Security Analyst

Product Cybersecurity Compliance Analyst

Location: Pune/Bangalore

Job Family:  Engineering

Workday Requisition: 

What you will do

The future is being built today, and Johnson Controls is making that future more productive, more secure and more sustainable.  We are harnessing the power of cloud, data analytics, the Internet of Things, and user design thinking to deliver on the promise of intelligent buildings and smart cities that connect communities in ways that make people’s lives – and the world – better.

In this career defining and high impact opportunity within the Global Product Security organization, you will support cybersecurity and privacy efforts that position Johnson Controls to succeed in the marketplace.  You will coordinate with stakeholders to ensure company programs, products, and services are compliant with customer requirements and government regulations.  You will deliver timely, accurate, and consistent cybersecurity market analysis and communications for customer driven initiatives to grow revenue and manage supply chain risk.  In this role, you will play a pivotal role in fostering customer relationships, confidence and trust.

How you will do it    

• Manage projects and activities that ensure timely response to internal and external customer cybersecurity and privacy requirements.
• Coordinate across multiple functions (sales channels, product development, product security, and information security) to meet customer and company expectations and timelines.
• Interface with sales channel leaders, field engineering managers, and product managers on approaches to improve cybersecurity compliance, drive security as a differentiator, collect voice-of-customer feedback, and identify ways to enhance the customer experience.
• Build and manage a library of standardized security and privacy messaging for customer facing communications.
• Maintain a Frequently Asked Questions list to assist sales and field interactions with customers.
• Coordinate with sales, field, and product teams to capture market data and voice of the customer feedback.
• Maintain current knowledge of security and privacy organizations, associations, events and media outlets pertinent to company offerings.
• Support product vulnerability disclosure process.
• Continuously monitor product cybersecurity acceptance with key customers.
• Periodically report to senior leadership on health and status of the Johnson Controls’ cybersecurity position within targeted markets.
• Assist in cybersecurity business value assessment of merger/acquisition opportunities.
• Educate internal stakeholders on customer security and privacy requirements and trends.
• Monitor product security differentiation efforts to successful completion including the development of supporting marketing collateral and documentation.
• Coordinate with legal and other regulatory and compliance groups to ensure messaging is compliant with Johnson Controls practices as well as key laws, regulations, and certifications.
• Assist with security technical documentation for internal and external use.
• Define, gather, and monitor meaningful metrics for and tracking and analyzing of customer engagement trends for continuous improvement.
• Participate in product security committees, boards, councils and working groups.
• Work with technology partners to cross promote solutions
• Create written content for web pages, blog posts, email, videos, case studies, social media posts, PowerPoint presentations, white papers, spec sheets, brochures, press releases and more.
• Assist in development of product positioning, messaging and promotion
• Ensure consistent use of branding based on company guidelines

What we look for

• Knowledge of cybersecurity, particularly as applied to smart buildings.
• Excellent technical written and verbal communication and presentation skills with focus on brevity and clarity.  The ability to condense many technical attributes to easily communicate customer benefits is critical
• Demonstrated problem-solving skills to analyze customer cyber issues and requirements (regulatory, policy, customer, industry standard) and link to appropriate organizational capabilities, product features and building value messages.
• Track record of effective collaboration with corporate, customer, and government entities.
• Technical project management experience using agile methodologies.
• Ability to assess and translate cybersecurity product features into business value to the customer.
• Ability to establish a high level of trust and confidence with customers and stakeholders.
• Experience working with security governance, risk, and compliance.
• Experience with Operational Technologies (e.g. Controls Systems, Building Management) a plus.
• Customer relations acumen with ability to explain complex technical details to a wide audience.
• Excellent interpersonal, organizational, written and verbal communication skills.
• Minimum of 3 years of professional work experience in cybersecurity market analysis, communication and project/program management roles.
• Marketing automation software (e.g. Pardot) a plus.
• BS/BA in cybersecurity, computer science, engineering, marketing or related degree.
• Cybersecurity certifications, e.g. CISSP, GSEC, Sec+, or related are preferred.
• Travel is occasional at <10%, including international.

Johnson Controls is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, status as a qualified individual with a disability, or any other characteristic protected by law. For more information, please view EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit www.johnsoncontrols.com/tomorrowneedsyou.