![Johnson Controls International](https://clickcast2-static.s3.amazonaws.com/uploads/employer/logo/22413/Digital_Logo.png)
Senior Application Security Architect
3 days ago
Job Details
What you will do
The future is being built today, and Johnson Controls is making that future safer, greener, efficient building solutions and services. We are harnessing the power of cloud, data analytics, the Internet of Things, and user design to deliver on the promise of intelligent buildings and smart cities that connect communities in ways that make people’s lives – and the world – better.
In this career defining opportunity within the Global Product Security organization, you will drive continuous improvement initiatives aligned to our cybersecurity maturity framework and roadmap, ensuring proactive management of security and data privacy risk across the full lifecycle of our products, platforms, and service offerings. You will apply your expertise in secure software development practices to ensure security and privacy by design requirements are fulfilled and that products, solutions, and services are released to market with strong cybersecurity.
How you will do it
Provide cybersecurity expertise and guidance to product development teams and business leaders throughout all phases of the software development life cycle.
Architect security and privacy by design and secure-by-default into the entire stack from design through operations in the cloud.
Drive secure SDLC activities -- requirements, architectures, threat models, SAST, DAST, penetration testing
Specify and design secure operations features for platforms
Review security policies, standards, and metrics to drive improvements
Quantify residual product risk and identify appropriate security controls.
Review changes made via the DevOps pipeline and processes
Develop methodologies and processes that align product risk assessments to DevOps
Review product architectures for security design gaps and vulnerabilities and consult with product teams to remediate or mitigate cyber risk.
Assist coordination of penetration testing engagements with product teams.
Help engineers and product managers identify solutions to meet cybersecurity requirements.
Help business leaders understand security risks during resource planning.
Assist coordination and tracking of vulnerability remediation activities.
Support reporting to executive leadership on the status of product security, risks, mitigations, and trends.
Use agile project management to manage resources and track milestones and deliverables.
Identify cybersecurity features that enhance developer and customer experiences.
What we look for
Required:
Bachelor’s or higher degree in engineering, cybersecurity, or related technical degree
Minimum 10 years of product or application cybersecurity experience
Expert knowledge and practical product and software security experience, including secure SDLC practices, defense-in-depth design architectures, and secure by default configurations
5 years of experience delivering results using agile methodologies and tools
3 years of experience supporting software security governance and compliance activities, i.e. metrics, assessments, audits, exercises, risk frameworks, and maturity models
2 + years experience with Cloud technologies;
Ability to build trust with stakeholders and explain complex security topics to all audiences
Preferred:
CSSLP, CISSP, CCSP, OSCP, CEH or other cybersecurity certifications
Masters degree in Cybersecurity, Computer Science, Engineering, or Information Systems
2 years of experience with technology risk management related frameworks such as RMF, NIST 800-53, ISA/IEC 62443, UL CAP, ISO 27001, GDPR, CSL, SOC 2 or other comparable
Demonstrated ability to lead change initiatives that intelligently manage software security
Strong problem-solving skills to analyze cybersecurity issues and requirements (legal/regulatory, policy, customer, industry standards) and relate them to appropriate security controls
Practical experience with operating systems
Practical experience with programming and scripting languages
Practical experience security tools
Practical experience building multi-tenant platforms or service offerings
-
Senior Application Security Architect
1 month ago
Staines-upon-Thames, Surrey, United Kingdom ADP Full timeSenior Application Security Architect – EMEA – France FR : ADP recherche un Architecte Sécurité des Applications Dans ce rôle, vous travaillerez aux côtés d’experts passionnés en sécurité informatique et d'équipes d’ingénierie logicielle pour appliquer et déployer les meilleures pratiques d'architecture de sécurité des...
-
Senior Application Security Architect
1 month ago
Staines-upon-Thames, Surrey, United Kingdom ADP Full timeSenior Application Security Architect – EMEA – France FR : ADP recherche un Architecte Sécurité des Applications Dans ce rôle, vous travaillerez aux côtés d’experts passionnés en sécurité informatique et d'équipes d’ingénierie logicielle pour appliquer et déployer les meilleures pratiques d'architecture de sécurité des...
-
Security Architect
2 weeks ago
Staines-upon-Thames, Surrey, United Kingdom Bupa Full timeJob Description:Security ArchitectStaines (TW18 3DZ) / Manchester (M50 3SP) / London (EC2R 7HJ)Hybrid working (mostly remote with some on-site at Manchester / Staines)PermanentUp to £90,000 (D.O.E) + 10% Bonus + Fantastic BenefitsFull time 37.5 hours per weekAt Bupa, we're passionate about technology. With colleagues, customers, patients, and residents in...
