Security Analyst

Job Title: Security Analyst

Location: Pune, Maharashtra, India

Experience: 4-9 years

About Johnson Controls

At Johnson Controls, we transform the environments where people live, work, learn and play. From optimizing

building performance to improving safety and enhancing comfort, we drive the outcomes that matter most.

Dedicated to protecting the environment, we deliver our promise in industries such as healthcare, education,

data centers and manufacturing. With a global team of 100,000 experts in more than 150 countries and over

130 years of innovation, we are the power behind our customers’ mission.

What you will do

The future is being built today, and Johnson Controls is making that future more productive, more secure and

more sustainable. We are harnessing the power of cloud, data analytics, the Internet of Things, and user design

thinking to deliver on the promise of intelligent buildings and smart cities that connect communities in ways

that make people’s lives – and the world – better.

In this career defining and high impact opportunity within the Global Product Security organization, you will

support cybersecurity and privacy efforts that position Johnson Controls to succeed in the marketplace. You

will coordinate with stakeholders to ensure company programs, products, and services are compliant with

customer requirements and government regulations. You will deliver timely, accurate, and consistent

cybersecurity market analysis and communications for customer driven initiatives to grow revenue and manage

supply chain risk. In this role, you will play a pivotal role in fostering customer relationships, confidence and

trust.

Key Responsibilities:

• Manage projects and activities that ensure timely response to internal and external customer

cybersecurity and privacy requirements.

• Coordinate across multiple functions (sales channels, product development, product security, and

information security) to meet customer and company expectations and timelines.

• Interface with sales channel leaders, field engineering managers, and product managers on approaches

to improve cybersecurity compliance, drive security as a differentiator, collect voice-of-customer

feedback, and identify ways to enhance the customer experience.

• Build and manage a library of standardized security and privacy messaging for customer facing

communications.

• Maintain a Frequently Asked Questions list to assist sales and field interactions with customers.

• Coordinate with sales, field, and product teams to capture market data and voice of the customer

feedback.

• Maintain current knowledge of security and privacy organizations, associations, events and media

outlets pertinent to company offerings.

• Support product vulnerability disclosure process.

• Continuously monitor product cybersecurity acceptance with key customers.

• Periodically report to senior leadership on health and status of the Johnson Controls’ cybersecurity

position within targeted markets.

• Assist in cybersecurity business value assessment of merger/acquisition opportunities.

• Educate internal stakeholders on customer security and privacy requirements and trends.

• Monitor product security differentiation efforts to successful completion including the development of

supporting marketing collateral and documentation.

• Coordinate with legal and other regulatory and compliance groups to ensure messaging is compliant

with Johnson Controls practices as well as key laws, regulations, and certifications.

• Assist with security technical documentation for internal and external use.

• Define, gather, and monitor meaningful metrics for and tracking and analyzing of customer

engagement trends for continuous improvement.

• Participate in product security committees, boards, councils and working groups.

• Work with technology partners to cross promote solutions

• Create written content for web pages, blog posts, email, videos, case studies, social media posts,

PowerPoint presentations, white papers, spec sheets, brochures, press releases and more.

• Assist in development of product positioning, messaging and promotion

• Ensure consistent use of branding based on company guidelines

Required Qualifications:

• Knowledge of cybersecurity, particularly as applied to smart buildings.

• Excellent technical written and verbal communication and presentation skills with focus on brevity and

clarity. The ability to condense many technical attributes to easily communicate customer benefits is

critical

• Demonstrated problem-solving skills to analyze customer cyber issues and requirements (regulatory,

policy, customer, industry standard) and link to appropriate organizational capabilities, product

features and building value messages.

• Track record of effective collaboration with corporate, customer, and government entities.

• Technical project management experience using agile methodologies.

• Ability to assess and translate cybersecurity product features into business value to the customer.

• Ability to establish a high level of trust and confidence with customers and stakeholders.

• Experience working with security governance, risk, and compliance.

• Experience with Operational Technologies (e.g. Controls Systems, Building Management) a plus.

• Customer relations acumen with ability to explain complex technical details to a wide audience.

• Excellent interpersonal, organizational, written and verbal communication skills.

• Overall, 5-10 Years of experience and minimum of 3 years of professional work experience in

cybersecurity market analysis, communication and project/program management roles.

• Marketing automation software (e.g. Pardot) a plus.

• BS/BA in cybersecurity, computer science, engineering, marketing or related degree.

• Cybersecurity certifications, e.g. CISSP, GSEC, Sec+, or related are preferred.

• Travel is occasional at <10%, including international.