Global Manufacturing Cybersecurity Analyst

**Job Details**

**What you will do
The Global Manufacturing Cybersecurity Analyst is a position that is part of a global team. Reporting into the Global Senior Manufacturing Security Manager, and collaborates with Global IT, Global Information Security, Manufacturing, and Engineering stakeholders to deliver security solutions across all Johnson Controls facilities.

In this role, you will work with a team of diverse professionals to develop and execute our enterprise approach to manage cyber threats and compliance risks in Operation Technology (OT) environments.

You will design, build, deploy, and sustain security solutions across the global manufacturing footprint, while also providing governance and ensuring adherence to security best practices and JCI policies. The responsibilities will include providing both hands-on security engineering and consulting-type roles. You will manage tasks across a wide range or critical priorities and balance sustaining work with project work. You will provide technical expertise on projects, handle troubleshooting and escalations. You will enhance relationships with internal and external partners. You will support several cross-functional initiatives, including digital transformation and smart factory investments.

**How you will do it**
- Complete all tasks following Johnson Controls policies and procedures.
- Always keeping in mind that Global Manufacturing Cybersecurity is a service organization, develop and foster internal relationships with IT, Global Information Security, Manufacturing, and Business Units.
- Continuously looking for opportunities to improve the companies Cybersecurity posture.
- Evangelize the services and capabilities of the Global Manufacturing Cybersecurity group.
- Act as an internal consultant to business units and manufacturing teams.
- Act as a Subject Matter Expert to drive security standards related to OT and IoT device security and connectivity.
- Monitor OT and IoT devices using OT specific tools to identify and remediate vulnerabilities.
- Perform site audits related to OT and IoT security.

**What we look for**
- A minimum bachelor’s degree in computer engineering, computer security or computer science discipline or equivalent experience
- Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, to technical and non-technical audiences at different seniority levels and interact with customers.
- Ability to create and maintain good business relationships with counter parts, customers, and external entities to achieve the security engineering management goals.
- Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters.
- 3-5 years of information security related experience working with teams in security operations, incident analysis, network design, and implementing best practices.
- 5-10 year of programming and managing industrial devices (PLC, VDF, etc)
- 3-5 years of experience with SCADA and HMI software.
- Knowledge of network security architecture and remote access security techniques/products.
- Fundamental understanding of IT and OT network communication protocols (For example: TCP/IP, UDP, DNP3, Modbus, IEC61850, OPC, OPC UA, Profinet, Foundation Fieldbus, etc.).
- Knowledge and experience with ISA/IEC 62443, NIST Cybersecurity Framework (NIST CSF), NIST 800-53, and NIST 800-82.
- Experience with ICS/OT/IoT monitoring tools

**Languages**

Ability to effectively communicate (written and oral)
- English (fluent required)
- Chinese
- Japanese
- Korean
- Malay
- Thai
- Filipino

**Desired Certifications **(but not required):

- Certified Information Systems Security Professional (CISSP)
- Global Industrial Cyber Security Professional (GICSP)
- GIAC Critical Infrastructure Protection (GCIP)
- GIAC Response and Industrial Defence (GRID)

**Preferred Locations**

This is an APAC level role will require working across all APAC country geographies and time zones.

**_Diversity & Inclusion _**
- Our dedication to diversity and inclusion starts with our values. We lead with integrity and purpose, focusing on the future and aligning with our customers’ vision for success. Our High-Performance Culture ensures that we have the best talent that is highly engaged and eager to innovate. _Our D&I mission elevates each employee _’ _s responsibility to contribute to our culture. It _’ _s through these contributions that we’ll drive the mindsets and behaviors we need to power our customers’ missions. You have the power. You have the voice. You have the culture in your hands. _

LI-WH1

LI-Onsite