What you will do
As a field cybersecurity operations manager, you will drive a transformational cybersecurity program to reduce cybersecurity risk for our customers’ smart building system deployments. This role will establish and manage lifecycle best practices, policies, standards and processes for product installation, servicing and support.
You will be responsible for creating cybersecurity resources for program communications and training across Johnson Controls’ globally for a multi-domain product portfolio (e.g. Controls, Fire, Physical Security, Chiller, Connected Digital Solutions). You will measure success by maintaining risk metrics associated with the install base and field security practices.
A comprehensive knowledge of Johnson Controls’ products, their deployment architectures, safeguards and hardening will be crucial for success in this role.
How you will do it
Establish governance program for field cybersecurity operations
Develop and maintain field cybersecurity operations policies, standards and processes to support program goals.
Maintain compliance requirements including product hardening, secure connectivity, user management and end-of-life.
Work with key stakeholders and leadership to ensure sponsorship, alignment and adoption of program initiatives.
Maintain a partnership with field operations teams and the field champion network to deploy training, communicate cyber guidance, and collect input and data on cyber aspects of field operations.
Coordinate across multiple functions (field operations, product support, sales channels, product development, product security, and information security) to meet customer and company expectations and timelines.
Maintain easy to follow product cybersecurity architectures and product safeguard feature lists.
Provide solution architecture support for customer engagements.
Periodically report to senior leadership on program health and status.
Anticipate business and industry regulatory issues to address field requirements proactively.
Coordinate with legal and other regulatory and compliance groups to ensure the company is compliant with key laws, regulations, and certifications.
Create training resources to drive internal and external awareness and compliance.
Support customer related compliance, vulnerability management, incident response, and risk management
Define, gather, and monitor meaningful metrics and establish associated tooling for compliance and continuous improvement.
Participate in cybersecurity committees, boards, councils and working groups.
What we look for
Required
Minimum of 8 years of professional work experience in cybersecurity governance, risk and compliance role or cybersecurity solution architecture role
BS/BA in cybersecurity, computer science, engineering, or related technical degree
Experience with Smart Building Technologies (e.g. Controls Systems, Building Management)
Knowledge of cybersecurity compliance, regulations, industry standards and certifications
Excellent problem-solving skills to analyze customer cyber issues and requirements (regulatory, policy, customer, industry standard) and link to appropriate cybersecurity controls
Track record of building cohesive teams and collaborating successfully with other functions
Technical and operational excellence, thought leadership, integrative thinking, and passion
Experience with technology related compliance and risk management related frameworks such as RMF, NIST 800-53, ISA/IEC 62443, UL CAP, ISO 27001, GDPR, CSL, SOC 2 or other comparable.
Experience with driving transformation within an organization.
Technical project management experience using agile methodologies
Ability to create cybersecurity solution architectures for building systems as designed
Experience incorporating solutions into customer environments for secure local and remote operations
Ability to assess and translate requirements from various sources into practical plans/schedules
Strong interpersonal skills to influence stakeholder at all levels of the organization
Customer relations acumen with ability to explain complex technical details to a wide audience
Superior skill in written and verbal communications as well as planning/delivering presentations
Cybersecurity certifications, e.g. CISSP, GSEC, Sec+, or related are preferred.
Preferred
Bachelor’s degree in a technical field (Engineering, Computer Science, Information Systems) or equivalent
Demonstrated ability to optimally facilitate and drive organizational change
Certified Information Systems Security Professional (CISSP), Certified Secure Software Lifecycle Professional (CSSLP), GSEC, Sec+ or equivalent cybersecurity certifications.
#Hybrid
#GOSIA
The latest news, articles, and resources, sent to your inbox weekly.
As the Senior Manager for the Global Security Operations Center Detection and Response Team, you will have a direct impact on the tactical implementation of incident response and security operations across McDonald's. This role involves enhancing our incident response, threat monitoring, and forensics capabilities in collaboration with cyber threat intelligence...
McDonald's London
Job Title: SOC Threat Detection AnalystLocation: StevenageRate: £650 p/dAn opportunity has arisen in the cyber security operations centre (SOC) within Information Management (IM) for a SOC Threat Detection Analyst. Supporting the Senior SOC analysts in assisting IM meet the challenges and demands of countering the Cyber Threat. The successful applicant...
Stevenage
Senior Attack Surface Remediation Analyst | S | Milton Keynes | T&DCountry: United KingdomInterested in part-time, job-share or flexible working ? We want to talk to you!Join our community.The difference you’ll make:Managing deliverables which are closely coordinated with and integrated across all UK CISO functions for strategy development, continuous learning...
Santander Milton Keynes
Project Manager6 month initial contractHybrid working - 2 days a week onsite in SheffieldWe are seeking a dedicated and experienced Project Manager to lead the end-to-end implementation of a Web Application Firewall (WAF). This pivotal role combines project management expertise with technical knowledge of cybersecurity solutions, ensuring the seamless deployment...
Sheffield
Senior Business Development Manager – Cybersecurity (Public Sector/Government)Remote – UK£100,000 - £200,000 (Basic + Bonus) + Company BenefitsThis is an excellent opportunity for a candidate with a robust background in business development and a deep understanding of cybersecurity to collaborate closely with government agencies and help expand the cybersecurity landscape...
London
About BrightsolidBrightsolid (part of DC Thomson) is an expert in colocation, cloud and cybersecurity solutions. We bring together brilliantly bright ideas with seriously solid solutions to meet not only our customers’ business needs, but also their ambitions. From custom-built colocation to hybrid cloud expertise and the latest in cybersecurity technology,...
DC Thomson Manchester
