Build your best future with the Johnson Controls team
As a global leader in smart, healthy and sustainable buildings, our mission is to reimagine the performance of buildings to serve people, places and the planet.
Join a winning team that enables you to build your best future! Our teams are uniquely positioned to support a multitude of industries across the globe.
You will have the opportunity to develop yourself through meaningful work projects and learning opportunities. We strive to provide our employees with an experience, focused on supporting their physical, financial, and emotional wellbeing.
Become a member of the Johnson Controls family and thrive in an empowering company culture where your voice and ideas will be heard your next great opportunity is just a few clicks away!
What we offer
Competitive salary and bonus plan
Paid vacation / holidays / sick time
Comprehensive benefits package including 401K, medical, dental, and vision care - Available day one
Extensive product and on the job / cross training opportunities with outstanding internal resources
Encouraging and collaborative team environment
Dedication to safety through our Zero Harm policy
Check us Out : Day in the Life of the Building of the Future
What you will do / How you will do it
As the subject matter expert for Security Architecture & Engineering, the Zero Trust & IAM Principal Architect will maintain current knowledge of regulatory requirements, trends, best practices and solutions in your scope of expertise
You will consult on security policies, standards and guidelines, working to make security requirements clear and accessible
You will develop reference architectures and reference implementation patterns
You will provide consulting to Enterprise Architecture and to Solutions Architects, providing security requirements for planned projects and methods for meeting those requirements
You will be part of the Enterprise Architecture and Security Architecture review and approval process
You will conduct proof-of-concept and prototyping activities and assist InfoSec engineers and other engineers in their design and testing
You will be leading team of architect focusing on Identity Authentication and Governance
What we look for
Required
10+ years' experience implementing enterprise Identity and Access Management (IAM), Privileged Access Management (PAM) solutions (e.
g. Saviynt, Okta, SailPoint, Ping Identity, Omada, Microsoft Identity Manager, Beyond Trust, CyberArk or equivalent IAM solution) in client environments
Experience developing technical strategies, architectures, and roadmaps
Outstanding communication and presentation skills. Able to articulate complex, technical concepts to non-technical audiences
Experience defining and implementing delegation model
Experience defining and implementing support scenarios for merger acquisition and divestitures.
Preferred
Experience hardening security for Active Directory, Windows, *nix OS.
Good knowledge of software development principles and design patterns
Experience with IDaaS providers such as Microsoft, Okta, Ping Identity, Google Cloud Identity
Experience with cloud architectures particularly Azure, AWS, GCP native IAM controls
Experience with Identity Governance processes and solutions such as Saviynt, SailPoint, Ping Identity or equivalent
Experience with Microsoft 365, Active Directory, SAML, OIDC
Knowledge of Applied Cryptography and PKI
Development knowledge e.g. Python, Java, C#, .NET, Web Services (SOAP / REST / RESTful, APIs), Shell programming / scripting
Strong interpersonal and communication skills to build / maintain ongoing business
Act as a key influencer in IAM proof of concepts (POCs), requests for proposals (RFPs), and vendor selection
Experience with User Behavior Analytics
Experience with Workday, SAP, Salesforce
Experience with MDM capabilities such as Intune or AirWatch
Understanding of trends and regulations to ensure effectiveness and compliance with all regulations and frameworks (NIST, HIPPA-HITECH, HITRUST, PCI, GDPR)
Excellent written and verbal communication and organizational skills.
Certifications
CISSP, SANS, GIAC, CIMP is a plus
OKTA - Professional or Consultant is a plus
Google / AWS / Microsoft Professional Cloud Architect is a plus
LI - MJ1
LI-Remote
Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, sexual orientation, gender identity, status as a qualified individual with a disability or any other characteristic protected by law.