Johnson Controls.

Receive alerts when this company posts new jobs.

Similar Jobs

Job Details

Global Security Infrastructure Engineer

at Johnson Controls.

Posted: 4/2/2019
Job Reference #: 1910966
Keywords:

Job Description

What you will love about Johnson Controls:

We've been dedicated to protecting the environment since our invention of the electric thermostat in 1885, which provided a fundamental shift in the energy efficiency of buildings. Now, all over the world, our products and services empower customers and communities to consume less energy and conserve resources.

  • Global, innovative, industry leader
  • Embraces diversity
  • Growth opportunities abound
  • Fast paced, evolving company, always learning, always adapting
  • Great benefits; including Healthcare related wellness discounts,  great 401k match, company funded retirement program, vacation, sick time, floating holidays and national holidays
 
 
What you will do

The Johnson Controls Global Information Security (GIS) team is undergoing a transformation and expansion as Johnson Controls increases its cybersecurity resources and capabilities in order to address the increasing cybersecurity threat landscape.

The Information Security Operations Global Security Infrastructure Engineer is a position reporting into the Global Information Security Operations Manager with responsibility of assisting in development and implementation of standard operating procedures and administration of the company's Antimalware systems.   This role will perform the administration of Johnson Controls' security infrastructure capabilities to include corporate sandbox, reputation services, netflow collectors, SIEM and other core capabilities.  He or she will administer these capabilities by installing and maintaining infrastructure tools and related system software, continuously improving the application through proactively analyzing and resolving related problems, and exceeding the customers' expectations.  He or she will also assist with the engineering team to develop and design network level capabilities as required.  He or she will be responsible for service delivery and support, including configuration, incident, problem, release, change, availability, and continuity management within defined operating and service level agreements.

Primary Responsibilities
The responsibilities of the Global Security Infrastructure Engineer  include, but are not limited to:
 
Capability
Description
Acceptance Criteria

Sandbox Capabilities (McAfee, Symantec, Cisco)

Assist in daily monitoring of the Sandbox and log analysis systems, working with the security team and service desk to address security issues.

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution. 

Reputation Capabilities (Cisco, McAfee, Symantec)

Assist in daily monitoring of the reputation infrastructure and log analysis systems, working with the security team and service desk to address security issues.

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution. 

Netflow Capabilities (Cisco, McAfee)

Assist in daily monitoring of the netflowand log analysis systems, working with the security team and service desk to address security issues.

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution. 

Manage SIEM (Cisco, McAfee, IBM)

Assist in daily monitoring of the SIEM and log analysis systems, working with the security team and service desk to address security issues

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution  

  • Assist in network IPS design to include documentation, coordination with networking resources and applicable vendor.
 
 
 
 
How you will do it
 
Primary Responsibilities
The responsibilities of the Global Security Infrastructure Engineer  include, but are not limited to:
 
Capability
Description
Acceptance Criteria

Sandbox Capabilities (McAfee, Symantec, Cisco)

Assist in daily monitoring of the Sandbox and log analysis systems, working with the security team and service desk to address security issues.

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution. 

Reputation Capabilities (Cisco, McAfee, Symantec)

Assist in daily monitoring of the reputation infrastructure and log analysis systems, working with the security team and service desk to address security issues.

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution. 

Netflow Capabilities (Cisco, McAfee)

Assist in daily monitoring of the netflowand log analysis systems, working with the security team and service desk to address security issues.

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution. 

Manage SIEM (Cisco, McAfee, IBM)

Assist in daily monitoring of the SIEM and log analysis systems, working with the security team and service desk to address security issues

Provide feedback into the Threat Defense platform and processes in order to increase the detection fidelity and accuracy of the Threat Defense solution  

  • Assist in network IPS design to include documentation, coordination with networking resources and applicable vendor.



Qualifications

What we look for
 
Required

The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders. The candidate will be able to execute the Information Security inventory management strategy defined by leaders. The candidate will demonstrate drive, intelligence, maturity, and energy and will be a proven team leader and security strategist.

  • A minimum bachelor degree in computer engineering, computer security or computer science discipline.
  • 7  years of information security related experience leading teams in security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration, network operations, engineering, system administration on Linux, or Window
  • Familiarity with network security methodologies, tactics, techniques and procedures. 
  • Experience with Intrusion Detection Systems (IDS)/ Intrusion Protection Systems (IPS), SIEM and other network defense security tools. 
  • Ability to read IDS signatures.
  • Understanding of network packet capture and ability to review. 
  • Experience performing security/vulnerability reviews of network environments. 
  • Knowledge of network security architecture, understanding of the TCP/IP protocol, and remote access security techniques/products. 
  • Experience with enterprise anti-virus/malware solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns.
  • Candidate must be able to react quickly, decisively, and deliberately in high stress situations. 
  • Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, to technical and non-technical audiences at different seniority levels and interact with customers. 
  • Highly motivated individual with the ability to self-start, prioritize, multi-task and work in a global team setting. 
  • Ability to create and maintain good business relationships with counter parts, customers and external entities to achieve the security operations management goals
  • Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters
  • Experience with open source and commercial security management tools
  • Experience in the definition and implementation of strategic information security plans
  • Moderate knowledge of regulatory compliance requirements (PCI-DSS, HIPAA, FISMA, SOX)
  • Moderate knowledge in National Institute of Standards and Technology (NIST) as they apply to FISMA

Desired Certifications (but not required): 

  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Certified Ethical Hacker (CEH)
  • Cisco Certified Network Associate Security (CCNA Security)
  • Cisco Certified Network Associate (CCNA)
  • Cisco Certified Network Professional Security (CCNP Security)
  • Cisco Certified Network Professional (CCNP)
  • Server Platform Certifications (Microsoft, Linux)
 
 
 
 
 
 
 

Johnson Controls is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, status as a qualified individual with a disability, or any other characteristic protected by law. For more information, please view EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit www.johnsoncontrols.com/tomorrowneedsyou.