-
Senior Information Security Officer
2 weeks ago
Sunbury-on-Thames, Surrey, United Kingdom KINLY Full timeDo you aspire to work for a fast-growing, dynamic organization? Are you ambitious and a self-starter? Would you like to work for an international and multicultural organization? Are you passionate about Security and want to help build it from the ground up? Then you are the Senior Information Security Officer we are looking forYou will be part our security...
-
Regional Cluster Security Manager UK
5 days ago
Sunbury-on-Thames, Surrey, United Kingdom BP Energy Full timeJob Family Group: HSSE Group The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are conducted...
-
Senior Architect
3 weeks ago
Southend-on-Sea, United Kingdom We Are 5 Values Full timeSenior Architect (Cloud)London - HybridPermanent - Full timeUp to £120,000Imagine collaborating with the biggest names in media & entertainment, building the infrastructure that delivers content to millions. Your work will directly impact how people experience their favorite shows, movies, and games. Sound good to you? In an Agile setting, you will...
-
Regional Cluster Security Manager, UK
2 weeks ago
Sunbury-On-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are...
-
Regional Cluster Security Manager UK
4 days ago
Sunbury-on-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE Group The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are conducted...
-
Regional Cluster Security Manager, UK
3 weeks ago
Sunbury-on-Thames, United Kingdom bp Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are...
-
Operational Security Management Specialist
4 weeks ago
Sunbury-on-Thames, United Kingdom bp Full timeJob Description: BP has embarked on an ambitious plan to modernize and transform as an integrated energy company, using digital technologies to drive efficiency, effectiveness, and new business models. As an Operational IS Specialist, you will be responsible for supporting information security and risk activities for Operational Security Management.The...
-
Operational Security Management Specialist
1 month ago
Sunbury-on-Thames, United Kingdom bp Full timeJob Description: BP has embarked on an ambitious plan to modernize and transform as an integrated energy company, using digital technologies to drive efficiency, effectiveness, and new business models. As an Operational IS Specialist, you will be responsible for supporting information security and risk activities for Operational Security Management.The...
-
Regional Cluster Security Manager, UK
3 weeks ago
Sunbury-on-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are...
-
Regional Cluster Security Manager, UK
2 weeks ago
Sunbury-on-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are...
-
Regional Cluster Security Manager, UK
3 weeks ago
Sunbury-On-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities...
-
Regional Cluster Security Manager, UK
3 weeks ago
Sunbury-on-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are...
-
Regional Cluster Security Manager, UK
3 weeks ago
Sunbury-on-Thames, United Kingdom BP Energy Full timeJob Family Group: HSSE GroupJob Description: The Technology, Intelligence, Security, and Crisis Management (ISC) function delivers geo-political insight, emergency management support, and security protection to all BP businesses. The security function assesses identified security threats and manages security barriers to ensure BP's business activities are...
-
Operational Security Management Specialist
2 weeks ago
Sunbury-on-Thames, Surrey, United Kingdom bp Full timeJob Description:BP has undertaken a bold initiative to modernize and revamp as an integrated energy company, utilizing digital technologies to enhance efficiency, effectiveness, and new business strategies. As an Operational IS Specialist, you will play a vital role in supporting information security and risk activities for Operational Security...
-
Senior Architect
2 days ago
Southend-on-Sea, United Kingdom We Are 5 Values Full timeSenior Architect (Cloud)London - HybridPermanent - Full timeUp to £110,000Imagine collaborating with the biggest names in media & entertainment, building the infrastructure that delivers content to millions. Your work will directly impact how people experience their favorite shows, movies, and games. Sound good to you?In an Agile setting, you will...
-
Junior Architect
3 weeks ago
Stoke-on-Trent, Staffordshire, United Kingdom Searchability Full time €70,000Software Architect We are global brand who are working at the very forefront of our industry to bring the best technology to our customers. Salary up to £70,000 + bonus and car allowance West Midlands based office, roughly 2 days per week onsite requirement Software development, leadership, Microservices, Applications, .NET, C#, SQL We are...
-
Junior Architect
3 weeks ago
Stoke-on-Trent, Staffordshire, United Kingdom Searchability Full time €70,000Software Architect We are global brand who are working at the very forefront of our industry to bring the best technology to our customers. Salary up to £70,000 + bonus and car allowance West Midlands based office, roughly 2 days per week onsite requirement Software development, leadership, Microservices, Applications, .NET, C#, SQL We are...