.
• Experience performing security/vulnerability reviews of network environments.
• Experience with network security architecture, understanding of the TCP/IP protocol, and remote access security techniques/products.
• Experience with enterprise anti-virus/malware solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns.
• Ability to react quickly, decisively, and deliberately in high-stress situations.
• Strong verbal, written communication, and interpersonal skills for documenting and communicating findings, escalating critical incidents to technical and non-technical audiences at various seniority levels, and interacting with customers.
• Highly motivated individual with the ability to self-start, prioritize, multitask, and work in a global team setting.
• Ability to create and maintain strong business relationships with counterparts, customers, and external entities to achieve security operations management goals.
• Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including professionally addressing confidential matters.
• Familiarity with regulatory compliance requirements (PCI-DSS, HIPAA, FISMA, SOX, etc.).

Required Certifications

• 10+ years of relevant experience and a certification in one of the following:
• Information Systems Security Professional (CISSP)
• At least 5+ years of relevant experience and a certification in one of the following:
• Certified Information Security Manager (CISM)
• Information Systems Security Architecture Professional (ISSAP)
• Certified Ethical Hacker (CEH)
• Cisco Certified Network Associate Security (CCNA Security)
• Certificate of Cloud Security Knowledge (CCSK)
• Certified Cloud Security Professional (CCSP)