Infrastructure Cyber Security Engineer

  • Job Reference: 592364300-2
  • Date Posted: 14 May 2022
  • Recruiter: Johnson Controls
  • Location: County Cork
  • Salary: On Application
  • Sector: I.T. & Communications
  • Job Type: Permanent

Job Description

Job Details

What you will do:

The Johnson Controls Global Information Security (GIS) team is undergoing a transformation and expansion as Johnson Controls increases its cybersecurity resources and capabilities to adapt to the cybersecurity threat landscape.

As the Infrastructure Cyber Security Engineer , you will report to the Se nior Manager for Infrastructure Security and will be responsible for implementing, administrating and monitoring security platforms for the protection of on premise and cloud compute resources. Responsibilities include identifying and defining system security requirements, aid in implementing computer security architecture and developing detailed cyber security designs, development and implementation of standard operating procedures which support prevention, detection and response to cyber security risks and threats.

How you will do it:

Administer Azure Security Center, Google Security Command Center, O365 security portal, Microsoft Endpoint Management Security Firewall policies, Carbon Black endpoint detection and response and seek improvements on a continuous basis

Ensure 100% of JCI compute infrastructure is protected by GIS security tools

Develop policies for endpoint detection and response that minimize the threat surface while allowing business applications to function correctly

Collaborate with GIS teams to develop and implement automations using platform APIs and XSOAR capabilities

Report possible threats or software issues, research weaknesses and find ways to counter them

Understand software, hardware and internet needs while adjusting them according to JCI's business environment

Implement best practices and security standards for the organization

Participate in security agent and sensor testing and deployment

Assist fellow employees with cybersecurity, software, hardware, or IT needs

Participate in special projects as required

What we look for:

The successful candidate will be a passionate information security professional with the ability to communicate to different business and IT leaders

Demonstrated drive, intelligence, maturity, and energy

A minimum Bachelor's Degree in computer engineering, computer security or computer science discipline.

2-5 years of strong experience in administering Linux operating systems.

Experience in administering cloud (Azure, GCP, OCI) tenancies in the use of IaaS and PaaS

Experience in EDR security platforms, such as Carbon Black

Experience in information security related experience in security operations, platform administration, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration, network operations, engineering, system administration on Linux, or Windows

Strong understanding of security operations concepts such as perimeter defense, BYOD management, data loss protection, insider threat, kill chain analysis, risk assessment and security metrics

Strong understanding of Threat Intelligence and Threat Profiling

Familiarity with network security methodologies, tactics, techniques and procedures

Experience with SIEM, such as Splunk

Experience performing security/vulnerability reviews of windows and Linux operating systems

Knowledge of network security architecture, understanding of the TCP/IP protocol, and remote access security techniques/products

Experience with enterprise anti-virus/malware solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns

Experience monitoring, detecting, and participating in response efforts of advanced persistent threats

Must be able to react quickly, decisively, and deliberately in high stress situations

Strong verbal/written communication and interpersonal skills are required to document and communicate findings, escalate critical incidents, to technical and non-technical audiences at different seniority levels and interact with customers

Highly motivated individual with the ability to self-start, prioritize, multi-task and work in a global team setting

Ability to create and maintain good business relationships with counter parts, customers and external entities to achieve the security goals

Ability to maintain a high level of discretion and personal integrity in the exercise of duties, including the ability to professionally address confidential matters

Experience with open source and commercial security management tools

Experience in the definition and implementation of strategic information security plans- Moderate knowledge of regulatory compliance requirements (PCI-DSS, HIPAA, FISMA, SOX)

Moderate knowledge in National Institute of Standards and Technology (NIST)

Desired Certifications (but not required):
• Server Platform Certifications (Linux)

• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GIAC)
• GIAC Certified Forensic Examiner (GCFE)
• GIAC Certified Forensic Analyst (GCFA)
• Certified Ethical Hacker (CEH)
• Cisco Certified Network Associate Security (CCNA Security)
• Cisco Certified Network Associate (CCNA)
• Forensics Examiner Certification (EnCE, FTK)