Zero Trust & IAM Principal Architect (Remote)

Build your best future with the Johnson Controls team

As a global leader in smart, healthy and sustainable buildings, our mission is to reimagine the performance of buildings to serve people, places and the planet.

Join a winning team that enables you to build your best future! Our teams are uniquely positioned to support a multitude of industries across the globe.

You will have the opportunity to develop yourself through meaningful work projects and learning opportunities. We strive to provide our employees with an experience, focused on supporting their physical, financial, and emotional wellbeing.

Become a member of the Johnson Controls family and thrive in an empowering company culture where your voice and ideas will be heard your next great opportunity is just a few clicks away!

What we offer

Competitive salary and bonus plan

Paid vacation / holidays / sick time

Comprehensive benefits package including 401K, medical, dental, and vision care - Available day one

Extensive product and on the job / cross training opportunities with outstanding internal resources

Encouraging and collaborative team environment

Dedication to safety through our Zero Harm policy

Check us Out : Day in the Life of the Building of the Future

What you will do / How you will do it

As the subject matter expert for Security Architecture & Engineering, the Zero Trust & IAM Principal Architect will maintain current knowledge of regulatory requirements, trends, best practices and solutions in your scope of expertise

You will consult on security policies, standards and guidelines, working to make security requirements clear and accessible

You will develop reference architectures and reference implementation patterns

You will provide consulting to Enterprise Architecture and to Solutions Architects, providing security requirements for planned projects and methods for meeting those requirements

You will be part of the Enterprise Architecture and Security Architecture review and approval process

You will conduct proof-of-concept and prototyping activities and assist InfoSec engineers and other engineers in their design and testing

You will be leading team of architect focusing on Identity Authentication and Governance

What we look for

Required

10+ years' experience implementing enterprise Identity and Access Management (IAM), Privileged Access Management (PAM) solutions (e.

g. Saviynt, Okta, SailPoint, Ping Identity, Omada, Microsoft Identity Manager, Beyond Trust, CyberArk or equivalent IAM solution) in client environments

Experience developing technical strategies, architectures, and roadmaps

Outstanding communication and presentation skills. Able to articulate complex, technical concepts to non-technical audiences

Experience defining and implementing delegation model

Experience defining and implementing support scenarios for merger acquisition and divestitures.

Preferred

Experience hardening security for Active Directory, Windows, *nix OS.

Good knowledge of software development principles and design patterns

Experience with IDaaS providers such as Microsoft, Okta, Ping Identity, Google Cloud Identity

Experience with cloud architectures particularly Azure, AWS, GCP native IAM controls

Experience with Identity Governance processes and solutions such as Saviynt, SailPoint, Ping Identity or equivalent

Experience with Microsoft 365, Active Directory, SAML, OIDC

Knowledge of Applied Cryptography and PKI

Development knowledge e.g. Python, Java, C#, .NET, Web Services (SOAP / REST / RESTful, APIs), Shell programming / scripting

Strong interpersonal and communication skills to build / maintain ongoing business

Act as a key influencer in IAM proof of concepts (POCs), requests for proposals (RFPs), and vendor selection

Experience with User Behavior Analytics

Experience with Workday, SAP, Salesforce

Experience with MDM capabilities such as Intune or AirWatch

Understanding of trends and regulations to ensure effectiveness and compliance with all regulations and frameworks (NIST, HIPPA-HITECH, HITRUST, PCI, GDPR)

Excellent written and verbal communication and organizational skills.

Certifications

CISSP, SANS, GIAC, CIMP is a plus

OKTA - Professional or Consultant is a plus

Google / AWS / Microsoft Professional Cloud Architect is a plus

LI - MJ1

LI-Remote

Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, sexual orientation, gender identity, status as a qualified individual with a disability or any other characteristic protected by law.