Senior Engineer - Zero Trust and IAM

Job Code:

Job Code Name:

Business Title: Zero Trust and IAM Eng II

Region: APAC

Country: India

Grade : 172

What we look for

• 5+ years’ experience implementing enterprise Identity and Access Management (IAM), Privileged Access Management (PAM) solutions (e.g. Saviynt, Okta, SailPoint, Ping Identity, Omada, Microsoft Identity Manager, Beyond Trust, CyberArk or equivalent IAM solution) in client environments.
• Familiarity with Zero Trust Network Architecture is desirable
• Familiarity with service now Ticketing and CMDB is desirable
• Design, build, operate and automate security solutions and processes to protect the integrity of the organization's networks, systems, applications and data.
• Experience developing technical strategies, architectures, and roadmaps.
• Outstanding communication and presentation skills. Able to articulate complex, technical concepts to non-technical audiences.
• Respond to security incidents, including data breaches, and coordinate with other IT teams to mitigate the impact of any security breaches.

Preferred

• Experience hardening security for Active Directory, Windows, *nix OS.
• Experience with IDaaS providers such as Microsoft, Okta, Ping Identity, Google Cloud Identity
• Experience with cloud architectures particularly Azure, AWS, GCP native IAM controls.
• Experience with Identity Governance processes and solutions such as Saviynt, SailPoint, Ping Identity or equivalent.
• Experience with Microsoft 365, Active Directory, SAML, OIDC
• Knowledge of Applied Cryptography and PKI
• Manage and network security infrastructure
  • Firewall configuration and rule management
  • Cloud proxies services & Network Access control
  • Employee and Partner remote access VPN services
  • Cloud based Web application firewall
• Development knowledge e.g. Python, Java, C#, .NET, Web Services (SOAP/REST/RESTful, APIs), Shell programming/scripting
• Preferred Network Infrastructure Security background in both on prem physical security components (firewalls, IDS/IPS , remote access and internet proxies) as well as cloud security services (Zscaler , Azure, GCP).
• Strong experience of working on SIEM tools like Splunk to analyse logs and correlate events.
• Experience with User Behaviour Analytics & Workday, SAP, Salesforce
• Experience with MDM capabilities such as Intune or AirWatch
• Understanding of trends and regulations to ensure effectiveness and compliance with all regulations and frameworks (NIST, HIPPA-HITECH, HITRUST, PCI, GDPR)

Certifications

• CISSP or SANS, GIAC, CIMP, CEH, CISM or CISA certifications is a plus
• OKTA – Professional or Consultant is a plus
• Google/AWS/Microsoft Professional Cloud Architect is a plus

Johnson Controls International plc. is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, genetic information, status as a qualified individual with a disability, or any other characteristic protected by law. For more information, please view EEO is the Law. If you are an individual with a disability and you require an accommodation during the application process, please visit www.johnsoncontrols.com/careers.