Principal Security Software Engineer

What you will do  

As a Principal Software Engineer – Security and .Net, you will be part of a dynamic engineering team based in Glendale, WI! We are responsible for the support, patching and new feature development of JCI’s BAS products, including the flagship Metasys Building Automation System (BAS).  These products are used globally to control and manage buildings for energy efficiency, comfort, and health.  You will be responsible for leading and contributing to feature development, resolving security vulnerabilities through monitoring and updating 3rd party libraries, as well as diagnosing and patching software defects. 

How you will do it 

As an individual contributor, you will design and implement new features independently as well as diagnose, and debug issues reported from the field or internal security teams. 

Lead design concept, design approach in a small team to develop and test software features for major release or provide solutions for vulnerabilities for patch release. 

Review decisions with Technical Architects and Product Managers to maintain functionality and software design through the patching process. 

Diagnose performance bottlenecks on resource-limited embedded hardware and platforms. 

Leading the direction of the organization with Linux-based Product containerization 

Work Investigate and resolve identity and authentication-related defects 

Upgrade 3rd party libraries and components as vulnerabilities are discovered. 

Collaborate with Architects, Developers, Project Managers, and Engineering Managers to coordinate efforts and define and leverage best practices 

Work with stakeholders to define requirements and provide high and low-level estimations based on the requirements and technically focused proof of concepts (POC) 

What you will need 
Required  

• Bachelor of Science degree in Computer Science, Software Engineering, or equivalent. 

• 7+ years of software development experience developing software products. 

• Outstanding software development skills with ability to design, implement, analyze and resolve debug issues with performance or design. 

• Strong coding experience with object-oriented programming is required; C#.NET preferred. 

• Demonstrated technical leadership to lead collaboratively within scrum team as well as team members across the world. 

• Full-stack preferred and/or strong interest to learn full-stack software development:  Windows server and Embedded controller, UI front-end, services back-end, and knowledge of installation software. 

• Passion for Technology: Quickly learn new technologies, have a passion for software and a pulse on industry trends. 

• Working experience with AngularJS, REST API. 

• Deep knowledge of OAuth 2.0 (Identity Server 3-4 / Duende Identity Server / Okta / Ping Identity). 

• Experience working on both Windows and Linux operating systems, including debugging. 

Preferred 

• Experience with dependency injection / async programming. 

• Experience with PKCE (Proof Key for Code Exchange) authentication. 

Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, sexual orientation, gender identity, status as a qualified individual with a disability or any other characteristic protected by law. To view more information about your equal opportunity and non-discrimination rights as a candidate, visit EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit here.